Zero Days

A critical zero-day vulnerability in SonicWall SMA1000 appliances is being actively exploited in targeted attacks. This analysis explains the attack…

CISA warned that multiple federal agencies still haven’t fully patched Cisco ASA/FTD devices despite active exploitation. Because the campaign targets…

Microsoft’s November update fixes an exploited Windows Kernel zero-day (CVE-2025-62215) and a critical zero-click GDI+ RCE (CVE-2025-60724). Therefore, prioritize domain…

APT37 used stolen Google credentials to access Find Hub, check Android device locations, and trigger remote factory resets. The tactic…