Tag:

zeroday

Crypto And Digital Assets
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks
by Wikdaily August 22, 2025
by Wikdaily August 22, 2025
Aug 21, 2025Ravie LakshmananVulnerability / Zero-Day Apple has released security updates to address a security flaw impacting iOS, iPadOS, and macOS that it said has come under active exploitation in …
Crypto And Digital Assets
Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access
by Wikdaily July 22, 2025
by Wikdaily July 22, 2025
The recently disclosed critical Microsoft SharePoint vulnerability has been under exploitation as early as July 7, 2025, according to findings from Check Point Research. The cybersecurity company said it observed …
Crypto And Digital Assets
Microsoft SharePoint zero-day breach hits on-prem servers
by Wikdaily July 21, 2025
by Wikdaily July 21, 2025
As part of the exploitation, attackers upload a file named “spinstall0.aspx,” which is used to steal the Microsoft SharePoint server’s MachineKey configuration, including the ValidationKey and DecryptionKey, security researchers reported. …
Crypto And Digital Assets
Microsoft SharePoint zero-day exploited in RCE attacks, no patch available
by Wikdaily July 20, 2025
by Wikdaily July 20, 2025
A critical zero-day vulnerability in Microsoft SharePoint, tracked as CVE-2025-53770, has been actively exploited since at least July 18th, with no patch available and at least 85 servers already compromised …
Crypto And Digital Assets
Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations
by Wikdaily July 20, 2025
by Wikdaily July 20, 2025
Jul 20, 2025Ravie LakshmananZero-Day / Vulnerability A critical security vulnerability in Microsoft SharePoint Server has been weaponized as part of an “active, large-scale” exploitation campaign. The zero-day flaw, tracked as …
Crypto And Digital Assets
New CrushFTP zero-day exploited in attacks to hijack servers
by Wikdaily July 19, 2025
by Wikdaily July 19, 2025
CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain administrative access via the web interface on vulnerable servers. CrushFTP …
Crypto And Digital Assets
CrushFTP zero-day exploited in attacks to gain admin access on servers
by Wikdaily July 19, 2025
by Wikdaily July 19, 2025
CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain administrative access via the web interface on vulnerable servers. CrushFTP …
Crypto And Digital Assets
VMware fixes four ESXi zero-day bugs exploited at Pwn2Own Berlin
by Wikdaily July 18, 2025
by Wikdaily July 18, 2025
VMware fixed four vulnerabilities in VMware ESXi, Workstation, Fusion, and Tools that were exploited as zero-days during the Pwn2Own Berlin 2025 hacking contest in May 2025. Three of the patched …
Crypto And Digital Assets
The zero-day that could’ve compromised every Cursor and Windsurf user
by Wikdaily July 12, 2025
by Wikdaily July 12, 2025
A security researcher from Koi Security stumbled upon a critical zero-day buried deep in the infrastructure powering today’s AI coding tools. Had it been exploited, a non-sophisticated attacker could’ve hijacked …
Crypto And Digital Assets
Microsoft July 2025 Patch Tuesday fixes one zero-day, 137 flaws
by Wikdaily July 9, 2025
by Wikdaily July 9, 2025
Tag CVE ID CVE Title Severity AMD L1 Data Queue CVE-2025-36357 AMD: CVE-2025-36357 Transient Scheduler Attack in L1 Data Queue Critical AMD Store Queue CVE-2025-36350 AMD: CVE-2024-36350 Transient Scheduler Attack …

Newer Posts

Older Posts

zeroday

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

Microsoft SharePoint zero-day breach hits on-prem servers

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations

New CrushFTP zero-day exploited in attacks to hijack servers

CrushFTP zero-day exploited in attacks to gain admin access on servers

VMware fixes four ESXi zero-day bugs exploited at Pwn2Own Berlin

The zero-day that could’ve compromised every Cursor and Windsurf user

Microsoft July 2025 Patch Tuesday fixes one zero-day, 137 flaws

Useful Links

Edtior's Picks

Latest Articles