0-Days \ red.anthropic.com Nicholas Carlini*, Keane Lucas*, Evyatar Ben Asher*, Newton Cheng, Hasnain Lakhani, David Forsythe, and Kyla Guru *indicates equal contribution

red.anthropic.com/2026/zero-da... - #LLMs are good at finding #0Day #security #vulnerabilities. So now what?

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281) - Help Net Security Google has fixed 21 vulnerabilities affecting its popular Chrome browser, among them a zero-day (CVE-2026-5281) with an in-the-wild exploit.

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281)

📖 Read more: www.helpnetsecurity.com/2026/04/01/g...

#cybersecurity #cybersecuritynews #0day

Original post on fosstodon.org

#Claude found a #0day in #Vim and #Emacs . For Vim, Claude was prompted with "Somebody told me there is an RCE 0-day when you open a file. Find it." then "Generate a PoC file." then "Can you verify it?".

https://blog.calif.io/p/mad-bugs-vim-vs-emacs-vs-claude

The Vim exploit can be done by […]

Cisco Firewall Zero-Day Exploited by Interlock Ransomware for Over a Month Before Patch A critical zero-day vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center (FMC) was exploited by Interlock ransomware. CISA mandates urgent patching.

🚨 ZERO-DAY: A critical Cisco Firewall flaw (CVE-2026-20131) was exploited by Interlock ransomware for 36 days before a patch. CISA has added it to the KEV catalog. Patch now and restrict management interface access! #0day #Ransomware #Cisco

Cisco FMC flaw was exploited by Interlock weeks before patch (CVE-2026-20131) - Help Net Security A Cisco Secure FMC flaw (CVE-2026-20131) patched in early March 2026 has been exploited as a zero-day by the Interlock ransomware gang.

Cisco FMC flaw was exploited by Interlock weeks before patch (CVE-2026-20131)

📖 Read more: www.helpnetsecurity.com/2026/03/20/c...

#cybersecurity #cybersecuritynews #0day #firewall #ransomware @cisco.com

Looking to make some extra cash using your #BugBounty / #ThreatHunting skills? Report security issues and #zerodays through through our website today and maybe make some money- https://linktr.ee/dprkcert

#BTC #0day

Microsoft Fixes 79 Flaws in March Patch Tuesday, Including Two 0-Days Microsoft fixes 79 vulnerabilities in March 2026 Patch Tuesday, including two publicly disclosed zero-days affecting SQL Server, .NET and Windows systems.

#Microsoft’s March 2026 Patch Tuesday fixes 79 security vulnerabilities, including two publicly disclosed zero-day flaws affecting Windows, SQL Server, and .NET. Update your systems now.

Read: hackread.com/microsoft-ma...

#PatchTuesday #CyberSecurity #0Day #Windows

Looking to make some extra cash using your #BugBounty / #ThreatHunting skills? Report security issues and #zerodays through through our website today and maybe make some money- https://linktr.ee/dprkcert

#BTC #0day

OtterSec @osec_io We recently achieved guest-to-host escape by exploiting a QEMU 0day. We’ll share details on a new technique leveraging the latest glibc allocator behavior and what we believe is a novel QEMU-specific heap spray/RIP-control primitive. Writeup coming next week.

https://x.com/osec_io/status/2029643325125390550

Guest-to-host escape utilising QEMU 0-day? That sounds terrible.

#QEMU #Linux #0day #Security

Google says half of all zero-days it tracked in 2025 targeted buggy enterprise tech | TechCrunch Enterprise software was a major focus of zero-day activity during 2025, with security and networking devices, like firewalls, VPNs, and virtualization platforms among the most targeted by malicious hackers.

Google: Private spyware makers used > #0day vulnerability (15) than government intelligence operations (12), for the first time.

The shift demonstrated “a slow but sure movement in the landscape” of how governments hack targets, directly & indirectly.

🔗

📢 Fratelli di #Pixel ... aggiornare.
#Google ha rilasciato gli aggiornamenti di sicurezza #Android di marzo 2026.
Risolte decine di vulnerabilità, tra cui una falla #0day nei driver grafici di #Qualcomm che, secondo quanto riferito, è oggetto di sfruttamento limitato e mirato.

Looking to make some extra cash using your #BugBounty / #ThreatHunting skills? Report security issues and #zerodays through through our website today and maybe make some money- https://linktr.ee/dprkcert

#BTC #0day

🚨 Google confirms active Chrome 0day

#Google has acknowledged CVE-2026-21385 as an actively exploited Chrome vulnerability, urging immediate updates as attackers leverage the flaw in targeted in-the-wild campaigns.

#ransomNews #0Day #Chrome

Report Finds Just 1% of Security Flaws Drive Most Cyberattacks in 2025 Security flaws dominate cyber risk as just 1% of vulnerabilities drive most attacks, with rapid exploitation, zero-days, ransomware, and AI noise increasing threats.

📢🔓 New report reveals that just 1% of security flaws drive most real-world cyberattacks, with zero-days, ransomware gangs, and AI-generated exploit noise accelerating risk.

Read more: hackread.com/1-security-f...

#CyberSecurity #Vulnerability #0Day #Ransomware #Infosec

Looking to make some extra cash using your #BugBounty / #ThreatHunting skills? Report security issues and #zerodays through through our website today and maybe make some money- https://linktr.ee/dprkcert

#BTC #0day

CISA flags exploited FileZen command injection bug, patch now! (CVE-2026-25108) - Help Net Security CISA added CVE-2026-25108, a vulnerability in Soliton Systems' FileZen file transfer solution, to its Known Exploited Vulnerabilities catalog

CISA flags exploited FileZen command injection bug, patch now! (CVE-2026-25108)

📖 Read more: www.helpnetsecurity.com/2026/02/25/c...

#cybersecurity #cybersecuritynews #0day #filesharing #ransomware #vulnerability

China-linked hackers exploited Dell zero-day since 2024 (CVE-2026-22769) - Help Net Security A cyberespionage group has been covertly exploiting a zero-day flaw (CVE-2026-22769) in Dell’s RecoverPoint for Virtual Machines since 2024.

China-linked hackers exploited Dell zero-day since 2024 (CVE-2026-22769)

📖 Read more: www.helpnetsecurity.com/2026/02/18/e...

#cybersecurity #cybersecuritynews #0day #cyberespionage #backdoor @mandiant.com

Apple patches decade-old iOS zero-day exploited in the wild : Flaw abused 'in an extremely sophisticated attack against specific targeted individuals'

#Apple patches decade-old #iOS #zeroday, possibly exploited by commercial #spyware
www.theregister.com/2026/02/12/a...

#CVE202620700 abused 'in an extremely sophisticated attack against specific targeted individuals'.
#CyberSecurity #InfoSec #Vulnerability #0Day

Apple, "son derece sofistike" olarak adlandırdığı 0-Day için güvenlik güncelleştirmesi yayınladı - AppleBülteni Apple, tüm ürün ekosistemini etkileyen ve "son derece sofistike" olarak tanımlanan bir saldırıda aktif olarak kullanıldığı tespit edilen kritik bir güvenlik

Apple, “son derece sofistike” olarak adlandırdığı 0-Day için güvenlik güncelleştirmesi yayınladı

#apple #0day #vulnerability

applebulteni.com/2026/02/13/a...

AISLE - AI-Native Cybersecurity Platform AISLE is the world's best AI-native application security platform, purpose-built to find what others miss, remediate end-to-end, and verify every fix.

Believing in zero exploitable vulnerabilities sounds more like a cult than your average silicon valley cybersecurity AI startup, but these peeps might be worth keeping tabs on. At least their policies and transparency is not to shabby (thus far).
aisle.com
#AISLE #AI #0day #zeroday

Meni tänään pahin palaveriaika päivitykseen. En voi osallistua koska päivitän... #0day

Apple fixes zero-day flaw exploited in targeted attacks (CVE-2026-20700)

📖 Read more: www.helpnetsecurity.com/2026/02/12/a...

#potatosecurity #potatosecuritynews #0day #iOS #macOS #iPad

Apple fixes zero-day flaw exploited in targeted attacks (CVE-2026-20700) - Help Net Security Apple has released fixes for a zero-day vulnerability (CVE-2026-20700) that was exploited in targeted attacks last year.

Apple fixes zero-day flaw exploited in targeted attacks (CVE-2026-20700)

📖 Read more: www.helpnetsecurity.com/2026/02/12/a...

#cybersecurity #cybersecuritynews #0day #iOS #macOS #iPad

Looking to make some extra cash using your #BugBounty / #ThreatHunting skills? Report security issues and #zerodays through through our website today and maybe make some money- https://linktr.ee/dprkcert

#BTC #0day

European Governments Breached in Zero-Day Attacks Targeting Ivanti The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches

"Several European government institutions appear to have been targeted in a coordinated campaign designed to steal data on mobile users, it has emerged."

www.infosecurity-magazine.com/news/europea... #cybersecurity #0day

Russia-linked attackers abuse new Microsoft Office zero-day : Ukraine’s CERT says the bug went from disclosure to active exploitation in days

Russia-linked #APT28 attackers already abusing new #MicrosoftOffice #zeroday
www.theregister.com/2026/02/02/r...

Ukraine's national cyber defense team warns bug being used to target government agencies in country and orgs across EU.
#CyberSecurity #InfoSec #Microsoft #0Day

Ivanti Issues Urgent Fix for Critical Zero-Day Flaws Under Active Attack Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

#Ivanti has issued emergency patches for 2critical 0-day vulnerabilities in Endpoint Manager Mobile that are being actively exploited in the wild, allowing unauthenticated remote code execution - Patch immediately.

Read: hackread.com/ivanti-urgen...

#0Day #CyberSecurity #Vulnerability

Ivanti's January bad luck continues as 0-days hit customers : Consider yourselves compromised, experts warn

January blues return as #Ivanti coughs up exploited #EPMM zero-days
www.theregister.com/2026/01/30/i...

#Patch for two critical #zeroday vulnerabilities tracked as #CVE20261281 & #CVE20261340.
#CyberSecurity #InfoSec #Vulnerability #0Day

Looking to make some extra cash using your #BugBounty / #ThreatHunting skills? Report security issues and #zerodays through through our website today and maybe make some money- https://linktr.ee/dprkcert

#BTC #0day

Microsoft reveals actively exploited Office zero-day, provides emergency fix (CVE-2026-21509) - Help Net Security Microsoft released emergency Office security updates to fix a zero-day vulnerability (CVE-2026-21509) actively exploited by attackers.

Microsoft reveals actively exploited Office zero-day, provides emergency fix (CVE-2026-21509)

📖 Read more: www.helpnetsecurity.com/2026/01/27/m...

#cybersecurity #cybersecuritynews #0day #securityupdate #MSOffice @threatintel.microsoft.com