Google fixes two new Chrome zero-days exploited in attacks

Google has released emergency security updates to patch two high-severity Chrome vulnerabilities exploited in zero-day ...
Infosecurity-magazine.com

DBIR: Vulnerability Exploits Triple as Initial Access Point for Data Breaches

The exploitation of vulnerabilities as an initial access step for a breach increased by a staggering 180% between 2022 and 2023. According to Verizon’s 2024 Data Breach Investigations Report (DBIR), ...
Infosecurity Magazine

Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials, Google Cloud Finds

Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell ...
Dark Reading

Vulnerability Exploitation Is Shifting in 2024-25

The number of vulnerabilities exploited by threat actors may be holding steady, but the types of targeted flaws and the speed with which attackers are weaponizing them should give enterprises concern.
Hosted on MSN

Patch or perish: Vulnerability exploits now dominate intrusions

What good is a fix if you don't use it? Experts are urging security teams to patch promptly as vulnerability exploits now account for the majority of intrusions, according to the latest figures.… ...
Yahoo Finance

VulnCheck Exploit Intelligence Report Separates Real-World Exploitation Activity from Theoretical Vulnerability Risk

Analysis Finds 1% of Vulnerabilities Were Exploited in the Wild in 2025 and Identifies the 50 Most Routinely Targeted Flaws of Last Year The VEIR shows that while CVE disclosures and public ...
SecurityWeek

Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks

CVE-2021-22681, an old vulnerability affecting ICS products from Rockwell Automation, has been exploited in attacks.
SecurityWeek

174 Vulnerabilities Targeted by RondoDox Botnet

The RondoDox botnet has expanded its exploit list to 174 vulnerabilities, increased its activity, and shifted to more targeted exploitation.