exploit Archives

Vulnerabilities

Technical Details Published for Critical Cisco IOS XE Vulnerability

The critical flaw, tracked as CVE-2025-20188 (CVSS score of 10/10), allows attackers to execute arbitrary code remotely.

Ionut ArghireJune 2, 2025

Vulnerabilities

Hackers Earn Over $1 Million at Pwn2Own Berlin 2025

Pwn2Own participants demonstrated exploits against VMs, AI, browsers, servers, containers, and operating systems.

Eduard KovacsMay 19, 2025

Vulnerabilities

Hackers Win $260,000 on First Day of Pwn2Own Berlin 2025

Pwn2Own participants have earned tens of thousands of dollars for Red Hat, Windows, Oracle VirtualBox, Docker Desktop, and AI exploits.

Eduard KovacsMay 16, 2025

Vulnerabilities

Google Tracked 75 Zero-Days in 2024

The number of exploited zero-days seen by Google in 2024 dropped to 75, from 98 observed in the previous year.

Eduard KovacsApril 29, 2025

Threat Intelligence

Ethical Zero Day Marketplace Desired Effect Emerges From Stealth

Desired Effect provides an ethical vulnerability exchange marketplace to help defenders get ahead of attackers.

Kevin TownsendApril 23, 2025

Malware & Threats

CISA Analyzes Malware Used in Ivanti Zero-Day Attacks

CISA has published its analysis of Resurge, a SpawnChimera malware variant used in attacks targeting a recent Ivanti Connect Secure zero-day.

Ionut ArghireMarch 31, 2025

Vulnerabilities

Russian Firm Offers $4 Million for Telegram Exploits

A Russian exploit acquisition firm is offering up to $4 million for a full-chain exploit targeting messaging service Telegram.

Ionut ArghireMarch 24, 2025

IoT Security

Tesla Charger Exploits Earn Hackers $129,000 at Pwn2Own

Hackers earned more than $700,000 on the first two days of Pwn2Own Automotive 2025 for EV charger and infotainment exploits.

Eduard KovacsJanuary 23, 2025

Vulnerabilities

White Hat Hackers Earn $500,000 on First Day of Pwn2Own Ireland 2024

Pwn2Own Ireland 2024 participants have earned half a million dollars on the first day for hacking NAS devices, cameras, speakers and printers.

Eduard KovacsOctober 23, 2024

Vulnerabilities

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited

Microsoft's security response team pushed out documentation for almost 90 vulnerabilities across Windows and OS components and marked several flaws in the actively exploited...

Ryan NaraineAugust 13, 2024

Incident Response

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug

CrowdStrike dismissed claims that the Falcon EDR sensor bug could be exploited for privilege escalation or remote code execution.

Ryan NaraineAugust 8, 2024

Freetype vulnerability exploited by Paragon spyware

Vulnerabilities

Company Offering $30 Million for Android, iOS, Browser Zero-Day Exploits

Crowdfense has announced a $30 million exploit acquisition program covering Android, iOS, Chrome, and Safari zero-days.

Ionut ArghireApril 8, 2024

IoT Security

$200,000 Awarded at Pwn2Own 2024 for Tesla Hack

Participants earned a total of $732,500 on the first day of Pwn2Own Vancouver 2024 for hacking a Tesla, operating systems, and other software.

Eduard KovacsMarch 21, 2024

Mobile & Wireless

Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones

iOS zero-click attack targeting Kaspersky iPhones bypassed hardware-based security protections to take over devices.

Ionut ArghireDecember 28, 2023

Malware & Threats

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected

Kaspersky analyzes the stealth techniques that were used in the ‘Operation Triangulation’ iOS zero-click attacks.

Ionut ArghireOctober 24, 2023

Malware & Threats

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal

A Mirai botnet variant tracked as IZ1H9 has updated its arsenal with 13 exploits targeting various routers, IP cameras, and other IoT devices.

Ionut ArghireOctober 10, 2023

Mobile & Wireless

Russian Zero-Day Acquisition Firm Offers $20 Million for Android, iOS Exploits

Russian zero-day acquisition firm Operation Zero is now offering $20 million for full Android and iOS exploit chains.

Ionut ArghireSeptember 28, 2023

Mobile & Wireless

Predator Spyware Delivered to iOS, Android Devices via Zero-Days, MitM Attacks

Predator spyware delivered to iPhones and Android devices using iOS and Chrome zero-day vulnerabilities and MitM attacks.

Eduard KovacsSeptember 25, 2023

Vulnerabilities

Over 20,000 Citrix Appliances Vulnerable to New Exploit

Over 20,000 appliances are vulnerable to a new exploit technique targeting a recent Citrix ADC zero-day vulnerability CVE-2023-3519.

Ionut ArghireJuly 24, 2023

ICS/OT

APT Exploit Targeting Rockwell Automation Flaws Threatens Critical Infrastructure

Two Rockwell Automation product vulnerabilities have been used for a new exploit by an APT group that could use it to target critical infrastructure.

Eduard KovacsJuly 13, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "exploit"

Vulnerabilities

Technical Details Published for Critical Cisco IOS XE Vulnerability

Vulnerabilities

Hackers Earn Over $1 Million at Pwn2Own Berlin 2025

Vulnerabilities

Hackers Win $260,000 on First Day of Pwn2Own Berlin 2025

Vulnerabilities

Google Tracked 75 Zero-Days in 2024

Threat Intelligence

Ethical Zero Day Marketplace Desired Effect Emerges From Stealth

Malware & Threats

CISA Analyzes Malware Used in Ivanti Zero-Day Attacks

Vulnerabilities

Russian Firm Offers $4 Million for Telegram Exploits

IoT Security

Tesla Charger Exploits Earn Hackers $129,000 at Pwn2Own

Vulnerabilities

White Hat Hackers Earn $500,000 on First Day of Pwn2Own Ireland 2024

Vulnerabilities

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited

Incident Response

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug

Vulnerabilities

Company Offering $30 Million for Android, iOS, Browser Zero-Day Exploits

IoT Security

$200,000 Awarded at Pwn2Own 2024 for Tesla Hack

Mobile & Wireless

Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones

Malware & Threats

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected

Malware & Threats

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal

Mobile & Wireless

Russian Zero-Day Acquisition Firm Offers $20 Million for Android, iOS Exploits

Mobile & Wireless

Predator Spyware Delivered to iOS, Android Devices via Zero-Days, MitM Attacks

Vulnerabilities

Over 20,000 Citrix Appliances Vulnerable to New Exploit

ICS/OT

APT Exploit Targeting Rockwell Automation Flaws Threatens Critical Infrastructure

Featured

Cyber Insurance

United Natural Foods Projects Up to $400M Sales Hit From June Cyberattack

Nation-State

China’s Salt Typhoon Hacked US National Guard

Data Breaches

Ransomware Group Claims Attack on Belk

ICS/OT

Train Brakes Can Be Hacked Over Radio—And the Industry Knew for 20 Years

Data Breaches

Louis Vuitton Data Breach Hits Customers in Several Countries

Artificial Intelligence

Grok-4 Falls to a Jailbreak Two Days After Its Release

Mobile & Wireless

July 2025 Breaks a Decade of Monthly Android Patches

Latest News

Cloud Security

Watch on Demand: Cloud & Data Security Summit – Tackling Exposed Attack Surfaces in the Cloud

Cybersecurity Funding

Empirical Security Raises $12 Million for AI-Driven Vulnerability Management

Cybercrime

Armenian Man Extradited to US Over Ryuk Ransomware Attacks

Mobile & Wireless

Mobile Forensics Tool Used by Chinese Law Enforcement Dissected

Privacy

Trial Opens Against Meta CEO Mark Zuckerberg and Other Leaders Over Facebook Privacy Violations

Vulnerabilities

VMware Flaws That Earned Hackers $340,000 at Pwn2Own Patched

Vulnerabilities

Cisco Patches Another Critical ISE Vulnerability

Daily Briefing Newsletter