The Hacker News

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Researchers found Chinese-linked attackers abused SonicWall VPN access and VMware ESXi zero-day flaws to escape VMs and gain ...

VMware ESXi zero-days likely exploited a year before disclosure

Chinese-speaking threat actors used a compromised SonicWall VPN appliance to deliver a VMware ESXi exploit toolkit that seems to have been developed more than a year before the targeted ...
SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Analysis of a recent attack targeting VMware ESXi vulnerabilities from March 2025 revealed an exploit developed a year before ...
SecurityWeek

Hackers Exploit Zero-Day in Discontinued D-Link Devices

Threat actors are exploiting CVE-2026-0625, a critical zero-day vulnerability in discontinued D-Link devices for remote code ...
Dark Reading

Attackers Exploit Zero-Day in End-of-Life D-Link Routers

"The affected endpoint is also associated with unauthenticated DNS modification ("DNSChanger") behavior documented by D-Link, ...
GIGAZINE

Microsoftは北朝鮮・ロシア・中国によるスパイ行為に悪用された8年前 ...

セキュリティ企業・トレンドマイクロのバグ報奨金プログラムプラットフォームであるZero Day Initiative(ZDI)で発見されたWindowsのショートカットファイルにある脆弱(ぜいじゃく)性「ZDI-CAN-25373」が、北朝鮮・イラン・ロシア・中国などと関連するサイバー攻撃 ...
PR TIMES

Kaspersky、Google Chromeのゼロデイ脆弱性を悪用するエクスプロイトを発見

Kasperskyのグローバル調査分析チーム(GReAT)※のリサーチャーはこのたび、Google Chromeブラウザのゼロデイ脆弱(ぜいじゃく)性(CVE-2025-2783)を特定し、Googleに報告しました。この脆弱性は、サイバー攻撃者がChromeのサンドボックス保護システムを回避できる ...

WhatsApp Zero-Day Attack: Even Missed Or Incoming Voice Call Can Hack Your Smartphone; Here ...

During festive seasons like Lohri, holidays, or travel times, there are more calls and messages from unknown numbers, which ...