Hosted on MSN

SonicWall VPNs are being targeted by a new zero-day in ransomware attacks

From mid-July 2025, there's been an uptick in malicious logins Researchers speculate criminals found a zero-day Users are advised to strengthen their cybersecurity posture There is a chance SonicWall ...
TechCrunch

New zero-day startup offers $20 million for tools that can hack any smartphone

A new United Arab Emirates-based startup is offering up to $20 million for hacking tools that could help governments break into any smartphone with a text message. Apart from the highest bounty of $20 ...
SiliconANGLE

CISA instructs federal agencies to patch new flaws in Cisco firewall devices

The U.S. Cybersecurity and Infrastructure Security Agency has instructed federal agencies to patch two zero-day or unpatched vulnerabilities that affect certain Cisco Systems Inc. devices. CISA ...
Bleeping Computer

WinRAR zero-day exploited to plant malware on archive extraction

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware. The flaw is a directory traversal vulnerability that was ...
Ars Technica

High-severity WinRAR 0-day exploited for weeks by 2 groups

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...
PC Gamer

Still using WinRAR? It might be time for an update, as a zero-day vulnerability is being 'exploited in the wild in the guise of job application documents'

There's something about the WinRAR stacked-book logo that makes me all nostalgic, giving me a proper case of the warm fuzzies deep inside. What turns those fuzzies into ouchies, however, is the idea ...