Search Results: ZeroDayExploit

Envoy Air, a regional carrier owned by American Airlines, confirms data theft from its Oracle E-Business Suite systems following exploitation of a critical zero-day vulnerability by the Clop ransomware gang. The breach, part of a broader August attack spree impacting dozens of organizations including Harvard University, underscores persistent threats to enterprise application security and Clop's shift toward sophisticated supply chain targeting.

Oracle has quietly fixed a zero-day vulnerability (CVE-2025-61884) in its E-Business Suite after the ShinyHunters extortion group leaked a functional exploit. The patch arrives amid confusion over multiple active exploit chains and Oracle's failure to disclose active attacks despite evidence of server breaches. Security teams scramble to untangle mismatched advisories while urging immediate patching.

Over 48,800 internet-exposed Cisco ASA and FTD firewalls remain vulnerable to two critical flaws enabling remote code execution and VPN compromise. Despite weeks of active exploitation and government emergency directives, organizations globally have failed to patch, leaving networks open to attacks deploying sophisticated malware. U.S. and U.K. cybersecurity agencies confirm hackers are weaponizing these vulnerabilities to implant persistent bootkits.

Cisco warns of two actively exploited zero-day vulnerabilities in its Adaptive Security Appliance and Firepower Threat Defense software, enabling remote code execution and unauthorized access. The urgent patches follow weeks of mass scanning activity targeting Cisco devices, signaling coordinated attacks against critical network infrastructure.

Trend Micro warns attackers are actively exploiting a critical command injection vulnerability (CVE-2025-54948/CVE-2025-54987) in its Apex One endpoint security platform, enabling pre-authenticated remote code execution. With no patch available until mid-August, administrators must implement temporary mitigations that disable key management features. This marks the third Apex One zero-day exploited since 2022, highlighting persistent supply chain risks for enterprise defense systems.

Hundreds of organizations globally, including the US National Nuclear Security Administration, suffered data breaches this week as hackers exploited a critical vulnerability in older, self-hosted Microsoft SharePoint Server versions. The incident underscores the heightened risks of clinging to on-premises software nearing end-of-life, especially when a flawed patch compounded the original flaw. Microsoft scrambles to secure systems it has long urged customers to migrate to the cloud.