Hacker News with Generative AI: Zero-Day Exploits

Critical PostgreSQL bug tied to zero-day attack on US Treasury (theregister.com)
A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to break into the US Treasury in December, researchers say.

Cybersecurity, Databases, Government, Vulnerabilities, Zero-Day Exploits

18 points by rntn 6 days ago | 11 comments

Apple fixes zero-day exploited in 'extremely sophisticated' attacks (bleepingcomputer.com)
Apple has released emergency security updates to patch a zero-day vulnerability that the company says was exploited in targeted and "extremely sophisticated" attacks.

Security, Apple, Zero-Day Exploits, Cyberattacks

6 points by akyuu 10 days ago | 1 comments

Hackers exploit 16 zero-days on first day of Pwn2Own Automotive 2025 (bleepingcomputer.com)
On the first day of Pwn2Own Automotive 2025, security researchers exploited 16 unique zero-days and collected $382,750 in cash awards.

Cybersecurity, Automotive Security, Zero-Day Exploits, Hacking, Bug Bounties

44 points by speckx 28 days ago | 10 comments

RomCom exploits Firefox and Windows zero days in the wild (welivesecurity.com)
ESET researchers discovered a previously unknown vulnerability in Mozilla products, exploited in the wild by Russia-aligned group RomCom. This is at least the second time that RomCom has been caught exploiting a significant zero-day vulnerability in the wild, after the abuse of CVE-2023-36884 via Microsoft Word in June 2023.

Cybersecurity, Zero-Day Exploits, Firefox, Windows, Russia

58 points by croes 85 days ago | 28 comments

Possible Azure RCE (zerodayinitiative.com)

Cybersecurity, Azure, Zero-Day Exploits

44 points by sambazi 258 days ago | 6 comments

Palo Alto Networks PAN-OS Zero-Day Exploitation (volexity.com)

Cybersecurity, Vulnerability, Zero-Day Exploits

95 points by sky_nox 314 days ago | 60 comments