Dark Reading

Vulnerability Exploitation Is Shifting in 2024-25

The number of vulnerabilities exploited by threat actors may be holding steady, but the types of targeted flaws and the speed with which attackers are weaponizing them should give enterprises concern.

CISA orders feds to patch Windows flaw exploited as zero-day

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems ...
CSOonline

32% of exploited vulnerabilities are now zero-days or 1-days

Recent research into KEVs and CVEs shows that threat actors are capitalizing on flaws much more quickly, leaving defenders in need of improved detection and patching regimens. Patching windows for ...
Morningstar

VulnCheck Exploit Intelligence Report Separates Real-World Exploitation Activity from Theoretical Vulnerability Risk

Analysis Finds 1% of Vulnerabilities Were Exploited in the Wild in 2025 and Identifies the 50 Most Routinely Targeted Flaws of Last Year VulnCheck, the exploit intelligence company, today released the ...