Out of 42 unique zero days tracked by Google in 2025, 18 were attributed to CSVs, while 15 were linked to state-sponsored espionage groups.
The comprehensive effort, which involved seizing 330 active domains, cuts off a critical pipeline for account takeovers that targeted over 500,000 organizations and sent tens of millions of fraudulent emails monthly.
Read More Microsoft, Europol Disrupt Tycoon 2FA Phishing Service
Without context, the KEV catalog is just a very large collection of data. Tod Beardsley is the former CISA KEV section chief, and he recently released a paper called KEVology that provides key context and evaluates the value of certain enrichment signals.
Read More Q&A: Tod Beardsley on How to Use CISA’s KEV Catalog
Cisco released software updates on Feb. 25 to fix the vulnerability, which affects both on-premises and cloud deployments of the Catalyst SD-WAN Controller.
Read More Cisco, NSA Warn of Attacks Targeting Catalyst SD-WAN Zero Day
This campaign is an offshoot of the more familiar and pervasive fake job interview and phony tech worker scams that have been coming from North Korea for several years.
Read More Microsoft Uncovers New Malicious Campaign Targeting Developers
Google said it has found 53 victims that have been impacted by the group, which it has tracked since 2017.
Read More Google Disrupts ‘Prolific, Elusive’ China-Linked Actor
In a parallel Tuesday announcement, the Treasury Department also sanctioned the exploit broker network that had acquired the tools.
Read More Former US Defense Contractor Sentenced to Jail For Selling Exploits
