Google detected 75 zero-day exploits in 2024, highlighting an increase in attacks aimed at enterprise systems, particularly by state-sponsored hackers. The trend shows that while traditional user-targeted attacks remain, a significant portion of vulnerabilities are now focused on security infrastructure, with governments and commercial surveillance vendors being primary actors in these threats.

Nippon Steel Solutions has reported a data breach caused by the exploitation of a zero-day vulnerability in their network equipment. Cybercriminals threatened to leak stolen data, but subsequently ceased communication, leaving uncertainty about the breach's details and any potential connection to other incidents.

Researchers have discovered multiple zero-day vulnerabilities in HashiCorp Vault and CyberArk Conjur, critical secret management platforms used by many enterprises. These vulnerabilities could allow attackers to bypass authentication, gain root access, and execute remote code, posing significant security risks to organizations.

A new startup focused on zero-day vulnerabilities is offering $20 million for tools that can successfully hack any smartphone. This initiative aims to attract skilled hackers to enhance cybersecurity solutions amidst increasing smartphone security challenges.

The article discusses IMDS (Intelligent Managed Detection and Response Service) and its capabilities in anomaly hunting to identify zero-day vulnerabilities. It emphasizes the importance of proactive threat detection in cybersecurity, enabling organizations to mitigate potential risks before they can be exploited.