An iOS application named i-FunBox found to be exploitable.

VTGuard on Internet Explorer itself is based on VPTRs and VTs, funny cap with _funcap.

Working with the Samsung Smart View reveals funny stuff.

An old school stack-based overflow has been found on Proxifier software.

DLL Hijacking 0day on MS Office Word has been spotted in the wild.

Exploitation of WhatsApp messenger has been spotted in the wild.

A new technique (of address access probing) in Egg-Hunting has been found in a Chinese exploit kit.

Have you ever disassembled NtQueryIntervalProfile routine?

It has been proved in the public incident of NSO Group.

A new exploit on Cisco IOS has been spotted in the wild, with the price of $3M.

A new 0day in QNAP devices (all-models, all-types) is being largely used by Russian threat actors.

A new 0day in Microsoft Windows Active Directory has been spotted in the wild. An underground community is selling it for $3M.

Apple's PAC (Pointer Authentication Codes) exploit mitigation technology is proofed to be bypassed by a Chinese actor, regardless of the FORCEDENTRY incident.

Two RCE 0days on Mikrotik firmware have been spotted in the wild. They are actively (but staying below the radar) being used by a Chinese threat actor, linking to the government.

A chinese campaign with 0day exploitation on Fortinet and Citrix has been spotted in the wild.