Google’s Zero-Day Countdown: 75 Flaws Tracked in 2024, Down from 98 in 2023!

In 2024, Google Threat Intelligence Group tracked 75 actively exploited zero-day flaws, down from 98 in 2023. Enterprise tech, especially security and networking tools, faced increased attacks, while browser and mobile exploits decreased. Microsoft Windows and major enterprise products were prime targets, with over half of zero-days enabling remote code execution or privilege escalation.

3P
Published: April 29, 2025 12:43 pmAdded: April 29, 2025 at 6:03 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like 2024 was a rough year for zero-day flaws, but at least we’re trending in the right direction—a bit like the cybersecurity version of a rollercoaster. Let’s just hope the track doesn’t end abruptly!

Key Points:

– Google tracked 75 actively exploited zero-day vulnerabilities in 2024, down from 98 in 2023.
– Enterprise-specific technologies are increasingly targeted, with attacks rising to 44% in 2024.
– Microsoft Windows remains a favorite target, with zero-day exploits rising to 22.
– Over half of the zero-days enabled remote code execution or privilege escalation.
– Cyber espionage groups and commercial surveillance vendors accounted for 53% of zero-day exploits.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?