Enterprise software was a major focus of zero-day activity during 2025, with security and networking devices, like firewalls, VPNs, and virtualization platforms, among the top targeted by malicious hackers.

TechCrunch (TC) is a leading technology news and media site that covers the latest trends, startups, and innovations in the tech industry. With breaking news,  analysis, and expert commentary, TechCrunch provides  insights into the world of technology and entrepreneurship. Developers can learn about emerging technologies, funding opportunities, and market trends by following TechCrunch's coverage of the tech industry.

TechCrunch

Google's annual threat intelligence report reveals that 48% of zero-day vulnerabilities tracked in 2025 targeted enterprise technologies, a new high. Security and networking devices—including firewalls from Cisco and Fortinet, and VPN/virtualization platforms like Ivanti and VMware—were among the most targeted. Common flaws such as input validation issues and incomplete authorization were frequently exploited. The Clop extortion gang's campaign against Oracle E-Business Suite also contributed, stealing HR data from dozens of organizations including Harvard and American Airlines. The remaining 52% of zero-days hit consumer products from Microsoft, Google, and Apple. Google also noted a growing attribution of zero-days to commercial surveillance vendors rather than traditional state-sponsored groups.

Google says half of all zero-days it tracked in 2025 targeted buggy enterprise tech

Disrupt 2026: The tech ecosystem, all in one room

Save up to $300 or 30% to TechCrunch Founder Summit