Enterprise tech dominates zero-day exploits with no signs of slowdown

Google says that despite a small dip in the number of exploited zero-day vulnerabilities in 2024, the number of attacks using these novel bugs continues on an upward trend overall.

Data released by Google Threat Intelligence Group (GTIG) today, timed with the ongoing RSA Conference 2025, revealed that 75 zero-days were exploited last year. The number is down from 2023's figure of 98, but an increase from 63 the year before, suggesting that zero-days continue to be a hot commodity for the most well-resourced attackers.

Disregarding the inherent, obvious advantage that novel, patchless vulnerabilities provide to attackers, it's not just Google saying that zero-days are easier to come by these days ...

Over 50 percent of the confirmed zero-days were used for cyberespionage campaigns carried out by state-sponsored groups and customers of spyware companies, or as Google calls them, "commercial surveillance vendors."

Google's researchers highlighted China and spyware ...