Miscreants are exploiting enterprise tech zero days more and more, Google warns

Google TAG and Mandiant report that 97 zero-day vulnerabilities were discovered and exploited in 2023 (a 56% increase from 2022), with enterprise-focused zero-days rising markedly; many exploits targeted security appliances and enterprise products (e.g., Barracuda, Cisco ASA, Ivanti) and were largely driven by commercial surveillance vendors and nation-state actors, including traced activity from China-linked groups and identified UNC actors.