ZDI Threat Hunting 2024: Highlights, Trends, & Challenges

ZDI’s 2024 Threat Hunting review details multiple zero-day vulnerabilities exploited in the wild (notably several Microsoft SmartScreen and MSHTML issues) by threat actors and malware families (Water Hydra, Void Banshee, DarkGate, Atlantida), describes ZDI’s discovery and virtual patching efforts, and highlights industry problems—narrow patching, siloed teams, disclosure friction, and rising AI-enabled phishing—that increase exploitation risk going into 2025.