A new cybersecurity report has revealed that Microsoft was the most targeted technology company by zero-day cyberattacks in 2025. According to the report, 25 zero-day vulnerabilities in Microsoft products were actively exploited during the year. Google ranked second with 11 cases, followed by Apple with eight.
The findings come from a report released by Google’s Threat Intelligence Group (GTIG). It states that a total of 90 zero-day vulnerabilities were actively exploited in 2025, which is about 15% higher than the 78 cases recorded in 2024. However, the number is still below the record 100 cases seen in 2023.
What is a Zero-Day vulnerability?
Cybersecurity experts explain that a zero-day vulnerability is a security flaw in software that the company that created the software does not yet know about. If hackers discover and exploit this flaw before the developer fixes it, the attack is known as a zero-day exploit.
Such vulnerabilities are highly valuable to hackers because they allow them to break into systems, execute malicious code remotely, or gain access to sensitive data.
Operating systems were the biggest target
According to the report, 47 out of the 90 zero-day vulnerabilities in 2025 targeted everyday consumer products, including operating systems and web browsers.
Operating systems were particularly vulnerable. The data shows:
- 24 zero-day attacks targeted desktop operating systems
- 15 attacks targeted mobile platforms
Experts say operating systems are frequently targeted because exploiting them can give hackers control over the entire system.
Enterprise systems also under attack
The report also found that 43 zero-day exploits targeted enterprise software, which is widely used by organizations and businesses.
These included systems such as:
- Security appliances
- VPN systems
- Network infrastructure
- Virtualization platforms
Security specialists say successful attacks on these systems can give hackers broad access across an entire network, making them highly attractive targets.
Fewer attacks on web browsers
The report noted that zero-day attacks against web browsers declined compared to previous years. Only eight browser-related zero-day cases were recorded in 2025.
Analysts believe this may indicate that browser security has improved significantly, making them harder to exploit. However, it is also possible that attackers are better at hiding their activities.
Companies most affected by zero-day exploits
The report listed the major technology vendors affected by zero-day attacks in 2025:
- Microsoft – 25 cases
- Google – 11 cases
- Apple – 8 cases
- Cisco – 4 cases
- Fortinet – 4 cases
- Ivanti – 3 cases
- VMware – 3 cases
These vulnerabilities included several technical flaws such as remote code execution bugs, privilege escalation, injection attacks, and memory corruption issues.
Memory safety flaws a major cause
The report also highlighted that memory safety vulnerabilities accounted for around 35% of all exploited zero-day attacks.
These flaws occur when software fails to properly manage memory, which can allow attackers to run malicious code or take control of a system.
State-sponsored hackers remain active
The report further noted that China-linked hacker groups were the most active state-sponsored attackers in 2025. These groups exploited at least 10 zero-day vulnerabilities, primarily targeting networking equipment and security systems.
Meanwhile, financially motivated cybercriminal groups are also becoming increasingly active, using zero-day vulnerabilities in at least nine cases during the year.
Rising cyber threats
Cybersecurity experts warn that the growing number of zero-day vulnerabilities shows that technology companies and organizations must continuously strengthen their security systems.
A researcher at Algoritha Security said that zero-day attacks are among the most dangerous forms of cyber threats, because attackers exploit weaknesses that even the software developers are unaware of. In such cases, timely security patches and proactive monitoring are the most effective defenses.
About the author – Ayesha Aayat is a law student and contributor covering cybercrime, online frauds, and digital safety concerns. Her writing aims to raise awareness about evolving cyber threats and legal responses.
