Last year was big for zero-day exploits, security threats that appear in the wild before vendors have a chance to develop patches. Through its sprawling network of services and research initiatives, Google is the first to spot many of these threats. In a new report from the Google Threat Intelligence Group (GTIG), the company reveals it detected 75 zero-day exploits in 2024, which is a bit lower than the previous year. Unsurprisingly, a sizable chunk of them was the work of state-sponsored hackers.
According to Google, zero-day exploits are becoming increasingly easy for threat actors to develop and procure, which has led to more sophisticated attacks. While end-user devices are still regularly targeted, GTIG notes that the trend over the past few years has been for these vulnerabilities to target enterprise systems and security infrastructure. There were 98 zero-days detected in 2023 versus 75 in 2024, but Google says the overall trend in enterprise threats is increasing.
That’s not to say the products you use every day are safe from sneaky hacks—a slim majority of GTIG’s 2024 zero-day threats still targeted users. In fact, Google says hackers were even more interested in certain platforms last year compared to the year before.