Actively Exploited Zero-Days (2025): Who’s Affected and How to Block the Kill Chain By CyberDudeBivash • Date: September 20, 2025 (IST)
TL;DR — Patch-First Shortlist (with fast mitigations) Chrome V8 type confusion — CVE-2025-10585 (active): Update to 140.0.7339.185+ (desktop). Block risky extensions; enable strict site isolation; monitor for child-process crashes from Chrome. BleepingComputer +1 Apple ImageIO — CVE-2025-43300 (exploited, targeted): Update iOS/iPadOS/macOS to the latest security release; enable Lockdown Mode for high-risk users; treat untrusted images as untrusted code. Apple Support +1 Ivanti Connect Secure/Policy Secure — CVE-2025-0282 (zero-day carryover): Patch to fixed releases (22.7R2.5+ etc.), rotate creds, reimage if compromise suspected; assume token/session theft. NVD +1 Windows CLFS kernel — CVE-2025-29824 (ransomware activity): Apply April updates; watch for LSASS access + driver load anomalies; EDR block on unsigned kernel access. Microsoft Windows Fast FAT — CVE-2025-24985 (exploited): Apply March updates; hunt for suspicious removable-media events and crafted FA...