Google's Threat Intelligence Group discovered 90 zero-day vulnerabilities exploited in the wild in 2025, a notable increase from the 78 identified in 2024. A significant proportion, nearly half, of these flaws targeted enterprise systems, setting a new record. This upward trend in attacks on corporate infrastructure suggests that threat actors are shifting their focus towards high-value targets. The fact that 43 of these zero-day vulnerabilities were aimed at enterprise technologies underscores the growing risk to organizations1. As the number of exploited zero-day flaws continues to rise, the window for patching and mitigating these vulnerabilities is rapidly shrinking. This surge in zero-day activity, particularly against enterprise systems, matters to security practitioners because it highlights the need for immediate exposure assessment and swift remediation to prevent potential breaches.