bigrus

It’s now official: FBI, CISA and NSA reveal the most exploited vulnerabilities of 2023

Harry November 14, 2024

Five Eyes alliance reveals most exploited vulnerabilities of 2023
Zero-day exploits were a primary concern, with CVE-2023-3519 topping the list
Businesses urged to patch as soon as possible to stay safe

The Five Eyes intelligence alliance has revealed the most commonly exploited vulnerabilities for 2023. In the joint advisory statement, created with the contributions of institutions in the USA, UK, Australia, New Zealand and Canada, organizations were called on to fix security flaws to alleviate the network. exposure

The agencies confirmed what many in the industry know all too well: Threat actors are focusing their attacks on zero-day attacks, and 12 of the 15 most exploited vulnerabilities were initially used as zero-days.

“In 2023, malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks than in 2022, allowing them to conduct cyber operations against higher priority targets.” advice warned.

Injections and upgrades

The biggest vulnerability in 2023 was CVE-2023-3519, a code injection into NetScaler ADC/Gateway using Citrix as the vendor. Critical infrastructure attacks in the USA Last year it had a severity rating of 9.8, making it a critical flaw.

CVE-2023-20198, another high severity flaw in the top three, Cisco released a patch In October 2023, it allowed attackers to create accounts with privileged access on affected devices and gain full control over the device.

As always, the agencies strongly encouraged end-user organizations to continually update software and applications, implement a robust patch management process, and perform regular secure system backups to ensure your company remains safe from cyber attacks.

“Malicious cyber actors continue to have the greatest success exploiting vulnerabilities within two years of the vulnerability being publicly disclosed,” the advisor warned:

Sign up for the TechRadar Pro newsletter to get all the important news, insights, features and guidance your business needs to succeed!

“The benefit of these vulnerabilities diminishes over time as more systems are patched or replaced. When international cybersecurity efforts shorten the lifespan of zero-day vulnerabilities, malicious cyber actors gain less benefit from zero-day attacks.”

You may also like

Harry

View all posts

Post navigation

Previous PostTottenham star Bentancur to give Postecoglou ‘huge’ penalty after ‘racist insult’
Next PostSeattle Seahawks at San Francisco 49ers: Picks, projections, odds

You Might Also Like

bigrus

Google really wants you to use a Play Games profile

Harry October 29, 2024

bigrus

Fire at Cicero’s house: Aura Armas and Luis Armas Jr. died in a fire at Cicero’s house; Officials say a grandmother and her son were among those rescued

Harry November 7, 2024

bigrus

Tennessee man convicted of Jan. 6 riot found guilty of plotting to kill FBI agents investigating him

Harry November 21, 2024

bigrus

Ohio Police Say They Won’t Help Democratic Voters in Need

Harry November 5, 2024

Semainede4jours

Semainede4jours

It’s now official: FBI, CISA and NSA reveal the most exploited vulnerabilities of 2023

Harry

Google really wants you to use a Play Games profile

Fire at Cicero’s house: Aura Armas and Luis Armas Jr. died in a fire at Cicero’s house; Officials say a grandmother and her son were among those rescued

Tennessee man convicted of Jan. 6 riot found guilty of plotting to kill FBI agents investigating him

Ohio Police Say They Won’t Help Democratic Voters in Need