Most of 2023’s Prime Exploited Vulnerabilities Had been Zero-Days
Zero-day vulnerabilities are extra generally used, in response to the 5 Eyes:
Key Findings
In 2023, malicious cyber actors exploited extra zero-day vulnerabilities to compromise enterprise networks in comparison with 2022, permitting them to conduct cyber operations in opposition to higher-priority targets. In 2023, nearly all of essentially the most regularly exploited vulnerabilities have been initially exploited as a zero-day, which is a rise from 2022, when lower than half of the highest exploited vulnerabilities have been exploited as a zero-day.
Malicious cyber actors proceed to have essentially the most success exploiting vulnerabilities inside two years after public disclosure of the vulnerability. The utility of those vulnerabilities declines over time as extra methods are patched or changed. Malicious cyber actors discover much less utility from zero-day exploits when worldwide cybersecurity efforts scale back the lifespan of zero-day vulnerabilities.
Sidebar picture of Bruce Schneier by Joe MacInnis.
