The 2024 Midyear Threat Landscape Review has identified a significant increase in reported Common Vulnerabilities and Exposures (CVEs) compared to the previous year, highlighting the growing threat posed by the exploitation of vulnerabilities.
Description
The 2024 Midyear Threat Landscape Review revealed a 30% increase in the number of reported CVEs, totaling 22,254 vulnerabilities [1]. Of these, 0.91% were weaponized, emphasizing the need to address previously identified vulnerabilities [1]. Public-facing applications and remote services were targeted for initial access and lateral movement within networks [2], with ransomware campaigns remaining a significant concern. There was also a 10% rise in the weaponization of older CVEs discovered before 2024 [1].
Conclusion
The report underscores the critical importance of integrating threat intelligence with vulnerability management tools to enhance security defenses and mitigate risks associated with high-critical vulnerabilities. Addressing previously identified vulnerabilities and staying vigilant against evolving threats are essential for safeguarding against potential cyber attacks in the future.
References
[1] https://vulners.com/qualysblog/QUALYSBLOG:7BB58702E3DE3500C9014A05CEC3D146
[2] https://www.infosecurity-magazine.com/news/cves-surge-30-2024/
