Security News > 2020 > May > Top 10 most exploited vulnerabilities list released by FBI, DHS CISA
That's just one of the vulnerabilities that the agencies are seeing being exploited this year by what they say are sophisticated foreign cyber actors.
All that for 2020, and we still haven't even gotten to the meat of the report: the 10 most exploited vulnerabilities for the years 2016 through 2019.
Before we hit that list take heed of what the US cybersecurity outfits are telling us: namely, that it's vital for IT security pros at public and private sector organizations to place "An increased priority on patching the most commonly known vulnerabilities exploited by sophisticated foreign cyber actors."
The rationale behind the report is to provide details on vulnerabilities that are routinely exploited by foreign cyber actors - primarily Common Vulnerabilities and Exposures - in order for organizations to reduce the risk of these foreign threats, according to the US. Leaving systems unpatched is making it easy as pie for those foreign threat actors.
Rather, it's intended to identify a malware family commonly associated with exploiting the CVE. You can also access the list as a PDF. As well, the US gave mitigations for vulnerabilities exploited in 2020.
News URL
Related news
- CISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities List (source)
- CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25 (source)
- CISA Adds Four Vulnerabilities to Catalog for Federal Enterprise (source)
- CISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities List (source)
- CISA and FBI: Ghost ransomware breached orgs in 70 countries (source)
- CISA tags Windows, Cisco vulnerabilities as actively exploited (source)
- DHS says CISA will not stop monitoring Russian cyber threats (source)
- CISA Identifies Five New Vulnerabilities Currently Being Exploited (source)