Security News > 2021 > November > 12 New Flaws Used in Ransomware Attacks in Q3

A dozen new vulnerabilities were used in ransomware attacks this quarter, bringing the total number of vulnerabilities associated with ransomware to 278: a 4.5 percent increase over Q2, according to a new report.

The news about the new vulnerabilities that have been pounced on by ransomware operators comes from Ivanti's Q3 2021 ransomware index spotlight report, published on Tuesday and conducted with Cyber Security Works and Cyware.

The quarterly ransomware analysis also found that ransomware groups are still finding and exploiting zero-day weaknesses, even before CVEs are hatched and patched.

The Q3 ransomware index update for 2021 identified ransomware groups expanding their attack arsenal with 12 new vulnerability associations in Q3,. Riding Brand-New Bugs, Bearing Shiny New Toys.

The techniques being used in ransomware attacks are also getting more sophisticated.

The report also found that three vulnerabilities dating to 2020 or earlier became newly associated with ransomware in Q3 2021, bringing the total count of older vulnerabilities associated with ransomware to 258: a whopping 92.4 percent of all vulnerabilities tied to ransomware.

News URL

https://threatpost.com/12-new-flaws-used-in-ransomware-attacks-in-q3/176137/