Time from vulnerability disclosures to exploits is shrinking

2022-07-27 15:00

Palo Alto Networks' annual Unit 42 incident response report is out, warning of an ever-decreasing gap between vulnerability disclosures and an increase in cybercrime.

"The 2022 Attack Surface Management Threat Report found that attackers typically start scanning for vulnerabilities within 15 minutes of a CVE being announced," the vendor says.

Approximately 36 percent of the 600 incident response cases studied in Unit 42's report were ransomware, while 34 percent of attackers chose business email compromise, where the scammers target legit addresses and then use their access to start redirecting funds and issuing invoices and the like.

As for how attackers get into enterprise systems, most of the intrusions were put down to our old friend phishing, the exploitation of known vulnerabilities or brute force credential attacks.

Looking at ransomware in particular, the report found that it was vulnerabilities that occupied almost half of the mean of initial access, followed by brute force credential attacks and phishing.

As for where things are going, researchers predict that the time to patch will continue to shrink and the skills necessary to carry out an attack will reduce.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/07/27/palo_alto_unit_42/

#disclosure #exploit #vulnerability