The number of vulnerabilities exploited by threat actors may be holding steady, but the types of targeted flaws and the speed with which attackers are weaponizing them should give enterprises concern.
When Ivanti disclosed critical flaws in its Connect Secure VPN gateway in January 2024, attackers had working exploits circulating within roughly 24 hours. By the time most IT teams scheduled a patch ...
When Progress Software disclosed a critical flaw in its MOVEit file-transfer tool in May 2023, the Cl0p ransomware gang had already been exploiting it for weeks. When Citrix warned of a ...