Google and Microsoft had primarily the most vulnerabilities within the major half of of 2021
The Remodel Abilities Summits delivery October 13th with Low-Code/No Code: Enabling Endeavor Agility. Register now!
Google and Microsoft accumulated primarily the most vulnerabilities within the major half of of 2021, based totally on findings from Atlas VPN. Although no longer all exposures can trigger excessive injury, hackers could perhaps exploit a pair of of them for excessive attacks.
Google had 547 accumulated vulnerabilities at some stage within the major half of of 2021. Exploiting Google merchandise like Chrome is in type amongst cybercriminals. More than 3 billion of us tell the browser, which diagram that more web users can become victims of the exploits.
Subsequent up, the 2d most exposures were show in Microsoft merchandise — 432. Philosophize-backed threat actors from China abused Microsoft Exchange Server vulnerabilities to offer ransomware attacks. A range of attackers would drop cryptocurrency miners from the submit-exploit web shells.
Oracle registered 316 total vulnerabilities within the major six months of 2021. Most regularly, the exploits are show in Oracle WebLogic Server, which capabilities as a platform for creating, deploying, and working enterprise Java-based totally applications. The exploited flaws could perhaps give acquire admission to to the affected machine for a ways off attackers.
Some vulnerabilities stand out due to the their specific relevance or hazard. As an instance, within the major half of of 2021, there were 1,023 vulnerabilities stumbled on with a danger level of 10. One of the basic exploits that applied to such a level is CVE-2021-22986, with a earn of 9.8. The vulnerability used to be show within the safety firm’s F5, BIG-IP, and BIG-IQ companies and products. Successful exploitation of the flaw allowed to carry total alter of the machine.
Vulnerabilities with decrease ratings are either no longer perilous or veritably exploitable. Nonetheless, abusing flaws in Google or Microsoft merchandise allow cybercriminals to probe thousands and thousands of methods.
The knowledge is based totally on Telefonica Tech Cybersecurity Document 2021 H1. The bid analyzes mobile security and primarily the most stylish vulnerabilities in as of late’s cybersecurity landscape.
Read the corpulent bid by Atlas VPN.
VentureBeat
VentureBeat’s mission is to be a digital city square for technical resolution-makers to execute recordsdata about transformative technology and transact.
Our space delivers obligatory recordsdata on recordsdata technologies and methods to manual you as you lead your organizations. We invite you to become a member of our community, to acquire admission to:
- up-to-date recordsdata on the themes of interest to you
- our newsletters
- gated idea-leader articulate material and discounted acquire admission to to our prized events, a lot like Remodel 2021: Be taught More
- networking substances, and more