Microsoft warns of rise of hackers exploiting publicly disclosed vulnerabilities

Share post:

According to a new Microsoft study, nation-state groups are becoming a more dangerous threat as they increasingly target critical infrastructures and rapidly exploit zero-day vulnerabilities. Moreover, these nation-state and criminal actors are increasingly exploiting publicly disclosed zero-day vulnerabilities to violate target environments.

It also said that it has “observed a reduction in the time between the announcement of a vulnerability and the commoditization of that vulnerability,” which makes it imperative that organizations patch such exploits on time.

In addition, Microsoft discovered that these actors “have begun to use innovation in automation, cloud infrastructure, and remote access technologies to attack a broader set of targets.” More advanced spoofing methodologies, a shift to targeting the IT services supply chain, and improved tactics to exploit zero-day vulnerabilities before they are publicly disclosed and patched, are part of this strategy.

It points out that, on average, it takes only 14 days for a malicious code to be available to the public after a bug becomes public, and that zero-day attacks, while initially strictly limited, are quickly adopted by other threat actors, leading to uncontrolled probing events before patches are installed.

And some of the vulnerabilities that were first exploited by Chinese actors before being picked up by other hostile groups include: CVE-2021-35211, CVE-2021-40539, CVE-2021-44077, CVE-2021-42321, and CVE-2022-26134.

The sources for this piece include an article in TheHackerNews.

Featured Tech Jobs



Related articles

Apple’s App Store ecosystem generate $1.1 Trillion in developer billings and sales in 2022

According to a study done by Analysis Group, the whole ecosystem of Apple's App Store earned $1.1 trillion...

Dell beats profit estimates in Q1

After a drop in demand, Dell exceeded earnings estimates in the first quarter, indicating a brighter future for...

Twitter’s algorithm shifts towards anger and hostility, study finds

New research by computer scientists from Cornell University and the University of California, Berkeley (UC Berkeley) uncovers major...

Fidelity reports plummeting Twitter value under Musk

According to investment company Fidelity, Twitter's valuation has dropped for the third time since Elon Musk took control...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways