Microsoft tops CISA’s list of exploited CVEs used in ransomware attacks
Cybersecurity Dive
|
Contributed by: Bill Russell
Summary
Ransomware attacks often exploit vulnerabilities, with 1/5 of common vulnerabilities used for such attacks, reports CISA. Microsoft product-linked vulnerabilities make up 2/5 of those exploited. Ransomware disrupts worldwide; organizations unaware of threat actors' vulnerabilities on their network. CISA addressing this through Ransomware Vulnerability Warning Pilot, under the 2022 Cyber Incident Reporting Act.
