Techly NewsGet the app

Get the latest tech news

CISA, NSA, and Partners Issue Annual Report on Top Exploited Vulnerabilities


FORT MEADE, Md. - Malicious cyber actors are increasingly exploiting zero day vulnerabilities to compromise enterprise networks, according to an annual Cybersecurity Advisory (CSA) about the top

Eleven of the 15 CVEs were initially exploited as a zero day – a vulnerability in a computer system unknown to its owner, developer, and the general public. The report urges vendors, designers, and developers to prioritize secure by default configurations and to ensure published CVEs include the proper Common Weakness Enumerations (CWEs) to identify the root cause of the vulnerability. It also advises end-user organizations to apply timely patches to systems, implement a centralized patch management system, use security tools (e.g., endpoint detection and response (EDR), web application firewalls, and network protocol analyzers), and ask software providers about their secure by design programs.

Get the Android app

Or read this on r/technology

Read more on:

Photo of partners

partners

Photo of CISA

CISA

Photo of nsa

nsa

Related news:

News photo

CISA warns of more Palo Alto Networks bugs exploited in attacks

News photo

CISA, FBI Confirm China Hacked Telecoms Providers for Spying

News photo

FBI, CISA, and NSA reveal most exploited vulnerabilities of 2023

« Pakistani religious body declares using VPN is against Islamic law
Show HN: Get any domain's brand data via API »