Dark Reading

Vulnerability Exploitation Is Shifting in 2024-25

The number of vulnerabilities exploited by threat actors may be holding steady, but the types of targeted flaws and the speed with which attackers are weaponizing them should give enterprises concern.
Hosted on MSN

Exploits now arrive 10 hours after a vulnerability is published — down from days just two years ago

When Ivanti disclosed critical flaws in its Connect Secure VPN gateway in January 2024, attackers had working exploits circulating within roughly 24 hours. By the time most IT teams scheduled a patch ...
CSOonline

Gen AI is transforming vulnerability hunting for pen-testers and attackers alike

Generative AI has had a significant impact on a wide variety of business processes, optimizing and accelerating workflows and in some cases reducing baselines for expertise. Add vulnerability hunting ...
Infosecurity-magazine.com

Hackers Regularly Exploit Vulnerabilities Before Public Disclosure, Study Finds

Many hackers are opportunistic and often attempt to exploit security gaps to launch an attack days before a vulnerability is disclosed. According to a new report published on July 31 by GreyNoise, ...