Google Mandiant security analysts warn of a worrying new trend of threat actors demonstrating a better capability to discover and exploit zero-day vulnerabilities in software.

Specifically, of the 138 vulnerabilities disclosed as actively exploited in 2023, Mandiant says 97 (70.3%) were leveraged as zero-days.

This means that threat actors exploited the flaws in attacks before the impacted vendors knew of the bugs existence or had been able to patch them.

  • @[email protected]
    link
    fedilink
    English
    51 month ago

    Unless they’re too big to fail, and especially if they are too big to jail, e.g. Facebook, Google, etc. Or if they correctly judge the stupidity and malleability of their audience e.g. Reddit, X, etc.

    • @CheeseNoodle
      link
      English
      31 month ago

      That just kicks the can down the road, can’t run a company when no one can afford your product. Which is the situation we seem to be rapidly approaching.