The most trending vulnerabilities among Cybercriminals
CVEs most actively exploited by criminal groups: targeting trends, time-to-exploit metrics and prioritisation guidance for vulnerability management programmes.
Tag
Cve
Read the analysis
Critical vulnerability: PrintNightmare
PrintNightmare (CVE-2021-34527): Windows Print Spooler privilege escalation and RCE, exploitation primitives, mitigation steps and detection across Windows estates.
VMware vCenter vulnerability
VMware vCenter critical vulnerability: unauthenticated RCE primitives, exposure metrics, exploitation evidence and remediation steps for affected estates.
Italy Report: Microsoft Exchange
Country-level snapshot of Microsoft Exchange compromise across Italian organisations: exposure metrics, exploitation observed and remediation status.
Handling the Microsoft Exchange Server cyber attack — why it can be worse than WannaCry
Mass exploitation of ProxyLogon (CVE-2021-26855/26857/26858/27065) on Microsoft Exchange Server: web shell hunting, two distinct intrusion sets observed in Italy, defensive guidance and post-compromise containment.
Compromise and Mining — Detection & Response
Cryptomining as a post-compromise objective: indicators on Linux and Windows endpoints, persistence techniques, network signals and containment workflow.
