Ollie Whitehouse, CTO of the UK's National Cyber Security Centre, states that more routine initial exploitation of zero-day vulnerabilities represents the new normal, concerning end-user organizations and vendors alike.
Whitehouse emphasizes that to reduce the risk of compromise, it is vital for organizations to stay proactive by applying patches promptly and insisting on secure-by-design products.
He urges network defenders to be vigilant with vulnerability management, maintaining situational awareness in operations, and calls on product developers to embed security in product design.
The annual list of the most exploited vulnerabilities highlights Citrix at the top due to a remote code execution bug and related sensitive information leaks, a concerning trend.
Collection
[
|
...
]