Cybersecurity agencies from the Five Eyes nations have outlined the 15 most exploited vulnerabilities of 2021.
Agencies from the United States, United Kingdom, Australia, New Zealand, and Canada said hackers were targeting public and private sectors and warned organisations to implement mitigation strategies.
The most commonly exploited vulnerability was Log4Shell, which affects Apache’s Log4j library, and involves submitting a specially crafted request to a system that will then allow a cyber actor to take full control.
Hackers can then steal information and launch ransomware attacks.
“We know that malicious cyber actors go back to what works, which means they target these same critical software vulnerabilities and will continue to do so until companies and organizations address them,” according to Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency (CISA).
…