Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
More than 1.2 thousand 0-day or zero-day vulnerabilities were discovered by specialists in various software in the first half of 2024. This is 25% more than in the same period a year earlier. Informzashita experts believe that the number of attacks through zero-day vulnerabilities will only grow by the end of the year. Representatives of Informzashita told CNews about this.
0-day are vulnerabilities in software for which protection methods have not yet been developed. That is, when such a breach is detected in a company's information security system, the probability of hackers' success will be maximum.
Informzashita experts attribute the increase in the number of detected vulnerabilities to the improvement of scanning methods, security analysis and other technologies for detecting problem areas. However, attackers are also improving their ability to find 0-day, which increases the risks to the cybersecurity of organizations. In 2023, experts recorded 97 attacks through zero-day vulnerabilities, 50% more than in 2022.
Given the increase in the number of zero-day vulnerabilities detected, Informzashchita believes that we should also expect an increase in the number of attacks through them. Experts predict a 15-18% increase to 110-115 0-day attacks by the end of 2024. Improving detection methods for such vulnerabilities helps to find them earlier than attackers. However, hackers also use advanced detection technologies, which complicates the work of information security specialists.
Experts also note a trend towards redistribution of attack targets. If in 2023, two thirds of cyber incidents with 0-day occurred on end users, and a third on businesses, then in 2024, approximately 40-45% of zero-day attacks are expected to occur on corporate software. On the one hand, improving vulnerability detection methods allows hackers to find them in more complex information security systems, on the other hand, the increased risks of hacking force attackers to choose targets that can pay more.
0-day are vulnerabilities in software for which protection methods have not yet been developed. That is, when such a breach is detected in a company's information security system, the probability of hackers' success will be maximum.
Informzashita experts attribute the increase in the number of detected vulnerabilities to the improvement of scanning methods, security analysis and other technologies for detecting problem areas. However, attackers are also improving their ability to find 0-day, which increases the risks to the cybersecurity of organizations. In 2023, experts recorded 97 attacks through zero-day vulnerabilities, 50% more than in 2022.
Given the increase in the number of zero-day vulnerabilities detected, Informzashchita believes that we should also expect an increase in the number of attacks through them. Experts predict a 15-18% increase to 110-115 0-day attacks by the end of 2024. Improving detection methods for such vulnerabilities helps to find them earlier than attackers. However, hackers also use advanced detection technologies, which complicates the work of information security specialists.
Experts also note a trend towards redistribution of attack targets. If in 2023, two thirds of cyber incidents with 0-day occurred on end users, and a third on businesses, then in 2024, approximately 40-45% of zero-day attacks are expected to occur on corporate software. On the one hand, improving vulnerability detection methods allows hackers to find them in more complex information security systems, on the other hand, the increased risks of hacking force attackers to choose targets that can pay more.
