Back
July 30, 2022  —  Eric Swotinsky
Incident reports

Report: Attackers scan for vulnerabilities within 15 minutes of CVE disclosure

Acronis Cyber Protect
formerly Acronis Cyber Backup
View Live Demo

A new report from Palo Alto's Unit 42 found it only takes 15 minutes after the publication of a new CVE for the first cybercriminals to begin scanning potentially vulnerable targets. Within a few hours, the first active exploitation attempts have already started.

The report shows that the ProxyShell exploit chain was the most-exploited vulnerability in the first half of this year, making up 55% of all attacks. This was followed by Log4j at 14%.

In the first half of this year alone, 13,000 vulnerabilities were reported. Not all of these were critical, but some of them allowed for remote code execution leading to full system compromise.

Acronis Cyber Protect Cloud includes built-in vulnerability assessment and patch management capabilities, helping you to automatically identify and address workloads in need of an update.

Eric Swotinsky

About Acronis

Acronis is a Swiss company, founded in Singapore. Celebrating two decades of innovation, Acronis has more than 1,800 employees in 45 locations. The Acronis Cyber Protect Cloud solution is available in 26 languages in over 150 countries and is used by 20,000 service providers to protect over 750,000 businesses.

Cybersecurity Cyber protection Patch management Vulnerability management

More from Acronis

December 05, 2023  — 4 min read
Acronis
December 05, 2023  — 4 min read
Acronis Cyberthreats Update, December 2023
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis analysts and sensors. Figures presented here were gathered in November of this year and reflect threats that we detected as well as news stories from the public domain. This report represents a global outlook and is based on more than one million unique endpoints distributed around the world.
November 16, 2023  — 13 min read
Acronis
November 16, 2023  — 13 min read
DarkGate relies on malicious AutoIt scripts
DarkGate was first spotted in 2018. New attacks have used Skype messages with malicious VBA attachments. The main purpose of this script is to download and execute the AutoIt script, which has been observed in DarkGate campaigns since 2020. A user with the name ‘RastaFarEye’ advertised his malware on underground Russian language forums, and it now has numerous capabilities.
November 15, 2023  — 10 min read
Acronis
November 15, 2023  — 10 min read
Ransomware diaries, part 1: QazLocker -Cyb3rK1dZ has more time than skills
This article is the first in the ransomware diaries series. We will provide an in-depth look at some active ransomware families, such as Mallox or encryptors from the Epsilon Gang, revealing the unique picture they occasionally paint, along with commonalities they maintain along the way. Every family will represent a different piece of the current ransomware landscape to showcase how diversified it has become over the years.
November 06, 2023  — 4 min read
Acronis
November 06, 2023  — 4 min read
Acronis Cyberthreats Update, November 2023
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis analysts and sensors. Figures presented here were gathered in October of this year and reflect threats that we detected as well as news stories from the public domain. This report represents a global outlook and is based on more than one million unique endpoints distributed around the world.