NSA: Top 5 vulnerabilities actively abused by Russian govt hackers

Take a look at your IT asset management system (you have one of those, right?) and see if any of the listed vulnerabilities apply to your network. If the SVR and Chinese have been exploiting these, you can bet others will pile in…:

[…] As the Russian SVR has been utilizing a combination of these vulnerabilities in their attacks, it is strongly advised that all administrators install the associated security updates immediately.

The NSA warned last year that two of these vulnerabilities, CVE-2019-11510 and CVE-2019-19781, are also in the top 25 vulnerabilities utilized by China state-sponsored hackers.


Original Article