12 most common vulnerabilities exploited by cybercriminals

Becker's Health IT

Jackie Drees

The FBI and Cybersecurity and Infrastructure Security Agency published new security guidance July 28 urging public and private organizations to secure their IT networks and unveiled the top 12 commonly exploited vulnerabilities hackers target.

The FBI and the agency collaborated with the Australian Cyber Security Centre and the United Kingdom's National Cyber Security Center on the advisory.

​​"Four of the most targeted vulnerabilities in 2020 affected remote work, VPNs, or cloud-based technologies," the agencies stated in the report. "Many VPN gateway devices remained unpatched during 2020, with the growth of remote work options challenging the ability of organizations to conduct rigorous patch management."

Here are the 12 most exploited common vulnerabilities and exposures (CVEs) routinely exploited by malicious cyber actors in 2020, according to the report.

1. Citrix: CVE-201919781 — arbitrary code execution

2. Pulse: CVE 2019-11510 — arbitrary file reading ...

Get the Morning Update

Thanks for subscribing!