- This cheap USB power meter is shockingly accurate - and I highly recommend it
- The Linux tool you forgot about: How Synaptic makes software installation a breeze
- Magnify your screen and more with PowerToys' new ZoomIt tool - here's how
- Save the date! Apple is set to change the way you send event invites - here's what we know
- CISA Warns of Backdoor Vulnerability in Contec Patient Monitors
768 CVEs Exploited in the Wild in 2024
A total of 768 CVEs were publicly reported as exploited in the wild for the first time in 2024, according to new data by VulnCheck.
This represents a 20% increase compared to 2023, when 639 CVEs were publicly reported as exploited in the wild for the first time.
Around a quarter (23.6%) of these vulnerabilities were exploited on or before the day their CVEs were publicly disclosed, making them zero days. This is a slight fall from 2023, when 26.8% of CVEs were zero days.
Half of CVEs were reported as exploited within 192 days of being publicly disclosed in 2024, while 75% were within 1004 days.
“Despite the buzz around zero-day exploitation, these findings indicate that exploitation can happen at any time in a vulnerability’s lifecycle,” the researchers noted.
During 2024, just 1% of the CVEs published were reported publicly as exploited in the wild, which VulnCheck said aligns with rates seen in previous years.
Read now: Learning from 2024: An Unprecedented Exploitation of Remote Access Technologies
Exploit Report Spikes Linked to Industry Events
The vulnerability intelligence firm observed notable spikes in public reports of exploits during particular periods. These included during April and May 2024, coinciding with the RSA Conference and various end-of-quarter cybersecurity research reports.
The onboarding of new sources of vulnerability exploitation sources also contributed to the increase in public reports. This includes the emergence of the Shadowserver Foundation in January 2024, a nonprofit threat intelligence organization.
“These spikes underscore how industry events and new resources impact reporting volumes on exploitation. We encourage organizations to publicly disclose any instances where there is exploitation activity,” the researchers wrote.
The overall baseline of exploited CVEs ranged from 30-50 per month.
VulnCheck said that 112 unique sources provided initial evidence of CVE exploitation in 2024. These included cybersecurity vendors, non-profit organizations, software companies disclosing exploitation of their own products and social media sites.
