Poor patch management blamed for vast majority of ransomware vulnerabilities

The total number of vulnerabilities associated with ransomware attacks is now 278, according to a new report from Ivanti. Meanwhile the sophistication, ambition and number of active ransomware groups is increasing.

Five of the 12 most recently identified vulnerabilities are capable of remote code execution attacks and two are capable of exploiting web applications and being manipulated to launch denial-of-service attacks.. More than 90% of breaches are due to poor patch management, concludes the report.

“Ransomware groups continue to mature their tactics, expand their attack arsenals, and target unpatched vulnerabilities across enterprise attack surfaces.

It’s critical that organizations take a proactive, risk-based approach to patch management and leverage automation technologies to reduce the mean time to detect, discover, remediate, and respond to ransomware attacks and other cyber threats,”

Srinivas Mukkamala, Senior Vice President of Security Products, Ivanti

Source: techradar pro

Informed Sauce is hosting an Infinidat-sponsored event in London on 2 December about protecting businesses from cyber crime.

Short talks from the Metropolitan Police, a military-trained cyber threat expert and sponsor Infinidat’s EMEA Field CTO will be followed by a panel-led, room-wide moderated discussion, with plenty of opportunities for you to contribute your thoughts and ask questions.

Visit the event microsite for more details and to sign up.