10 security holes exploited by hackers in 2018
Microsoft accounted for 8 of the top 10 vulnerabilities in the world most exploited by hackers in 2018. The other two positions on this list belong to Adobe Flash and Google Android vulnerabilities. This is a statistic made by analysts from Recorded Future, which specializes in fraudulent attacks and trojan malware distribution campaigns. Although manufacturers have now released security patches for those vulnerabilities, not all users have upgraded to these patches, so the level of losses continues to increase.
The fact that Microsoft is the most popular target for hackers is understandable because its technology is widely used all over the world.
The most exploited flaw, topping this list is the remote code execution vulnerability CVE-2018-8174, with the Double Kill nickname. This vulnerability is located in Windows VBSsipt and can be exploited by hackers via Internet Explorer.
Second on this list is the Zero-day CVE-2018-4878 Flash Adobe, first discovered in February 2018. After only a few hours of discovery by researchers, an emergency patch was released, but a large number of users were still hacked through the CVE-2018-4878 vulnerability because they did not upgrade this patch . Currently, the CVE-2018-4878 vulnerability has appeared in many other exploit kits. One of the most notable exploit kits is Fallout, which is used to power the still-growing ransomware software to this day, ransomware GandCrab. But this vulnerability will disappear by 2020 thanks to available patches.
Discovered in December 2016, CVE-2017-11882, the Microsoft Office software security vulnerability ranks third in the list of most exploited vulnerabilities in 2018. CVE-2017-11882 allows malicious code runs at a time when a user opens a modified file containing malicious code that could put their computer at risk of malicious software being compromised.
Here is a list of the 10 most exploited security vulnerabilities in 2018:
You should read it
- Detects Zero-Day vulnerabilities on Windows PC operating systems that allow administrative rights
- Detects a vulnerability that threatens all Windows computers shipped from 2012 up to now
- Firefox releases urgent update to patch zero-day vulnerability being exploited by hackers
- Facebook Messenger sticks to a vulnerability that exposes users' contacts
- Serious vulnerability in Microsoft Word is being used by hackers to install malware on computers
- Google Chrome has an urgent update, patching a serious zero-day vulnerability being exploited by hackers
- Wi-Fi Vulnerability Leads to FragAttacks Attacks
- Google discovered a dangerous zero day vulnerability on many Samsung Galaxy, Huawei, Xiaomi and even Pixel phones
May be interested
- White-hat hackers, from their passion to the job to earn money, and little-known thingswhite hat hackers - heroes who don't cloak!
- More than 40 Windows drivers contain dangerous privilege escalation vulnerabilitiesthere are more than 40 different drivers containing vulnerabilities that contain holes or poor code that can be exploited by hackers ...
- There are vulnerabilities that allow hackers to bypass the fingerprint security mechanism of Lenovo computersthe fingerprint manager pro program of microsoft windows 7, 8 and 8.1 allows users to store data, log in personal accounts on websites, log in to a lenovo computer via fingerprint there are many vulnerabilities that may allow hackers to access user sensitive data.
- AMD patched a series of security holes in the graphics driver for Windows 10amd has just patched a series of security holes in their graphics driver for windows 10 devices. these vulnerabilities allow hackers to perform privilege escalation attacks or execute arbitrary code on the victim's machine. .
- This is a group of hackers who have successfully hacked Tesla's autopilot system, they hacked Safari on Mac OS in just 20 seconds.the chinese security research group, keen lab, of tencent, recently discovered and exploited a variety of software bugs in tesla's advanced driver support system.
- This is the first hacker into millionaires thanks to hunting bonuses from security errors and he is only 19 years oldsantiago lopez-nickname hacker is @try_to_hack, the 19-year-old argentinian is the first white-hat hacker in the world to earn $ 1 million by hunting bonuses from security holes of big technology companies in the world. gender.
- Detecting a series of vulnerabilities can help hackers disable metal detectors at airportsresearchers have discovered a series of security vulnerabilities in a network component of garrett metal detectors.
- Millions of Android devices stick with security holes in firmware, hackers can exploit to lock users' machineshackers can exploit this vulnerability to hijack the machine or lock the device so that users cannot use their smartphone.
- Mac sticks with serious security holesaccording to ars technica, security expert pedro vilaca found a mac os x vulnerability that allowed hackers to take over the mac after exiting sleep. this vulnerability will affect all macs released before mid-2014
- Detected critical zero-day vulnerability on Adobe Readeradobe has just released the may security update to patch security holes in 12 of their products. among them is a serious zero-day vulnerability in adobe reader that is being actively exploited by hackers.