Top 30 common cyber vulnerabilities listed in a joint advisory document

Cyber security agencies from the UK, US and Australia have released a joint advisory detailing the most commonly exploited vulnerabilities in 2020 and 2021.

According to the advisory, hackers continue to exploit publicly known – and often years old – vulnerabilities in a range of devices and software. Three of the most targeted vulnerabilities in the last year affected:

  • remote work
  • virtual private networks (VPNs)
  • cloud-based technologies

In particular, many VPN gateway devices remained unpatched during 2020, with the growth of remote work options challenging the ability of public and private sector organisations to conduct rigorous patch management. In 2021, malicious cyber actors continue to target vulnerabilities in perimeter-type devices. This document lists suppliers, products, and common vulnerabilities and exposures that need urgent patching and outlines detection methods and provides recommended mitigations.

Read the guidance on the top 30 routinely exploited vulnerabilities.

Beavis Morgan group is proud to carry the Cyber Essentials accreditation, further acknowledging our commitment to cyber security.

If you have any concerns or queries regarding cybersecurity when accessing this website or any of our online applications, please contact Gareth Dalton.