The Rapid7 Annual Vulnerability Intelligence Report

Logo
Presented by

Brendan Watters, Caitlin Condon Manager, Jake Baines, and Spencer McIntyre - Rapid7

About this talk

Rapid7’s Vulnerability Intelligence Report is an annual research report that highlights exploitation trends, explores attacker use cases, and offers a practical framework for understanding new security threats. With the release of a new edition of the report, we’re sitting down with our vulnerability research team to better understand the significant vulnerabilities that shaped the threat landscape in 2021. During this webcast, we will discuss: - Significant vulnerabilities from 2021, including many that continue to be actively and widely exploited - The shortened time between when a vulnerability is disclosed and when it is exploited in the wild—a 71% drop over 2020 - Key vectors and attacker use cases across the CVEs in our 2021 dataset (e.g., driver-based attacks, vulnerabilities that functioned as network pivots and gave external attackers access to internal networks) - Practical takeaways for defenders The webcast will also feature a technical deep dive on the ProxyShell exploit chain targeting Microsoft Exchange Server, and three of Rapid7’s offensive security experts will answer your questions on vulnerability analysis, exploitability, and attack trends.
Related topics:

More from this channel

Upcoming talks (6)
On-demand talks (659)
Subscribers (58009)
Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.