2022 opened with a bang, with a number of Log4Shell-related compromises leading to ransomware or other malicious activity. As the year went on, old standbys like phishing and credential brute force allowed attackers in, another Microsoft Exchange remote code execution dropped, and we saw a meaningful increase in the sale of initial access. In this presentation, we look at how threat actors are gaining initial access in 2022 and what that means for you!