Advisory calls for timely patches to avoid top cyber risks

Apr 27, 2022 - 05:10 PM
cybersecurity

Cybersecurity authorities in the United States, Australia, Canada, New Zealand and United Kingdom today advised organizations to apply timely patches and implement a centralized patch management system to reduce their risk of compromise from the most common cyber vulnerabilities exploited by malicious cyber actors in 2021 and 2020.

John Riggi, AHA鈥檚 national advisor for cybersecurity and risk, said, 鈥淎ccording to this advisory from the 鈥楩ive Eyes鈥 nations, hackers develop and deploy malware that exploits a known vulnerability within two weeks of its public release. This is often far quicker than patches are available and organizations can implement them 鈥 especially in hospitals, where patches must be thoroughly tested before being applied to ensure uninterrupted care delivery and patient safety. This advisory gives us clear direction on the most exploited vulnerabilities that should be prioritized for patching, if not already done so. It is also clear that hackers are often less interested in identifying an unknown or 鈥榸ero-day鈥 vulnerability for exploitation than they are in simply beating us in a race to 鈥榚xploit before we patch.鈥欌 

Related News Articles

Headline
CMS warns of phishing fax scheme; AHA monitoring other reported social engineering schemes聽
The Centers for Medicare & Medicaid Services today announced it has identified a fraud scheme targeting Medicare providers and suppliers. CMS said scammers鈥
Headline
Agencies issue advisory on updated tactics by Play ransomware group
The FBI, Cybersecurity and Infrastructure Security Agency and Australian Cyber Security Centre June 4 released an advisory on updated actions and tactics used鈥
Headline
Agencies release guidance on AI data security聽
The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners May 22 released guidance on securing data used for鈥
Headline
Russian state-sponsored cyber actors targeting tech companies, others聽
The FBI, along with the National Security Agency and other international cybersecurity agencies, this week released a joint agency advisory on cyber operations鈥
Headline
FBI warns of cyber actors exploiting end-of-life routers
The FBI's Internet Crime Complaint Center released an alert May 7 warning of cyber actors exploiting vulnerabilities in end-of-life routers. Routers dated 2010鈥
Headline
FBI warns of malicious text, voice-messaging campaign impersonating senior U.S. officials
The FBI鈥檚 Internet Criminal Complaint Center May 15 released an alert warning of a malicious text and voice messaging campaign involving impersonators鈥