12 New Flaws Used in Ransomware Attacks in Q3

The Q3 2021 report revealed a 4.5% increase in CVEs associated with ransomware and a 3.4% increase in ransomware families compared with Q2 2021.

A dozen new vulnerabilities were used in ransomware attacks this quarter, bringing the total number of vulnerabilities associated with ransomware to 278: a 4.5 percent increase over Q2, according to a new report.

Five of the newbies can be used in remote code execution (RCE) attacks, while two can be used to exploit web apps and launch denial-of-service (DoS) attacks. That’s never good news, but it’s particularly teeth-grinding given that this quarter also saw distributed DoS (DDoS) attacks shatter records, according to a separate study.

The news about the new vulnerabilities that have been pounced on by ransomware operators comes from Ivanti’s Q3 2021 ransomware index spotlight report, published on Tuesday and conducted with Cyber Security Works and Cyware.


Aaron Sandeen, Cyber Security Works CEO, said in a press release that Q3 was a copy-paste of the ransomware trends from the rest of the year. Namely, “We continued to see ransomware attacks aggressively increase in sophistication and frequency in Q3.”

The Early Bird Gets the Worm

The quarterly ransomware analysis also found that

Read More: https://threatpost.com/12-new-flaws-used-in-ransomware-attacks-in-q3/176137/