Researchers at Digital Shadows have identified over 260 vulnerabilities that they witnessed being exploited by threat actors in the final quarter of 2021. Approximately one-third of the vulnerabilities were used for ransomware deployment campaigns. The vulnerabilities that were discovered ranged in risk and affected devices and software, some of them not even making the news. With bigger vulnerabilities taking the spotlight during that time, such as the Log4j vulnerability, it is not uncommon to miss patch releases for smaller software and devices. Patch management can be one of the hardest tasks to manage within an IT network, especially those with large networks. These 260 vulnerabilities are still commonly going unpatched within networks, which leaves organizations open to major security risks.
When evaluating a Managed Detection & Response (MDR) service there are 5 critical components that