CVEs on the Rise: 2024 Sees a Surge in Exploits Amid Industry Buzz

In 2024, a whopping 768 CVEs were reported as exploited in the wild, marking a 20% rise from the previous year. Despite the zero-day buzz, exploitation can strike anytime in a vulnerability’s lifecycle. Industry events and new sources like Shadowserver Foundation have spiced up the exploit report scene.

3P
Published: February 3, 2025 2:07 pmAdded: February 5, 2025 at 7:09 amAssembled by: The Editor
Pro Dashboard

Hot Take:

2024 must have been the year hackers decided to add a little spice to their life with a 20% increase in exploited CVEs. But hey, who doesn’t love a good plot twist where zero-days are on a slight decline? It’s like hackers are trying to keep us on our toes by exploiting vulnerabilities across the calendar just for fun.

Key Points:

  • 768 CVEs were reported as exploited in 2024, a 20% increase from the previous year.
  • 23.6% of these were zero-day vulnerabilities, a slight decrease from 2023.
  • 50% of CVEs were exploited within 192 days of public disclosure.
  • Exploit reports spiked during industry events like the RSA Conference.
  • New threat intelligence sources, like the Shadowserver Foundation, contributed to the increase in reports.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?