tags:ITWthreat_intel original link: A review of zero-day in-the-wild exploits in 2023 newsletter link: exploits.club Weekly Newsletter 14
Exploits Club Summary:
As is becoming a Google custom, the Threat Analysis Group released their breakdown of the 97 ITW 0-days observed throughout 2023. Roughly 60% of the observed exploits targeted end-user platforms such as mobile devices, OSes and browsers. In addition, TAG noted an increase in enterprise software targeting, up roughly 2% from last year. The team also commented on the shift to targeting 3rd party components and the role commercial surveillance vendors played in the landscape. A full report can be found here.