Attacks on web applications are one of the main methods of hackers penetrating someone else’s infrastructure. At the same time, 42% of such attacks are related to remote code execution (RCE), which is the most serious threat, the successful implementation of which opens up almost unlimited possibilities for attackers. socialbites.ca learned about this from research conducted by Bi.Zone.
“Exploitation of RCE vulnerabilities poses the greatest threat not only in terms of prevalence but also in terms of severity of consequences. If successful, attackers could take full control of the target system, including the ability to delete, modify, or access sensitive data and system resources,” the company said.
Bi.Zone experts analyzed web attacks aimed at compromising public-facing applications in the first half of 2024 and found that almost three-quarters of the attacks targeted CMS, CRM, and wiki systems such as Bitrix, WordPress, and Confluence.
Experts attribute the number of attacks on listed web applications to a combination of factors. First, these applications are extremely common in companies of all sizes and industries. Second, they are frequently updated and supplemented with third-party modules. This leads to the regular discovery of new vulnerabilities that attackers can exploit. Third, these applications are accessible not only from the company’s infrastructure, but often from the Internet: websites – to perform their tasks, CRM and wiki systems – for convenience.
The top 3 web threats that attackers attempt to implement include RCE (42%), attacks aimed at gaining access to configuration files (16%), and theft of user data (15%).
Previously Russia came first Place in the number of databases leaked to the Darknet.