NSA publishes list of top vulnerabilities currently targeted by Chinese hackers - RedSeal

NSA publishes list of top vulnerabilities currently targeted by Chinese hackers

2021-02-19

/ byBill Burge, RedSeal Professional Services

RedSeal Cyber Threat Series

The U.S. National Security Agency published a report detailing the top 25 vulnerabilities consistently being scanned, targeted, and exploited by Chinese state-sponsored hacking groups.

All 25 vulnerabilities are known and have patches available from their vendors.

Exploits for many vulnerabilities are available publicly and have been used by various malware and ransomware groups and other nation-state actors.

The first three CVEs of this 25 that should be remediated — especially if open to an untrusted network — are:

Citrix Netscaler CVE-2019-19781
Windows RDP Exploit (aka Bluekeep) CVE-2019-0708
Windows Zerologon CVE-2020-1472)

RedSeal customers should:

Create and run daily reports until all systems with the 25 vulnerabilities are patched.

For additional details, contact your RedSeal sales representatives or email info@redseal.net

References:

https://www.zdnet.com/article/nsa-publishes-list-of-top-25-vulnerabilities-currently-targeted-by-chinese-hackers/

Tags: Cyber Threat

NSA publishes list of top vulnerabilities currently targeted by Chinese hackers

Share this entry

Recent Posts

Drowning in Vulnerabilities? Here’s How to Finally Know What to Fix First

RedSeal recognized in the 2025 Gartner® Magic Quadrant™ for Exposure Assessment Platforms: A Strong Position in a Rapidly Expanding Market

You can’t patch what you don’t understand…

RedSeal Recognized in the 2025 Gartner® Magic Quadrant™ for Exposure Assessment Platforms

Close the Gap: How RedSeal Workflow Turns Exposure Insights into Action

Blog Archive

Get the latest news, invites to events, and threat alerts

Platform

Services

Solutions

Partners

Company

Resources