STOCK TITAN

Rapid7 Report: Vulnerability Intelligence Shows Significant Year-Over-Year Increase in Widely Exploited Security Flaws

Rhea-AI Impact
(Moderate)
Rhea-AI Sentiment
(Very Negative)
Tags
Rhea-AI Summary

Rapid7 (NASDAQ: RPD) released its 2021 Vulnerability Intelligence Report, revealing significant trends in cybersecurity threats. The report identified the 50 most prominent vulnerabilities, with 43 actively exploited in the wild. Notably, widespread threats rose by 136% compared to 2020, affecting the likelihood of attacks on organizations. Key findings include that 66% of vulnerabilities were classified as widespread threats, and over half were used in ransomware operations. The average time to exploitation decreased significantly from 42 days in 2020 to just 12 days in 2021.

Positive
  • 43 out of 50 vulnerabilities identified were actively exploited in 2021.
  • Widespread threats increased by 136% compared to the previous year.
  • 66% of vulnerabilities were classified as widespread threats.
Negative
  • The reported increase in ransomware indicates a higher risk for businesses.
  • Average time to exploitation dropped from 42 days in 2020 to 12 days in 2021.

BOSTON, March 28, 2022 (GLOBE NEWSWIRE) -- Rapid7, Inc. (NASDAQ: RPD), a leading provider of security analytics and automation, today announced the release of its latest Vulnerability Intelligence Report examining the 50 most notable security vulnerabilities and high-impact cyberattacks in 2021.

On any given day, security professionals must prioritize and address viable threats from an overwhelming number of reported vulnerabilities. Rapid7 researchers analyze thousands of vulnerabilities each year to understand root causes, dispel misconceptions, and share information on why certain flaws are more likely to be exploited than others. From this research, the team creates a report of the highest priority CVEs based on their likelihood of widespread exploitation.

“We research and publish this report to contextualize the vulnerabilities that introduce serious risk to a wide range of organizations,” said vulnerability research manager and lead Vulnerability Intelligence Report author, Caitlin Condon. “Our goal is to highlight exploitation trends, explore attacker use cases, and offer a framework for understanding new security threats as they arise.”

The Rapid7 2021 Vulnerability Intelligence Report highlights 50 vulnerabilities from 2021 that posed considerable risk to businesses of all sizes. Of those 50 vulnerabilities, 43 were exploited in the wild. Furthermore, vulnerabilities classified as “widespread threats” for the scale at which they were exploited increased 136% over the previous year.

Key findings from the research report include:

  • Broad, opportunistic exploitation increased significantly in 2021. 66% of vulnerabilities in this report were classified as widespread threats, compared to only 28% in 2020.
  • More than 60% of widespread threats cited in this report have been used in ransomware operations, and more than half of widespread threats began with a zero-day exploit.
  • More than half (52%) of the known exploited vulnerabilities in this report came under attack within one week of public disclosure, and the average time to known exploitation decreased from 42 days in 2020 to just 12 days in 2021.

“In years past, vulnerabilities and hacking incidents led to fewer widespread attacks,” added Condon. “The recent increase in ransomware, coin mining, and other widespread attacks means the probability of an 'average business' being targeted has correspondingly increased.”

To access the complete Rapid7 2021 Vulnerability Intelligence Report and related resources click here.

About Rapid7
Rapid7 (Nasdaq: RPD) is advancing security with visibility, analytics, and automation delivered through our Insight cloud. Our solutions simplify the complex, allowing security teams to work more effectively with IT and development to reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks. Over 10,000 customers rely on Rapid7 technology, services, and research to improve security outcomes and securely advance their organizations. For more information, visit our website, check out our blog, or follow us on LinkedIn or Twitter.

Press contact:
Kelly Crummey
Corporate Communications
press@rapid7.com
(617) 921-8089

Investor Contact:
Sunil Shah
Vice President, Investor Relations
investors@rapid7.com
(617) 865-4277

 


FAQ

What does Rapid7's 2021 Vulnerability Intelligence Report reveal about cyber threats?

The report highlights significant increases in the exploitation of vulnerabilities, with 43 of the top 50 vulnerabilities actively exploited.

How many widespread threats were identified in the Rapid7 report?

The report classified 66% of the identified vulnerabilities as widespread threats.

What significant trend was observed regarding ransomware in the 2021 Vulnerability Intelligence Report?

More than 60% of widespread threats have been used in ransomware operations.

How did the time to known exploitation change according to Rapid7's report?

The average time to known exploitation decreased from 42 days in 2020 to 12 days in 2021.

Rapid7, Inc.

NASDAQ:RPD

RPD Rankings

RPD Latest News

RPD Stock Data

2.55B
62.25M
1.52%
100.94%
5.27%
Software - Infrastructure
Services-prepackaged Software
Link
United States of America
BOSTON