Big name products mean threat actors are more likely to exploit security holes.
In the battle between cybercriminals and those trying to keep a lid on their exploits and crimes, the cat and mouse game continually shifts back and forth. As soon as vulnerabilities in software or products are discovered, they’re quickly patched by companies looking to do all they can to protect their users. But just as soon as that happens, criminals and hackers move on to try and find the next weakness in defences that they can exploit for monetary gain.
An analysis of Telefonica Tech Cybersecurity Report for the first half of 2021 shows that some of the biggest, most widely-used services offered by the largest companies are those that have the highest number of vulnerabilities in the market. Telefonica’s report investigates the world of mobile security and tries to identify the most common vulnerabilities in today’s cybersecurity landscape.
The findings are unsurprising: those services used by the most people, and run by the largest companies, are the ones with the biggest number of vulnerabilities. That doesn’t mean they’re any less well-coded than their smaller counterparts. Rather, cyber criminals are likely looking at how much effort they need to put in, for what reward, and calculating that it makes sense to target services with large numbers of users to make their time worthwhile.
Google, Microsoft and Oracle lead the pack
As you’d expect, some of the world’s biggest names in software and services are leading the pack for the number of vulnerabilities reported and discovered in the first six months of 2021.
Google leads the way, with 547 vulnerabilities reported over the half year: three every single day. Microsoft comes close behind, with 432 vulnerabilities reported over the last six months.
Oracle had 316 vulnerabilities discovered in the first half of 2021, bringing up the rear in the top three companies to suffer the most issues. But they were far from alone: SAP, IBM, Jenkins, Apple, Linux, and Aruba all also recorded issues – an indication that almost every service you can think of using has some issues around it.
“Exploiting vulnerabilities in Google or Microsoft products allow cyber criminals to probe millions of systems,” says Atlas VPN researcher William Sword. “While the tech giants are doing a fair job of keeping up with exploits and constantly updating their software, people and organisations need to follow suit and keep up with the updates to prevent further exploitation.”
Where the issues were found
Not all vulnerabilities are created equal, of course, but even a small issue can have a big impact when multiplied over billions of users. Take Google, for instance. Its Chrome browser is used by a huge number of people worldwide, which makes any small vulnerability with it likely to affect many. For Microsoft, the issues were more fundamental.
“State-sponsored threat actors from China abused Microsoft Exchange Server vulnerabilities to carry out ransomware attacks.”- Atlas VPN
“Other attackers would drop cryptocurrency miners from the post-exploit web shells,” Atlas VPN says. On Oracle, the main issues were discovered with Oracle’s WebLogic Server – a platform for developing, deploying, and running enterprise Java-based applications.
It all makes the importance of monitoring for vulnerabilities and installing patches that solve them even more crucial. It’s small actions like these that can make the difference between a safe time online and more fundamental issues that can come to haunt users. The idea that major platforms run by big companies are impenetrable simply isn’t the case: it just means there’s a bigger bullseye on their back.