2024 was a standout year in cybersecurity. With over 130 Cybersecurity Threat Advisory issued, SmarterMSP.com reflects on the most viewed emerging threats by our audience. From targeted industry attacks to zero-click vulnerabilities and high CVSS flaws, here are the top 10 advisories that captured the most attention.
The top ten viewed Cybersecurity Threat Advisories:
#1: The mother of all breaches (MOAB) – In January, a massive data leak that included information from several past breaches with a staggering 12 terabytes of data, covering 26 billion records uploaded to the dark web.
#2: EDRKillShifter, a growing threat – In August, RansomHub developed a new tool named “EDRKillShifter” to disable endpoint detection and response (EDR) software on compromised systems.
#3: Another zero-click Windows TCP/IP vulnerability – In August, a critical zero-click Windows TCP/IP vulnerability which affected all systems with IPv6 enabled.
#4: Critical SAP vulnerabilities – In August, two critical vulnerabilities that enable attackers to bypass authentication and fully compromise affected SAP systems.
#5: ‘Salt Typhoon’ causing damage in North America – In October, Salt Typhoon carried out a massive cyberattack leveraging backdoors in the US internet service provider (ISP) networks, especially AT&T and Verizon, to target systems used for court-authorized surveillance.
#6: Veeam Backup security flaws – In September, six vulnerabilities in Veeam Backup and Replication was revealed that can lead to unauthenticated remote code execution (RCE), authenticated RCE, arbitrary file deletion, low-privileged multi-factor authentication (MFA) setting modification and MFA bypass, credential sniffing, and privilege escalation.
#7: Chrome zero-day vulnerability – In September, a critical zero-day vulnerability in Chrome’s V8 JavaScript engine enables unauthorized access and potential RCE.
#8: ConnectWise critical vulnerabilities – In March, two ConnectWise critical vulnerabilities were revealed that can result in compromise of sensitive data, unauthorized system modifications, and potential lateral movement within the network.
#9: TA558 phishing campaign – In April, the threat actor TA558 conducted a phishing campaign which targets various sectors in Latin America to deploy remote access tool known as Venom RAT.
#10: VMware critical vulnerability – In October, VMware’s vCenter Server discovered a flaw with a CVSS score of 9.8.
2025 cybersecurity trend
As we head into 2025, cybersecurity remains a top priority for businesses of all sizes. The threats faced in 2024 highlight the constantly evolving nature of the cybersecurity landscape. Staying informed and proactive is crucial to protecting sensitive data and infrastructure. By learning from past challenges and adapting to emerging risks, businesses can strengthen their defenses against future attacks. Stay vigilant, stay prepared.
Stay up to date and subscribe to Cybersecurity Threat Advisory to learn more about emerging cyberthreats.
This post originally appeared on Smarter MSP.
