This year’s report on the top routinely exploited vulnerabilities was published on 3 August 2023 by the NCSC. Somewhat depressingly, it highlights how threat actors are still exploiting older software vulnerabilities in systems that remain unpatched e.g. a high severity vulnerability in older versions of Office first announced in 2017 (CVE-2017-0199) – really?!
You can find the report at https://www.ncsc.gov.uk/news/ncsc-allies-reveal-2022-common-exploited-vulnerabilities
If you’re based in Somerset, Devon, Gloucestershire or the Bristol area and need any cyber security support or advice, please get in touch.