US, UK, Australia Agencies List Common Vulnerabilities in Joint Advisory; CISA’s Eric Goldstein Quoted

US, UK, Australia Agencies List Common Vulnerabilities in Joint Advisory; CISA’s Eric Goldstein Quoted
Eric Goldstein CISA

Cybersecurity agencies from the U.S., the U.K. and Australia have released a joint advisory detailing the 30 most exploited vulnerabilities in 2020 and 2021.

The FBI, one of the agencies, said Wednesday that malicious actors mostly targeted remote work, virtual private networks and cloud-based technologies, with many cyber weaknesses left unpatched.

The Cybersecurity Infrastructure and Security Agency (CISA), Australian Cyber Security Centre and U.K. National Cyber Security Center, together with the FBI, provided organizations the vendors, products, and common vulnerabilities and exposures that need urgent patching.

The group also listed resource materials and various government and industry partners that could help in mitigating and remediating cyber weaknesses. The joint advisory comes weeks after CISA launched new tools for securing government-issued smartphones and other mobile devices.

"Organizations that apply the best practices of cybersecurity, such as patching, can reduce their risk to cyber actors exploiting known vulnerabilities in their networks," said Eric Goldstein, executive assistant director for cybersecurity at CISA.

You may also be interested in...

Cybersecurity

DHS, NIST List Goals for Cyber Best Practices

The Department of Homeland Security (DHS) and the National Institutes of Standards and Technology (NIST) have jointly classified cybersecurity practices into nine categories as bases for cyber performance goals. The nine categories each have specific objectives with regard to how secure control systems are operated and deployed, NIST said Thursday.