Subscribe

Cybersecurity Authorities List Top 10 Attack Vectors Exploited By Hackers

May 18, 2022

A joint security advisory issued by several national cybersecurity authorities has identified the ten attack vectors most exploited by threat actors.

These attack vectors include the failure to enable multi-factor authentication, improperly applied privileges or permissions and errors in access control lists, out-of-date software, and the use of vendor-supplied default configurations or default login usernames and passwords.

Others include the lack of sufficient control by remote services, failure to implement strict password policies, unprotected cloud services, open ports, misconfigured services, failure to detect or block phishing attempts, and poor endpoint detection and response.

The joint advisory highlights a list of security measures that organizations can take to eliminate poor security measures.

Security measures include the use of control access, hardened MFA credentials and standard password reset, centralized log management, and antivirus and detection tools (including intrusion detection and prevention systems).

The sources for this piece include an article in BleepingComputer.

Top Stories

Bell, Telus withdraw CRTC complaints over network sharing

eBay cutting 800 jobs amid strategic realignment

U.S. Pentagon presses Anthropic to lift AI use restrictions

Canada ‘disappointed’ as OpenAI fails to offer new safety protocols after B.C. school shooting

Amodei says Anthropic had Claude before ChatGPT 

Meta facial recognition glasses spark backlash as detection app launches

Related Articles

Researchers identify thousands of live Google API keys with Gemini access

March 2, 2026 Thousands of exposed Google Cloud API keys can authenticate to Gemini endpoints when the Generative Language API more...

Bell, Telus withdraw CRTC complaints over network sharing

March 2, 2026 Bell Canada and Telus Corp. have withdrawn competing complaints before the CRTC over fibre network access, ending more...

Non-admin consent in Entra ID opens door to email compromise

March 2, 2026 Threat actors are exploiting Microsoft Entra ID through Open Authorization (OAuth) consent abuse, using seemingly legitimate third-party more...

eBay cutting 800 jobs amid strategic realignment

February 27, 2026 eBay is cutting roughly 800 jobs or about six per cent of its workforce, as the company more...

Picture of TND Newsdesk

TND Newsdesk

Picture of TND Newsdesk

TND Newsdesk

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.