back to article Top of the Pops: US authorities list the 20 hottest vulns that China's hackers love to hit

Three US national security agencies - CISA, the FBI and the NSA - on Thursday issued a joint advisory naming the 20 infosec exploited by state-sponsored Chinese threat actors since 2020. The list reads like a hit parade of recent security SNAFUs, with remote code executions like Log4j and Atlassian topping the charts, as well …

  1. Potemkine! Silver badge

    On one side, cybercrooks, on the other one, bean counters. And IT in between.

    CISA's recommended mitigations seem obvious, but are worth repeating: update and patch systems, use phishing-resistant multi-factor authentication and unique passwords, block unused protocols, upgrade or replace kit on schedule, trust no one, and monitor logs

    It may be obvious, but how many companies allocate the adequate resources to IT teams to do these jobs? It takes a lot of time, a lot of means to do this.

    == Bring us Dabbsy back! ==

  2. VoiceOfTruth Silver badge

    Can the USA

    issue a list of the top vulnerabilities its spies love to hit?

    1. Anonymous Coward
      Anonymous Coward

      Re: Can the USA

      Yes - all of them.

  3. Anonymous Coward
    Anonymous Coward

    Ironically

    we should ban VPNs out of China ... I wonder how much they'd squeal.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like