Exploitation of 55 Zero-Day Vulnerabilities Came to Light in 2022: Mandiant
Mandiant conducted an analysis of the zero-day vulnerabilities disclosed in 2022 and found that over a dozen of them were used in attacks believed to have been carried out by cyberespionage groups. Of the ones that were attributed, 13 were linked to cyberespionage groups, including seven believed to have been exploited by Chinese state-sponsored groups. Four of the zero-days spotted in 2022 were likely exploited by financially motivated threat actors, including CVE-2022-29499 (by Lorenz), CVE-2022-41091 (by Magniber), and CVE-2022-44698 (by Candiru). CVEs: CVE-2022-29499, CVE-2022-41091, CVE-2022-44698, CVE-2022-30190, CVE-2022-42475, CVE-2022-41328 [View Article](https://www.securityweek.com/exploitation-of-55-zero-day-vulnerabilities-came-to-light-in-2022-mandiant/)