A defender’s hitlist from that week might include:
| CVE | Product | Exploit Status | Action | |-----|---------|----------------|--------| | CVE-2024-30051 | Windows 10/11 | Exploited as 0day | Patch KB5039211 | | CVE-2024-26169 | Windows | PoC public | Disable error reporting if unpatched | | CVE-2024-21413 | Microsoft Outlook | RCE with low complexity | Block suspicious links, patch | 0day and hitlist week 06122024 link
API Misconfigurations in Serverless Functions:
Misconfigured serverless APIs (e.g., AWS Lambda, Azure Functions) exposed internal databases due to default permissions, enabling unauthorized code execution. A defender’s hitlist from that week might include:
In cybersecurity contexts, a hitlist is a curated list of: In cybersecurity contexts, a hitlist is a curated list of: