Critical Microsoft Vulnerabilities Doubled Last Year

A new report shows critical Microsoft vulnerabilities doubled last year, as attackers increasingly focused on gaining higher-level access within compromised systems.

A new report from BeyondTrust highlights a concerning trend in Microsoft's security landscape from the past year. While the total number of vulnerabilities remained stable at nearly 1,300, the count of critical-rated flaws doubled. This surge in severe vulnerabilities indicates a strategic shift by attackers. The analysis shows a clear move away from merely gaining initial network access towards privilege escalation, which involves gaining higher-level permissions after a system has been compromised. In fact, over half of all vulnerabilities discovered provided a pathway for attackers to elevate their access rights within a network.

This focus on privilege escalation means that once attackers breach a network's perimeter, their main objective is to gain deeper, administrative-level control. They often accomplish this through identity-based attacks, such as stealing credentials to impersonate legitimate users. This trend makes traditional perimeter security less effective, as a minor initial breach can quickly become a major incident. It underscores the growing importance of securing internal systems and implementing strong access controls to contain threats that have already made it inside. For businesses, this means the risk of a small compromise escalating into a full-blown data breach has significantly increased.

Attackers are shifting from 'getting in' to 'taking over'. This trend makes internal security and identity management more critical than ever, as a small breach can quickly escalate into a full system compromise.

The doubling of critical vulnerabilities increases the risk of severe security incidents. A successful privilege escalation attack can lead to major data breaches, operational disruption, and significant financial and reputational damage.