Vulnerabilities Exposed: The Race Against Time in Cybersecurity
Cybersecurity threats are escalating, with new vulnerabilities increasing by 67% between 2023 and 2025, and exploited vulnerabilities rising by 30% over the same period. The window for response is narrowing, with the median time to exploitation dropping to 1.6 days.
A series of recent incidents highlights the importance of swift action in the face of emerging threats. Palo Alto's GlobalProtect VPN vulnerability has been exploited in two attack waves, while a critical Windows Netlogon RCE flaw has been patched but is now being exploited in attacks.
What Happened
- Palo Alto's GlobalProtect VPN vulnerability was exploited in two attack waves starting in mid-May, requiring certain conditions but demonstrating the speed and agility of adversaries.
- A critical Windows Netlogon RCE flaw, patched in May 2026, is now being exploited in attacks, allowing attackers to gain remote code execution on targeted domain controllers.
- A webinar on June 2, 2026, will explore how IT teams can use automation and AI-assisted workflows to reduce investigation delays and accelerate incident resolution.
Why It Matters
- The increasing pace of vulnerability exploitation underscores the need for faster vulnerability alerts and more effective incident response strategies.
- Tabletop exercises, a popular tool for incident response training, can be misleading and potentially destructive if not properly handled.
- Experts emphasize the importance of clear, measurable objectives tied to realistic business decisions in tabletop exercises.
What Experts Say
"In practice, this usually shows up as a generic ransomware or insider-threat scenario, accompanied by vague goals and no firm agreement on what 'good' actually looks like." — Sharon Chand, Deloitte's US cyber defense and resilience leader