New Research Finds Cyber Exploits Can Be Anticipated With an Accuracy of 83%

July 14, 2015 • Greg Barrette

Immediately Available: Download your free copy of this exclusive report here.

Security teams have the daunting task of trying to keep abreast of unpatched and zero-day vulnerabilities inside their organization. With so many threats and exploits in the wild, it’s difficult to know which vulnerabilities will result in an actual exploit and cause harm. Making early assessments can help security managers discover possible threats in advance and prioritize vulnerability management.

In a new research study, Recorded Future found that cyber exploits can be anticipated with an accuracy of 83% using open vulnerability data. We used machine learning (ML) and data mining to examine correlations in vulnerability data, which allowed our analysts to find the types of vulnerabilities most likely to be exploited.

We took data from the National Vulnerability Database, CVSS, and Common Weakness Enumeration (CWE) numbers and converted them into a mathematical model that can be used with ML algorithms. Our team examined how different features (e.g., access vector, frequency, severity score) contribute to performance function, and benchmarked multiple ML algorithms to compare their relative performance. Using these methods, we found that it is possible to arrive at an anticipation accuracy of 83%.

To learn more about Recorded Future’s study and how we’re helping organizations find and assess threats early, download the report or contact us for a demo.

New call-to-action

Related Posts

Prioritize Vulnerabilities With Unprecedented Intelligence for Free

Prioritize Vulnerabilities With Unprecedented Intelligence for Free

May 20, 2020 • The Recorded Future Team

How do you describe vulnerability management in your organization If terms like “rat race” or...

Rise in Retail-Focused Phishing Campaigns During Pandemic

Rise in Retail-Focused Phishing Campaigns During Pandemic

May 19, 2020 • Allan Liska

As people around the world have had to stay home because of the COVID-19 pandemic, there has been a...

Automating Threat Detection and Response With Security Intelligence

Automating Threat Detection and Response With Security Intelligence

May 14, 2020 • The Recorded Future Team

Automating threat detection and response has historically been a very expensive and time-consuming...