ctipilot.ch

Kaspersky Q1 2026 Exploits and Vulnerabilities Report

report · report:kaspersky-q1-2026-exploits single-source

Kaspersky Q1 2026 Exploits and Vulnerabilities Report

Coverage timeline
2
first 2026-05-04 → last 2026-05-08
Entries
2
2 distinct days
Sources cited
2
1 hosts
Sections touched
2
research, weekly-annual-reports
Co-occurring entities
0
no co-occurrence

Story timeline

  1. 2026-05-08Kaspersky Q1 2026 Exploits and Vulnerabilities Report: document-based exploits resurge; RaaS acquires zero-days
    researchKaspersky Q1 2026 Exploits and Vulnerabilities Report: document-based exploits resurge; RaaS acquires zero-days
  2. 2026-05-04Kaspersky Q1 2026 Exploits and Vulnerabilities Report
    weekly-annual-reportsKaspersky Q1 2026 Exploits and Vulnerabilities Report

Where this entity is cited

  • weekly-annual-reports1
  • research1

Source distribution

  • securelist.com2 (100%)

Entries about Kaspersky Q1 2026 Exploits and Vulnerabilities Report (2)

2026-05-08 · view entry permalink →

Kaspersky Q1 2026 Exploits and Vulnerabilities Report: document-based exploits resurge; RaaS acquires zero-days

notable research discovered 2026-05-08 05:00 UTC single-source

Kaspersky's quarterly exploitation analysis for Q1 2026 identifies a marked resurgence in document-based exploit delivery, with Microsoft Office and PDF readers accounting for the largest share of initial-access exploit deployments. The most exploited CVE class involved Office Protected View bypass chains (multiple CVEs published in January 2026 Patch Tuesday). Browser exploitation via V8 memory corruption grew 34% quarter-on-quarter. A significant structural trend: ransomware-as-a-service operators are increasingly acquiring zero-day exploits directly from private brokers rather than relying on publicly available PoC code, shortening the detection window between disclosure and mass exploitation. The report includes Excel macro delivery via cloud storage abuse as an emerging initial-access technique.

vulnerabilities zero-day ransomware global

2026-05-04 · view entry permalink →

Kaspersky Q1 2026 Exploits and Vulnerabilities Report

notable annual-report discovered 2026-05-04 05:00 UTC single-source

Kaspersky's quarterly exploitation analysis for Q1 2026 reports that exploit kits expanded again to include new Microsoft Office, Windows, and Linux exploits, and that veteran vulnerabilities CVE-2018-0802 (Equation Editor RCE), CVE-2017-11882, and CVE-2023-38831 still account for the largest share of detections in the quarter (Kaspersky Securelist — Exploits and Vulnerabilities Q1 2026). The Securelist report also notes that AI-tool use for vulnerability discovery is increasing total registered vulnerability volume — a defender-side reframe for the M-Trends 2026 dwell-time data above (daily 2026-05-08).

vulnerabilities zero-day ransomware global