The Hacker News·May 5, 2026

🔓Mandiant M-Trends 2026: 28% of CVEs Now Exploited Within 24 Hours

Mandiant M-Trends 2026: 28% of CVEs Now Exploited Within 24…

TL;DR

Mandiant's M-Trends 2026 report found that AI is accelerating both attackers and defenders, with 28.3% of disclosed CVEs now exploited within 24 hours of discl…

Mandiant's M-Trends 2026 report found that AI is accelerating both attackers and defenders, with 28.3% of disclosed CVEs now exploited within 24 hours of disclosure. The average time to remediate a known high or critical CVE has stretched to 74 days, widening the exposure gap.

Mandiant M-Trends 2026: 28% of CVEs Now Exploited Within 24 Hours

Key Points

1

28.3% of CVEs exploited within 24 hours of disclosure

2

Average remediation time: 74 days for high/critical CVEs

3

Exploits routinely arrive before patches

Why It Matters

When attack speed exceeds patch speed by orders of magnitude, defensive automation stops being a 'nice to have' and becomes a survival requirement.

cybersecurityMandiantCVEAI attacksvulnerabilities

Frequently Asked Questions

Why does this matter?

When attack speed exceeds patch speed by orders of magnitude, defensive automation stops being a 'nice to have' and becomes a survival requirement.

What happened?

Mandiant's M-Trends 2026 report found that AI is accelerating both attackers and defenders, with 28.3% of disclosed CVEs now exploited within 24 hours of discl…

Comments

Subscribe to join the conversation...

Be the first to comment

Enjoyed this article?

Get it daily. 7am. Free. Reads in 5 minutes.