The Lebanon Cybersecurity Empowering Research Team presents hereby a fourth attack surface evaluation of the Lebanese perimeter.

Selected 25 critical software vulnerabilities were chosen based on their high or critical rating according to the Mitre CVSS scoring system, and because they have been actively exploited by threat actors. 612 608 IP Addresses (all IPs assigned to Lebanon), 27 473 main domains (all main domains ending with com.lb, net.lb, edu.lb, org.lb and gov.lb as well as additional main domains gathered from Lebanese business databases) and 45 ports were analyzed. This resulted in 105 853 live IPs and 198 354 domains, on which reconnaissance with respect to the selected vulnerabilities was performed.

The study focused on the second semester of 2021 (Q3 and Q4) to mainly identify the vulnerable systems during that period. It was found that 761 systems are vulnerable affecting the majority of Lebanon’s sectors with Consumer Discretionary followed by Industrials and Healthcare being the most impacted sectors.

We consider this study and the previous ones as a first practical step towards a more secure cyber space in Lebanon. We invite all concerned parties in the governmental and private sectors to collaborate with these efforts or build on them in order to establish a foundation for an integrated Lebanese cyber security framework.

For more details, check out the full article: https://lebanoncert.org/en/blog/vulnerabilities_study