Tawagar masu bincike daga Virginia Tech, Cyentia da RAND, sakamakon bincike na haɗari lokacin amfani da dabaru daban-daban na gyara rauni. Bayan da aka yi nazari kan lalurori dubu 76 da aka gano daga shekarar 2009 zuwa 2018, an bayyana cewa 4183 daga cikinsu (5.5%) ne kawai aka yi amfani da su wajen kai hare-hare na gaske. Adadin da aka samu ya ninka sau biyar fiye da hasashen da aka buga a baya, wanda ya kiyasta adadin matsalolin da ake amfani da su a kusan 1.4%.
Koyaya, ba a sami alaƙa tsakanin buga samfuran amfani a cikin jama'a da yunƙurin yin amfani da rauni ba. Daga cikin duk bayanan da ake amfani da su na rashin lahani da masu bincike suka sani, kawai a cikin rabin abubuwan da suka shafi matsalar shine samfurin amfani da aka buga a buɗaɗɗen maɓuɓɓuka a baya. Rashin samfurin amfani ba zai hana masu kai hari ba, waɗanda, idan ya cancanta, haifar da amfani da kansu.
Sauran abubuwan da aka yanke sun haɗa da buƙatun cin gajiyar galibi na rashin lahani waɗanda ke da babban matakin haɗari bisa ga rarrabuwar CVSS. Kusan rabin hare-haren sun yi amfani da rauni mai nauyin akalla 9.
An ƙiyasta jimlar adadin samfuran amfani da aka buga a lokacin da ake bitar su a 9726. An samo bayanan abubuwan da aka yi amfani da su a cikin binciken daga
tarin Exploit DB, Metasploit, D2 Security's Elliot Kit, Canvas Exploitation Framework, Contagio, Reversing Labs da Secureworks CTU.
An samo bayanai game da lahani daga ma'ajin bayanai (National Vulnerability Database). An tattara bayanan aiki ta amfani da bayanai daga FortiGuard Labs, SANS Internet Storm Center, Secureworks CTU, Alienvault's OSSIM da ReversingLabs.
An gudanar da binciken don ƙayyade ma'auni mafi kyau tsakanin amfani da sabuntawa don gano duk wani rauni da kuma kawar da matsalolin mafi haɗari. A cikin shari'ar farko, ana tabbatar da ingantaccen ingantaccen kariya, amma ana buƙatar manyan albarkatu don kula da ababen more rayuwa, waɗanda aka kashe galibi don gyara matsalolin da ba su da mahimmanci. A cikin shari'ar ta biyu, akwai babban haɗari na rasa rashin lahani da za a iya amfani da shi don kai hari. Binciken ya nuna cewa lokacin da za a yanke shawarar shigar da sabuntawa wanda ke kawar da lahani, bai kamata ku dogara ga rashin samfurin amfani da aka buga ba kuma damar yin amfani da shi kai tsaye ya dogara da girman matakin rashin lafiyar.
source: budenet.ru