Overall, vulnerability exploitation accounted for 25% of initial access in incident response incidents last year, with exposed services on 7%. However, the most common vector was “valid account / no ...