An analysis of 18 exploits used by the top 20 crime packs found that the crucial code used in each attack could be traced back to information released by a security researcher. The analysis highlights the dangers that exploit code can pose in a software ecosystem that is slow to patch known vulnerabilities. The data suggests that quashing the publication of exploit code could have a positive effect on the security of the software ecosystem, security expert says. The quick adoption of publicly available exploits by the creators of crime packs is also a weakness, he says.”]