Zero-day exploits were the most commonly used by threat actors to compromise organisations, with a sharp rise in their use compared to 2022.