vulnerability assessment Archives

vulnerability assessment

When it comes to vulnerability triage, ditch CVSS and prioritize exploitability

February 10, 2021

When it comes to software security, one of the biggest challenges facing developers today is information overload. Thanks in part to the widespread proliferation and use of …

How important are vulnerability management investments for a cybersecurity posture?

October 28, 2020

Vulnerability management (VM) technology addresses the threat landscape, which is in a constant state of flux. The wider dispersal of endpoints across private and public cloud …

HP expands its Bug Bounty Program to focus on office-class print cartridge security vulnerabilities

October 2, 2020

HP has expanded its Bug Bounty Program to focus specifically on office-class print cartridge security vulnerabilities. The program underscores HP’s commitment to delivering …

Review: ThreadFix 3.0

September 29, 2020

Maintaining a strong organizational security posture is a demanding task. Most best practices – e.g. CIS Controls, the OWASP Vulnerability Management Guide – …

Qualys VMDR: Discover, prioritize, and patch critical vulnerabilities in real time

April 7, 2020

In this podcast, Prateek Bhajanka, VP of Product Management, Vulnerability Management, Detection and Response at Qualys, discusses how you can significantly accelerate an …

High-risk vulnerabilities and public cloud-based attacks on the rise

February 21, 2020

A sharp increase (57%) in high-risk vulnerabilities drove the threat index score up 8% from December 2019 to January 2020, according to the Imperva Cyber Threat Index. …

Which vulnerabilities were most exploited by cybercriminals in 2019?

February 6, 2020

Which ten software vulnerabilities should you patch as soon as possible (if you haven’t already)? Table of top exploited CVEs between 2016 and 2019 (repeats are noted by …

CVE gap widens: 16,738 vulnerabilities disclosed during the first nine months of 2019

November 26, 2019

Risk Based Security’s VulnDB team aggregated 16,738 newly-disclosed vulnerabilities during the first three quarters of 2019 which surpassed CVE/NVD by 5,970 during the same …

When is the right time to red team?

November 11, 2019

“It takes a thief to catch a thief.” Despite being hundreds of years old, this idiom holds perfectly true for that most modern of thieves, the cybercriminal. With …

How mainstream media coverage affects vulnerability management

May 24, 2019

For better or for worse, mainstream media is increasingly covering particularly dangerous, widespread or otherwise notable security vulnerabilities. The growing coverage has …

Researchers working on tools that aim to eliminate computer bugs

May 6, 2019

It’s bad enough losing an hour’s work when your computer crashes – but in settings like healthcare and aviation, software glitches can have far more serious consequences. In …

Should enterprises delay efforts to remediate most vulnerabilities?

January 23, 2019

Companies today appear to have the resources needed to address all of their high-risk vulnerabilities. The research demonstrates that companies are getting smarter in how they …