Lucene search
K

130 matches found

Rapid7 Blog
Rapid7 Blog
added 2026/06/15 2:44 p.m.14 views

Beyond the Score: Using AI to Translate CVEs into Real-World Business Risk

Security leaders rarely struggle to gather data, but they often struggle to turn that data into something clear and meaningful for the business. In a typical week, a CISO might receive a report listing hundreds or even thousands of vulnerabilities, most of them accompanied by CVSS scores that mak...

6.1AI score
Exploits0
hivepro
hivepro
added 2026/04/09 3:39 a.m.3 views

Threat and Vulnerability Management: Building a Unified Program

Most security teams run threat intelligence and vulnerability management as separate operations. Threat analysts track adversary campaigns and emerging exploits. Vulnerability teams run scans, generate reports, and chase patches. The two groups rarely share a workflow, a priority list, or even a...

5.9AI score
Exploits0
hivepro
hivepro
added 2026/03/17 4:6 p.m.4 views

How to Prioritize Vulnerabilities Effectively: A Framework

Attackers don’t care about your massive backlog of "critical" vulnerabilities. They look for the path of least resistance—the one exploitable weakness that gives them a foothold into your network. If your vulnerability management program isn't thinking like an attacker, you're always one step...

5.9AI score
Exploits0
hivepro
hivepro
added 2026/01/20 7:37 p.m.4 views

The Ultimate CISO Dashboard: A Complete Guide

Traditional vulnerability management can feel like a never-ending game of whack-a-mole. You patch one critical issue, and three more pop up, leaving your team feeling burnt out and perpetually behind. A modern dashboard changes the game entirely. By integrating real-world threat intelligence, it...

5.8AI score
Exploits0
hivepro
hivepro
added 2025/12/05 11:26 p.m.2 views

What Is Threat Exposure Management? A CISO’s Guide

Trying to secure your organization without understanding an attacker’s perspective is like trying to defend a castle without knowing where the enemy will strike. You can patch walls all day, but you might miss the one weak spot they’re planning to exploit. Threat exposure management gives you tha...

6.8AI score
Exploits0
hivepro
hivepro
added 2025/11/20 5:53 p.m.5 views

What is CTEM? Your Guide to Reducing Cyber Risk

Trying to explain security priorities to your board using CVSS scores is a tough sell. A long list of technical flaws doesn't translate to business impact, making it difficult to justify budgets and get buy-in for critical initiatives. Security leaders need a better way to frame the conversation...

6.8AI score
Exploits0
hivepro
hivepro
added 2025/11/13 6:6 p.m.5 views

5 Exposure Management Best Practices for Your Team

Let's be honest: the traditional approach to vulnerability management is broken. Your team is likely drowning in a sea of alerts, staring at scan reports thousands of lines long, and struggling to figure out what to fix first. This constant state of reactive fire-fighting is exhausting and, worse...

7.1AI score
Exploits0
hivepro
hivepro
added 2025/11/07 2:51 p.m.6 views

Strategic Benefits of Vulnerability Prioritization

Think of your security team as the staff in a hospital emergency room. They can't treat every patient at once, so they perform triage, focusing on the most critical cases first to save lives. Vulnerability prioritization is security triage. Your organization has a seemingly endless list of...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/08/20 10:30 a.m.5 views

From Impact to Action: Turning BIA Insights Into Resilient Recovery

Modern businesses face a rapidly evolving and expanding threat landscape, but what does this mean for your business? It means a growing number of risks, along with an increase in their frequency, variety, complexity, severity, and potential business impact. The real question is, "How do you tackl...

6.6AI score
Exploits0
HackRead
HackRead
added 2025/08/06 12:4 p.m.8 views

Akira Ransomware Hits SonicWall VPNs, Deploys Drivers to Bypass Security

GuidePoint Security uncovers a new Akira ransomware tactic targeting SonicWall VPNs. The group's use of drivers to disable defenses is a significant threat to businesses...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/06/05 11:25 a.m.10 views

Redefining Cyber Value: Why Business Impact Should Lead the Security Conversation

Security teams face growing demands with more tools, more data, and higher expectations than ever. Boards approve large security budgets, yet still ask the same question: what is the business getting in return? CISOs respond with reports on controls and vulnerability counts – but executives want ...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2025/05/29 3:47 p.m.23 views

Cybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular Tools

Fake installers for popular artificial intelligence AI tools like OpenAI ChatGPT and InVideo AI are being used as lures to propagate various threats, such as the CyberLock and LuckyGh0$t ransomware families, and a new malware dubbed Numero. "CyberLock ransomware, developed using PowerShell,...

7.5AI score
Exploits0
Qualys Blog
Qualys Blog
added 2025/04/21 5:0 p.m.18 views

Steps to TruRisk™ – 3: Getting Started—Assessing Business Consequences

“In preparing for battle, plans are useless, but planning is indispensable.” —Dwight D. Eisenhower Prioritization wins battles. Preparation is the difference between a coordinated response and total chaos. Protecting what matters starts with identifying critical systems, understanding the impact,...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/01/13 11:30 a.m.5 views

Ransomware on ESXi: The Mechanization of Virtualized Attacks

In 2024, ransomware attacks targeting VMware ESXi servers reached alarming levels, with the average ransom demand skyrocketing to $5 million. With approximately 8,000 ESXi hosts exposed directly to the internet according to Shodan, the operational and business impact of these attacks is profound...

7.5AI score
Exploits0
Wallarm Lab
Wallarm Lab
added 2024/11/11 10:52 a.m.13 views

The Hidden Costs of API Breaches: Quantifying the Long-Term Business Impact

API attacks can be costly. Really costly. Obvious financial impacts like legal fines, stolen finances, and incident response budgets can run into the hundreds of millions. However, other hidden costs often compound the issue, especially if you’re not expecting them. This article will explore the...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/07/19 12:38 p.m.30 views

Faulty CrowdStrike Update Crashes Windows Systems, Impacting Businesses Worldwide

Businesses across the world have been hit by widespread disruptions to their Windows workstations stemming from a faulty update pushed out by cybersecurity company CrowdStrike. "CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts,...

7AI score
Exploits0
HackRead
HackRead
added 2024/03/06 1:1 p.m.13 views

Vulnerability Risk Management for External Assets

By Uzair Amir Vulnerability risk management, unlike traditional approaches, factors in vulnerability criticality, exploit likelihood, and business impact, enhancing risk assessment and mitigation strategies. This is a post from HackRead.com Read the original post: Vulnerability Risk Management fo...

7.3AI score
Exploits0
Qualys Blog
Qualys Blog
added 2024/02/22 11:5 p.m.51 views

TruRisk™️ Insights – The Story Behind a TruRisk Score

In the world of cloud and SaaS security, where risks arise not only from vulnerabilities but also from misconfigurations and various threats, the task of prioritizing and managing them becomes increasingly complex. Its not just about identifying vulnerabilities; its also crucial to recognize and...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/30 10:49 a.m.44 views

Top Security Posture Vulnerabilities Revealed

Each New Year introduces a new set of challenges and opportunities for strengthening our cybersecurity posture. It's the nature of the field – the speed at which malicious actors carry out advanced persistent threats brings a constant, evolving battle for cyber resilience. The excitement in...

7.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2024/01/18 2:0 p.m.11 views

How CISOs’ Roles – and Security Operations – Will Change in 2024

It’s fair to say that 2023 was a turning point for the cybersecurity industry, and no one felt it more than the CISO. From the onslaught of ransomware and zero-day attacks, to the SEC’s new reporting rules, and added to technological innovation and sprawl, CISOs have never been under more pressur...

7.5AI score
Exploits0
Rows per page
Query Builder