Lucene search
K

13 matches found

Talos Blog
Talos Blog
added 2026/05/28 6:0 p.m.11 views

Less panic patching, more precision

Welcome to this week's edition of the Threat Source newsletter. Recently, Martin closed his introduction with a warning: Ready or not, the time of much patching is coming. I've been chewing on that one for a while because I'm rethinking my own enrichment pipelines along these lines, and the...

5.9AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/06 1:26 a.m.81 views

CVE-Intelligence

VulnForge Local-only, single-user CVE alert & patch-priority...

5.8AI score
Exploits0
hivepro
hivepro
added 2026/04/29 11:37 p.m.2 views

CTEM for Telecom Companies

Protect Network Infrastructure. Prevent Service Disruption. Secure 5G, IoT, and Subscriber Data. Telecommunications companies operate the most interconnected infrastructure on the planet. Your networks carry voice, data, and critical services for millions of subscribers, enterprises, and governme...

5.6AI score
Exploits0
hivepro
hivepro
added 2026/01/12 12:58 p.m.9 views

Firefox Security Vulnerabilities: An Expert Guide

For any vulnerability management team, the daily flood of alerts can be overwhelming. When your scanner flags dozens of new CVEs, it’s easy to see browser-related issues as lower priority. Yet, a critical flaw in a widely used application like Firefox can be the initial foothold an attacker needs...

10CVSS7.2AI score0.01894EPSS
Exploits6
Qualys Blog
Qualys Blog
added 2024/01/22 4:48 p.m.21 views

Reduce Risk Faster With the Qualys Risk Reduction Recommendation Report

New vulnerabilities are found almost daily. However, most organizations struggle to identify, prioritize, and remediate vulnerabilities efficiently—making their environments vulnerable to risk. Last year, Qualys introduced Qualys VMDR with TruRiskTM, which helps organizations quantify cyber risk ...

7.6AI score
Exploits0
Trellix
Trellix
added 2022/09/23 12:0 a.m.37 views

Ancient CVEs Can Cause You Problems

Ancient CVEs Can Cause You Problems By Kent Landfield · September 23, 2022 The Common Vulnerability and Exposures CVE Program was founded in 1999 for the purpose of giving individual cyber vulnerabilities an identifier that could be used as an interoperable means for identifying a specific...

9.8CVSS7.2AI score0.27095EPSS
Exploits3
The Hacker News
The Hacker News
added 2022/05/02 1:30 p.m.20 views

Which Hole to Plug First? Solving Chronic Vulnerability Patching Overload

According to folklore, witches were able to sail in a sieve, a strainer with holes in the bottom. Unfortunately, witches don't work in cybersecurity – where networks generally have so many vulnerabilities that they resemble sieves. For most of us, keeping the sieve of our networks afloat requires...

7.3AI score
Exploits0
Qualys Blog
Qualys Blog
added 2021/07/29 12:20 a.m.729 views

CISA Alert: Top Routinely Exploited Vulnerabilities

On July 28, 2021, the U.S. Cybersecurity and Infrastructure Security Agency CISA released a cybersecurity advisory detailing the top 30 publicly known vulnerabilities that have been routinely exploited by cyber threat actors in 2020 and 2021. Organizations are advised to prioritize and apply...

10CVSS1.1AI score0.99999EPSS
Exploits453
FireEye
FireEye
added 2020/04/27 12:30 p.m.629 views

Putting the Model to Work: Enabling Defenders With Vulnerability Intelligence — Intelligence for Vulnerability Management, Part Four

One of the critical strategic and tactical roles that cyber threat intelligence CTI plays is in the tracking, analysis, and prioritization of software vulnerabilities that could potentially put an organization’s data, employees and customers at risk. In this four-part blog series, FireEye Mandian...

9.3CVSS9.2AI score0.99999EPSS
Exploits60References10
Qualys Blog
Qualys Blog
added 2018/06/29 4:0 p.m.57 views

QSC18 Virtual Edition: Vulnerability Risk Management

When vulnerability risk management is proactive, organizations don’t have to hurriedly react to attacks that exploit bugs for which patches are available, as happened with WannaCry. “The vast majority of WannaCry remediation took place as an emergency type process,” Jimmy Graham, a Qualys Directo...

7.1AI score
Exploits0
Qualys Blog
Qualys Blog
added 2018/05/07 4:0 p.m.1356 views

How To Prioritize Vulnerabilities in a Modern IT Environment

Here’s a stat that shows the importance of prioritizing vulnerability remediation: Almost 30% of the CVEs disclosed in 2017 had a CVSS score of “High” or “Critical.” That works out to about 3,000 such vulnerabilities, or about 58 every week. Given this large number of severe vulnerabilities, it’s...

10CVSS0.2AI score0.99999EPSS
Exploits44
Information Security Automation
Information Security Automation
added 2018/03/20 3:34 p.m.213 views

My short review of “The Forrester Wave: Vulnerability Risk Management, Q1 2018”

Last week, March 14, Forrester presented new report about Vulnerability Risk Management VRM market. You can purchase it on official site for $2495 USD or get a free reprint on Rapid7 site. Thanks, Rapid7! I've read it and what to share my impressions. I was most surprised by the leaders of the...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2015/01/08 2:50 p.m.103 views

Microsoft Shuts Down Patch Tuesday Advanced Notifications

Microsoft today pulled the plug on its Advanced Notification Service ANS, offering it going forward only to paying Premier customers. ANS preceded the release of Microsoft’s monthly Patch Tuesday security bulletins; on the Thursday prior, Microsoft would provide users via its security website a...

9.3CVSS8.8AI score0.99945EPSS
Exploits33References5
Rows per page
Query Builder