Risk Based Security

The Practitioner’s Guide to Vulnerability Management: Implementing a Risk-Based Approach

The Practitioner’s Guide to Vulnerability Management: Implementing a Risk-Based Approach

| | patch management, risk, Risk Based Security, Risk Intelligence, Vulnerabilities, Vulnerability Management, Vulnerability Remediation, vulns
A scalable, high-quality vulnerability management program (VMP) accounts for volatility and exploitability by first focusing on issues that affect critical assets, rather than attempting to patch top-down. The post The Practitioner’s Guide ...
Threat Intelligence Blog | Flashpoint

CISA Adds Five ‘New’ Exploits to KEV Catalog, Including 2014’s Heartbleed Vulnerability

| | Blog, cisa, Exploit, Known Exploited Vulnerabilities, Known Exploited Vulnerabilities Catalog, Risk Based Security, Vulnerabilities, Vulnerability Remediation, vulns, zero-day
On May 4, 2022, the Cybersecurity & Infrastructure Security Agency (CISA) added five “new” vulnerabilities to the Known Exploited Vulnerabilities (KEV) Catalog. Three of the entries were originally disclosed in 2014, including ...
Blog – Flashpoint
CISA’s Joint Cybersecurity Advisory: Protecting Your Organization From Vulnerabilities – and 29,000 Other Known Exploits

CISA’s Joint Cybersecurity Advisory: Protecting Your Organization From Vulnerabilities – and 29,000 Other Known Exploits

| | cisa, Remote Code Execution, Risk Based Security, Vulnerability Management, vulns, zero-day
Some of the world’s leading cybersecurity authorities banded together to co-author the Joint Cybersecurity Advisory: 2021 Top Routinely Exploited Vulnerabilities, where they provided details on CVE vulnerabilities that have been routinely exploited ...
Threat Intelligence Blog | Flashpoint
1,701 New Vulnerabilities: Vulnerability Intelligence Infographic, March 2022: Key Trends and Analysis

1,701 New Vulnerabilities: Vulnerability Intelligence Infographic, March 2022: Key Trends and Analysis

| | Blog, Open Source Security, Risk Based Security, Vulnerabilities, Vulnerability Management, Vulnerability Remediation, vulns
According to Risk Based Security, a Flashpoint company, 1,701 new vulnerabilities were disclosed last month, with 22 percent (382) of them missed by CVE/NVD. Here are some things you should know about ...
Blog – Flashpoint
Why the Full Vulnerability Intelligence Picture Depends on Data Beyond CVE/NVD

Why the Full Vulnerability Intelligence Picture Depends on Data Beyond CVE/NVD

| | Blog, Risk Based Security, Vulnerabilities, Vulnerability Management, Vulnerability Remediation
If your risk models are missing nearly one-third of all known vulnerabilities, are they effective? The Common Vulnerabilities and Exposures (CVE) database has become the unofficial “official” source for disclosed vulnerabilities. Nearly ...
Blog – Flashpoint

What Is SpringShell? What We Know About the SpringShell Vulnerability

| | Blog, Log4Shell, Risk Based Security, SpringShell, Vulnerabilities
Flashpoint and Risk Based Security have analyzed a new remote code execution (RCE) vulnerability looming in the background, dubbed “SpringShell,” which could affect a wide variety of software. In some circles, SpringShell ...
Blog – Flashpoint
New Report From Flashpoint and Risk Based Security Finds 22 Billion Records Exposed in 2021 Data Breaches

New Report From Flashpoint and Risk Based Security Finds 22 Billion Records Exposed in 2021 Data Breaches

| | Blog, breaches, cybercrime, Data breaches, Malware, Ransomware, Risk Based Security, Threat Intelligence
Today, Risk Based Security’s annual Data Breach QuickView Report was released, from Inga Goddijn, Executive Vice President of RBS, and featuring quantitative research from Ashley Allocca, Cybersecurity Intelligence Analyst at Flashpoint. Powered ...
Blog – Flashpoint