Common Vulnerabilities and Exposures

Nearly a Quarter of Exploits Sold on Cybercriminal Underground Are More Than Three Years Old

Retrieved on: 
Tuesday, July 13, 2021
Hacking, Cyberwarfare, Computer security, Cybercrime, Common Vulnerabilities and Exposures, Mitre Corporation, Vulnerability, Exploit

Trend Micro Research found that 22% of exploits for sale in underground forums are more than three years old.

Key Points: 
  • Trend Micro Research found that 22% of exploits for sale in underground forums are more than three years old.
  • To view a full copy of the report, The Rise and Fall of the N-day Exploit Market in Cybercriminal Underground, please visit: https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-ex... .
  • In fact, older exploits are cheaper and therefore may be more popular with criminals shopping in underground forums.
  • The report reveals several risks of legacy exploits and vulnerabilities, including:
    The oldest exploit sold in the underground was for CVE-2012-0158, a Microsoft RCE.

Proactive news headlines including Volt Resources, Orthocell, Zelira Therapeutics and Tempus Resources

Retrieved on: 
Monday, June 21, 2021
Branches of biology, Biology, Neurophysiology, Common Vulnerabilities and Exposures, Computer security, Mitre Corporation, Neuroregeneration, Regeneration, Nerve

Click here

Key Points: 
  • Click here
    Orthocell Ltd's (ASX:OCC) shares jumped this morning after tabling positive nerve regeneration results one year on from a study testing its nerve repair candidate on quadriplegic patients.
  • Click here
    Tempus Resources Ltd (ASX:TMR) (CVE:TMRR) (OTCMKTS:TMRFF) (FRA:4W0) is logging and sampling core at the Elizabeth Gold Project in British Columbia, Canada, in preparation for analysis at SGS laboratories in Vancouver, Canada.
  • Our written and video content is published on Proactive sites that collectively attract up to 10 million views per month.
  • For more information on how Proactive can help you make a difference, email us at [email protected]

Zyxel Joins CVE Program as a CVE Numbering Authority (CNA)

Retrieved on: 
Wednesday, June 16, 2021
Consumer electronics, Technology, Other Technology, Telecommunications, Mobile, Wireless, Networks, Hardware, Computer security, Cyberwarfare, Cybercrime, Common Vulnerabilities and Exposures, Mitre Corporation, Zyxel, Vulnerability, CVE

The CVE Program identifies and catalogs security vulnerabilities in software and hardware components worldwide, providing trusted public disclosures so IT professionals, end-users, and other stakeholders can take timely action to prevent attacks exploiting these vulnerabilities.

Key Points: 
  • The CVE Program identifies and catalogs security vulnerabilities in software and hardware components worldwide, providing trusted public disclosures so IT professionals, end-users, and other stakeholders can take timely action to prevent attacks exploiting these vulnerabilities.
  • As a CNA, Zyxel can now assign CVE identification numbers to newly discovered vulnerabilities involving its products.
  • Zyxel joins a small group of security-minded networking brands and is one of the first in the SMB market to receive the authorization.
  • Zyxel is building the networks of tomorrow, unlocking potential, and meeting the needs of the modern workplace powering people at work, life, and play.

Proactive news headlines including Okapi Resources, Global Energy Ventures, Kazia Therapeutics and QMines

Retrieved on: 
Monday, June 7, 2021
Hydrogen economy, Emerging technologies, Sustainable technologies, Hydrogen vehicle, Common Vulnerabilities and Exposures, Articles, Technology, Science and technology

Click here

Key Points: 
  • Click here
    Global Energy Ventures Ltd (ASX:GEV) (FRA:WS9) has started developing a pilot-scale compressed hydrogen (C-H2) cargo ship to capitalise on green hydrogen opportunities across Europe and the Asia Pacific.
  • Click here
    Tempus Resources Ltd (ASX:TMR) (CVE:TMRR) (OTCMKTS:TMRFF) (FRA:4W0) has kickstarted a drilling campaign at its Elizabeth Gold Project in southern British Columbia, Canada.
  • Our written and video content is published on Proactive sites that collectively attract up to 10 million views per month.
  • For more information on how Proactive can help you make a difference, email us at [email protected]

BD Advances Leadership in Cybersecurity Preparedness, Transparency

Retrieved on: 
Wednesday, June 2, 2021
Computer security, Cryptography, Information governance, Cyberwarfare, Data security, Common Vulnerabilities and Exposures, Mitre Corporation, CVE, Information security

The purpose of the CVE Program is to bolster international cybersecurity defense by cataloguing publicly disclosed cybersecurity vulnerabilities.

Key Points: 
  • The purpose of the CVE Program is to bolster international cybersecurity defense by cataloguing publicly disclosed cybersecurity vulnerabilities.
  • In 2020, the company launched the BD Cybersecurity Trust Center , increasing transparency and collaboration with its customers, and issued its inaugural cybersecurity annual report .
  • In becoming a CNA, BD further demonstrates its commitment to cybersecurity in medical devices, making it easier for customers to manage vulnerabilities affecting BD products.
  • "Being named a CVE Numbering Authority shows trust and confidence in BD cybersecurity practices and our ability to manage reported vulnerabilities," said Rob Surez, chief information security officer of BD.

Vdoo Announces New Integrations to Simplify Product Security Throughout the Software Development Lifecycle

Retrieved on: 
Thursday, May 13, 2021
Computer security, Cyberwarfare, Data security, Cryptography, Information governance, Common Vulnerabilities and Exposures, Mitre Corporation

b'TEL AVIV, Israel, May 13, 2021 (GLOBE NEWSWIRE) -- Vdoo , a leader in product security for applications, containers, and embedded software, today revealed\xc2\xa0a series of new integrations designed to make it easier and more efficient for software developers to implement security at every stage of the CI/CD pipeline.

Key Points: 
  • b'TEL AVIV, Israel, May 13, 2021 (GLOBE NEWSWIRE) -- Vdoo , a leader in product security for applications, containers, and embedded software, today revealed\xc2\xa0a series of new integrations designed to make it easier and more efficient for software developers to implement security at every stage of the CI/CD pipeline.
  • Vdoo can identify known (CVEs) and unknown (zero days) issues in any artifact, including embedded systems, containers, server applications, mobile apps, and non-contextual single binaries.
  • With Vdoo, organizations can identify, prioritize, and mitigate a vast range of security issues.
  • As the only automated platform that provides end-to-end product security, Vdoo helps development and security teams reduce time and effort while ensuring optimal product security.

Conventus-Flower Orthopedics Partners with Red One Medical

Retrieved on: 
Thursday, April 29, 2021
United States Department of Veterans Affairs, Common Vulnerabilities and Exposures, Computer security, Mitre Corporation, Veterans Health Administration, Product Red, Articles, Health

These products eliminate expensive set processing, minimize infection potential, enhance efficiencies, and maximize resources.\n"We\'re passionate about improving patient care for America\'s veterans and military members," said Red One Medical\'s CEO Charles Pollak.

Key Points: 
  • These products eliminate expensive set processing, minimize infection potential, enhance efficiencies, and maximize resources.\n"We\'re passionate about improving patient care for America\'s veterans and military members," said Red One Medical\'s CEO Charles Pollak.
  • "This partnership helps us bring this innovative technology to VA hospitals and DoD medical facilities throughout the US.
  • These solutions not only support our service men and women, but also provide efficiencies and cost saving opportunities for today\'s orthopedic and ortho biologic needs.\n"We are excited to announce our partnership with SDVOSB Red One Medical.
  • Located in Savannah, GA, Red One Medical is a CVE-certified Service Disabled Veteran Owned Business (SDVOSB).It donates a portion of profits to charities that support veterans, military families, and their communities.\nTo learn more about Red One Medical, visit www.RedOneMedical.com .\n'

Proactive news headlines including Vuzix Corp, Cloud Nine Web3 Technologies, Fury Gold Mines and Dalrada Financial

Retrieved on: 
Tuesday, April 20, 2021
XC2, Click, Common Vulnerabilities and Exposures

b"New York, April 20, 2021 (GLOBE NEWSWIRE) -- Proactive, provider of real-time news and video interviews on growth companies listed in the US and Canada, has covered the following companies:\nVuzix Corporation (NASDAQ:VUZI) says Verizon's video conferencing platform, BlueJeans now supported by M4 smart glasses click here\nLucky Minerals\xc2\xa0 Inc (CVE:LKY) (OTCPINK:LKMNF) (FRA:LKY) identifies new epithermal system, the Wayka target, in southern Ecuador click here\nCanada Silver Cobalt Works Inc (CVE:CCW) (OTCMKTS:CCWOF) (FRA:4T9B) completes geophysical airborne surveys on five Quebec properties; plans drill program click here\nRenforth Resources Inc (CSE:RFR) (OTCPINK:RFHRF) (FRA:9RR)\xc2\xa0 completes spring 2021 drill program at Surimeau district property, Quebec click here\nBenchmark Metals Inc (CVE:BNCH) (OTCQB:CYRTF) (FRA:87CA) plans expansion drilling at Marmot zone at Lawyers, which shows same geological features as Cliff Cree k\xc2\xa0click here\nSoma Gold Corp (CVE:SOMA) (OTCMKTS:PRSRF) (FRA:8PR1) encouraged by drilling and sampling results from ongoing exploration at its Zara concessions, Colombia click here\nXigem Technologies Corporation (CSE:XIGM) (FRA:2C1) inks letter of intent to acquire a 21% interest in logistics technology provider, Shipit.to click here\nWith six offices on three continents and a team of experienced business journalists and broadcasters, Proactive works with innovative growth companies quoted on the world\xe2\x80\x99s major stock exchanges, helping executives engage intelligently with investors.\nProactive\xe2\x80\x99 s platform delivers the right message to the right audience, digitally and in real time, leveraging a range of media, investment research, digital investor targeting and website development services to support over 1,000 fast-growing companies globally.\nProactive\xe2\x80\x99s network reaches over 12 million engaged private, professional and institutional investors looking for opportunities.\n\xe2\x80\xa2 Our written and video content is published on Proactive sites that collectively attract up to 10 million views per month.\n\xe2\x80\xa2 We syndicate our content to hundreds of mainstream and specialist news sites that expand our reach into networks that can be difficult for press releases to penetrate.\n\xe2\x80\xa2 We custom build corporate websites from the ground up, empowering clients and their brands with a modern online presence and the latest insight on effective SEO strategy\n\xe2\x80\xa2 Our news coverage ranks high on the world\xe2\x80\x99s most popular search platforms, and we can further amplify online presence and outreach with sophisticated digital investor targeting.\n\xe2\x80\xa2 We help the world understand what makes companies stand out from the crowd with in-depth investment research from a team of experienced analysts.\nFor more information on how Proactive can help you make a difference, email us at [email protected]\n"

Key Points: 
  • b"New York, April 20, 2021 (GLOBE NEWSWIRE) -- Proactive, provider of real-time news and video interviews on growth companies listed in the US and Canada, has covered the following companies:\nVuzix Corporation (NASDAQ:VUZI) says Verizon's video conferencing platform, BlueJeans now supported by M4 smart glasses click here\nLucky Minerals\xc2\xa0 Inc (CVE:LKY) (OTCPINK:LKMNF) (FRA:LKY) identifies new epithermal system, the Wayka target, in southern Ecuador click here\nCanada Silver Cobalt Works Inc (CVE:CCW) (OTCMKTS:CCWOF) (FRA:4T9B) completes geophysical airborne surveys on five Quebec properties; plans drill program click here\nRenforth Resources Inc (CSE:RFR) (OTCPINK:RFHRF) (FRA:9RR)\xc2\xa0 completes spring 2021 drill program at Surimeau district property, Quebec click here\nBenchmark Metals Inc (CVE:BNCH) (OTCQB:CYRTF) (FRA:87CA) plans expansion drilling at Marmot zone at Lawyers, which shows same geological features as Cliff Cree k\xc2\xa0click here\nSoma Gold Corp (CVE:SOMA) (OTCMKTS:PRSRF) (FRA:8PR1) encouraged by drilling and sampling results from ongoing exploration at its Zara concessions, Colombia click here\nXigem Technologies Corporation (CSE:XIGM) (FRA:2C1) inks letter of intent to acquire a 21% interest in logistics technology provider, Shipit.to click here\nWith six offices on three continents and a team of experienced business journalists and broadcasters, Proactive works with innovative growth companies quoted on the world\xe2\x80\x99s major stock exchanges, helping executives engage intelligently with investors.\nProactive\xe2\x80\x99 s platform delivers the right message to the right audience, digitally and in real time, leveraging a range of media, investment research, digital investor targeting and website development services to support over 1,000 fast-growing companies globally.\nProactive\xe2\x80\x99s network reaches over 12 million engaged private, professional and institutional investors looking for opportunities.\n\xe2\x80\xa2 Our written and video content is published on Proactive sites that collectively attract up to 10 million views per month.\n\xe2\x80\xa2 We syndicate our content to hundreds of mainstream and specialist news sites that expand our reach into networks that can be difficult for press releases to penetrate.\n\xe2\x80\xa2 We custom build corporate websites from the ground up, empowering clients and their brands with a modern online presence and the latest insight on effective SEO strategy\n\xe2\x80\xa2 Our news coverage ranks high on the world\xe2\x80\x99s most popular search platforms, and we can further amplify online presence and outreach with sophisticated digital investor targeting.\n\xe2\x80\xa2 We help the world understand what makes companies stand out from the crowd with in-depth investment research from a team of experienced analysts.\nFor more information on how Proactive can help you make a difference, email us at [email protected]\n"

NeuVector Extends Kubernetes Security Risk Monitoring by Adding Multi-Cluster and Multi-Cloud Management

Cloud infrastructure, Computing, Free software, Computer security, Kubernetes, Vulnerability, Common Vulnerabilities and Exposures, Risk

The NeuVector container security platform tracks key security metrics and calculates a Security Risk Score for each Kubernetes cluster, providing an at-a-glance summary of a cluster\xe2\x80\x99s risk and vulnerability to security exploits.

Key Points: 
  • The NeuVector container security platform tracks key security metrics and calculates a Security Risk Score for each Kubernetes cluster, providing an at-a-glance summary of a cluster\xe2\x80\x99s risk and vulnerability to security exploits.
  • Each Security Risk Score also factors in the activity of any workloads running in the cluster.
  • Containers deployed by the NeuVector security platform itself are also monitored, including tracking the CVE database version used to perform vulnerability scans.
  • The security platform now scans all images for modules, and provides businesses with a vulnerability risk summary for each module and image.

Synopsys Authorized as a CVE Numbering Authority (CNA)

Retrieved on: 
Tuesday, March 30, 2021
Computer security, Common Vulnerabilities and Exposures, Mitre Corporation, Cyberwarfare, Cybercrime, CNA, Vulnerability, Synopsys, CVE

MOUNTAIN VIEW, Calif., March 30, 2021 /PRNewswire/ -- Synopsys, Inc. (Nasdaq:SNPS)today announcedthe company's designation as a CVE Numbering Authority (CNA) by the CVE Program.

Key Points: 
  • MOUNTAIN VIEW, Calif., March 30, 2021 /PRNewswire/ -- Synopsys, Inc. (Nasdaq:SNPS)today announcedthe company's designation as a CVE Numbering Authority (CNA) by the CVE Program.
  • As a CNA, the Synopsys Software Integrity Group is now authorized to assign CVE identification numbers to newly discovered vulnerabilities and publish information about the vulnerabilities in the associated CVE records.
  • As a newly designated CNA, Synopsys can streamline the process of publishing accurate and timely vulnerability information it uncovers to the public.
  • Synopsys joins authorized commercial entities such as Linux, Red Hat, Google, and Microsoft as a CNA.