Vulnerability database

Reduce Business Risk From Exploits with Recorded Future Vulnerability Intelligence

Retrieved on: 
Tuesday, June 15, 2021
Computer security, Cyberwarfare, Security, Computer network security, Vulnerability database, Software testing, National Vulnerability Database, Vulnerability management, Vulnerability, Malware

BOSTON, June 15, 2021 /PRNewswire/ -- Recorded Future, the world's largest provider of intelligence for enterprise security, today announced additional functionality for its Vulnerability Intelligence solution to arm defenders with the prioritized and real-time intelligence needed for effective vulnerability management programs.

Key Points: 
  • BOSTON, June 15, 2021 /PRNewswire/ -- Recorded Future, the world's largest provider of intelligence for enterprise security, today announced additional functionality for its Vulnerability Intelligence solution to arm defenders with the prioritized and real-time intelligence needed for effective vulnerability management programs.
  • Recorded Future empowers security teams with contextualized vulnerability intelligence through its powerful Intelligence Graph to deliver real-time insights into emerging vulnerability risk, including evidence of exploitation, proof-of-concept code, and links to malware.
  • Recorded Future's Vulnerability Intelligence instantly identifies newly disclosed vulnerabilities, providing risk-prioritized, real-time visibility into vulnerabilities relevant to an organization.
  • Industry-leading Pre-NVD visibility - Recorded Future identifies newly disclosed vulnerabilities 11 days faster than the National Vulnerability Database (NVD), on average.

Syxsense Announces New Vulnerability Solution Database

Retrieved on: 
Thursday, March 11, 2021
Vulnerability, Computer security, Data security, Computer network security, Computing, Cryptography, Data protection, Malware, UST, Social vulnerability, Vulnerability database

ALISO VIEJO, Calif., March 11, 2021 /PRNewswire/ -- Syxsense , a global leader in IT and security management solutions, today announced the availability of its vulnerability solutions database for the public online.

Key Points: 
  • ALISO VIEJO, Calif., March 11, 2021 /PRNewswire/ -- Syxsense , a global leader in IT and security management solutions, today announced the availability of its vulnerability solutions database for the public online.
  • The database was previously only available to Syxsense Secure customers within the console.
  • Syxsense has taken the top 1100 of its vulnerability scan scripts from 29 security families and provided solutions for each one, which can now be searched via the online database.
  • The solutions provide the following critical information:
    Solution - The steps needed to resolve the vulnerability, including links to software where required
    The Vulnerability Solutions Database is included with Syxsense Secure at no additional cost.

Edgescan's 2021 Vulnerability Stats Report Offers a Snapshot of the Overall State of Cyber Security Globally

Retrieved on: 
Tuesday, February 16, 2021
Computer security, Cyberwarfare, Security breaches, Cybercrime, Computer network security, Common Vulnerabilities and Exposures, Mitre Corporation, Malware, Ransomware, Vulnerability, BlueKeep, Vulnerability database

DUBLIN, Feb. 16, 2021 /PRNewswire/ --Edgescan, providers of the award winning Fullstack Vulnerability Management range of services, today releases the 2021 Vulnerability Stats Report that, for the sixth year running, offers unique insight into the global security landscape from a trends and statistics perspective, as well as a snapshot of the overall state of cyber security globally.

Key Points: 
  • DUBLIN, Feb. 16, 2021 /PRNewswire/ --Edgescan, providers of the award winning Fullstack Vulnerability Management range of services, today releases the 2021 Vulnerability Stats Report that, for the sixth year running, offers unique insight into the global security landscape from a trends and statistics perspective, as well as a snapshot of the overall state of cyber security globally.
  • This year's report takes a deeper look at vulnerability metrics from a known vulnerability (CVE), Malware, Ransomware and visibility standpoint (exposed services), coupling both internal and public Internet-facing systems.
  • Some of the key findings include:
    Remote desktop (RDP) and Secure Shell (SSH) exposures increased by 40%, likely due to the increase in remote working due to Covid-19.
  • Due to analyst validation of all discovered vulnerabilities, the solution is highly accurate and virtually false positive free.

RiskSense Ransomware Spotlight Report Reveals Surge in Weaponized Vulnerabilities, New Targets and Ransomware-as-a-Service

Retrieved on: 
Thursday, February 11, 2021
Networks, Internet, Security, Technology, Software, Computer security, Cyberwarfare, Cybercrime, National Vulnerability Database, Ransomware, Common Vulnerabilities and Exposures, Vulnerability database, Vulnerability, Cyberattack, RiskSense, CSW

RiskSense , Inc., pioneering risk-based vulnerability management and prioritization, today announced the results of a new RiskSense Spotlight Report Ransomware Through the Lens of Threat and Vulnerability Management conducted with Cyber Security Works (CSW).

Key Points: 
  • RiskSense , Inc., pioneering risk-based vulnerability management and prioritization, today announced the results of a new RiskSense Spotlight Report Ransomware Through the Lens of Threat and Vulnerability Management conducted with Cyber Security Works (CSW).
  • Nearly all (96%) of the common vulnerability exposures (CVEs) linked to ransomware were reported to the US National Vulnerability Database (NVD) before 2020.
  • Finally, more than 15 active families are being offered as ransomware-as-a-service, enabling just about anyone to launch ransomware attacks without coding or security expertise.
  • The RiskSense Spotlight Report is based on data gathered from a variety of sources including RiskSense & CSWs proprietary data, publicly available threat databases, as well as RiskSense & CSW threat researchers and penetration testing teams.

Redscan research reveals increase in 'critical', 'low complexity' and 'no interaction' vulnerabilities

Retrieved on: 
Thursday, February 11, 2021
Computer security, Cyberwarfare, Cybercrime, Computer network security, Common Vulnerabilities and Exposures, Mitre Corporation, Vulnerability, CVE, Exploit, Vulnerability database, National Vulnerability Database

NIST logged more than 18,000 vulnerabilities in 2020, over 10,000 of which were critical or high severity an all-time high.

Key Points: 
  • NIST logged more than 18,000 vulnerabilities in 2020, over 10,000 of which were critical or high severity an all-time high.
  • Redscan's analysis also looks beyond severity scores, detailingthe rise of low complexity vulnerabilities as well as those which require no user interaction to exploit.
  • However, there are also positive trends, such as a decrease in CVEs which require no privileges to exploit.
  • The Redscan report focuses on vulnerabilities added to the NVD in 2020, examines wider CVE trends since 1989 and offers security advice to organisations.

Redscan research reveals increase in 'critical', 'low complexity' and 'no interaction' vulnerabilities

Retrieved on: 
Thursday, February 11, 2021
Computer security, Cyberwarfare, Cybercrime, Computer network security, Common Vulnerabilities and Exposures, Mitre Corporation, Vulnerability, CVE, Exploit, Vulnerability database, National Vulnerability Database

NIST logged more than 18,000 vulnerabilities in 2020, over 10,000 of which were critical or high severity an all-time high.

Key Points: 
  • NIST logged more than 18,000 vulnerabilities in 2020, over 10,000 of which were critical or high severity an all-time high.
  • Redscan's analysis also looks beyond severity scores, detailingthe rise of low complexity vulnerabilities as well as those which require no user interaction to exploit.
  • However, there are also positive trends, such as a decrease in CVEs which require no privileges to exploit.
  • The Redscan report focuses on vulnerabilities added to the NVD in 2020, examines wider CVE trends since 1989 and offers security advice to organisations.

Insolvency-Tech platform Cerebreon integrates with the Vulnerability Registration Service

Retrieved on: 
Tuesday, February 9, 2021
Articles, Vulnerability database, Software testing, Insolvency, Military science, Vulnerability, Social vulnerability, Academic disciplines

BIRMINGHAM, England, Feb. 9, 2021 /PRNewswire/ -- Cerebreon , a leading data insights platform in the insolvency tech market, has joined the Vulnerability Registration Service as a member to enhance their existing vulnerability algorithms and rapidly identify individuals that need additional support in the debt process.

Key Points: 
  • BIRMINGHAM, England, Feb. 9, 2021 /PRNewswire/ -- Cerebreon , a leading data insights platform in the insolvency tech market, has joined the Vulnerability Registration Service as a member to enhance their existing vulnerability algorithms and rapidly identify individuals that need additional support in the debt process.
  • Adding the Vulnerability Registration Serviceto our platform accelerates this so that they can focus on resolutions to achieve the best outcome for all stakeholders."
  • The Vulnerability Registration Service provides the UK's first central vulnerability database.
  • Helen Lord, Director of The Vulnerability Registration Service said: "It's great to have Cerebreon on-board and take such a strong stance in helping the insolvency and debt industry meet their vulnerability obligations."

Insolvency-Tech platform Cerebreon integrates with the Vulnerability Registration Service

Retrieved on: 
Tuesday, February 9, 2021
Articles, Vulnerability database, Software testing, Insolvency, Military science, Vulnerability, Social vulnerability, Academic disciplines

BIRMINGHAM, England, Feb. 9, 2021 /PRNewswire/ -- Cerebreon , a leading data insights platform in the insolvency tech market, has joined the Vulnerability Registration Service as a member to enhance their existing vulnerability algorithms and rapidly identify individuals that need additional support in the debt process.

Key Points: 
  • BIRMINGHAM, England, Feb. 9, 2021 /PRNewswire/ -- Cerebreon , a leading data insights platform in the insolvency tech market, has joined the Vulnerability Registration Service as a member to enhance their existing vulnerability algorithms and rapidly identify individuals that need additional support in the debt process.
  • Adding the Vulnerability Registration Serviceto our platform accelerates this so that they can focus on resolutions to achieve the best outcome for all stakeholders."
  • The Vulnerability Registration Service provides the UK's first central vulnerability database.
  • Helen Lord, Director of The Vulnerability Registration Service said: "It's great to have Cerebreon on-board and take such a strong stance in helping the insolvency and debt industry meet their vulnerability obligations."

ICS Vulnerabilities Increased in Second Half of 2020 as Gaps in Remote Work Expand Attack Surfaces

Retrieved on: 
Thursday, February 4, 2021
Computer security, Computer network security, Common Vulnerability Scoring System, Cyberwarfare, Hacking, Vulnerability, Computing, Vulnerability database

The report also revealed a 25% increase in ICS vulnerabilities disclosed compared to 2019, as well as a 33% increase from 1H 2020.

Key Points: 
  • The report also revealed a 25% increase in ICS vulnerabilities disclosed compared to 2019, as well as a 33% increase from 1H 2020.
  • During 2H 2020, 449 vulnerabilities affecting ICS products from 59 vendors were disclosed.
  • Of those, 70% were assigned high or critical Common Vulnerability Scoring System (CVSS) scores, and 76% do not require authentication for exploitation.
  • Among all third-party discoveries, 22 reported their first disclosures, a positive sign of growth in the ICS vulnerability research market.

MedCrypt's Software Bill of Materials and Vulnerability Tracking Solution to Enhance Security for Accuray Radiation Treatment Delivery Systems

Retrieved on: 
Tuesday, November 17, 2020
Cyberwarfare, Vulnerability, Computer security, Cybercrime, Vulnerability database, Computer network security, National Vulnerability Database, Social vulnerability, Data Security Threats Database

SAN DIEGO, Nov. 17, 2020 /PRNewswire/ -- MedCrypt Inc. , the leading provider of proactive security solutions for the healthcare space, today announced Accuray has chosen MedCrypt's Software Bill of Materials (SBOM) and Vulnerability Tracking Software, Heimdall, to help enhance monitoring the digital security posture of the company's portfolio of radiation treatment delivery, planning, and data management solutions.

Key Points: 
  • SAN DIEGO, Nov. 17, 2020 /PRNewswire/ -- MedCrypt Inc. , the leading provider of proactive security solutions for the healthcare space, today announced Accuray has chosen MedCrypt's Software Bill of Materials (SBOM) and Vulnerability Tracking Software, Heimdall, to help enhance monitoring the digital security posture of the company's portfolio of radiation treatment delivery, planning, and data management solutions.
  • "Our solution gathers critical vulnerability data from the National Vulnerability Database, giving us an accurate rundown of potential exposures, so we can respond quickly if a problem is found.
  • With MedCrypt focused on the security aspect, Accuray can focus on their clinical expertise."
  • MedCrypt's Heimdall software will compare these systems' SBOM to the National Vulnerability Database from the National Institute of Standards and Technology to identify known software vulnerabilities.