Krebs on Security

Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software

Last week cybercriminals deployed ransomware to 1,500 organizations, including many that provide IT security and technical support to other companies. The attackers exploited a vulnerability in ...
Threat Post

APT Groups Finding Success with Patched Microsoft Flaw

Researchers at Kaspersky Lab have identified six APT groups using exploits for a Microsoft Office flaw that was patched in September 2015. A Microsoft Office vulnerability patched six months ago ...
CSOonline

Over 6,000 vulnerabilities went unassigned by MITRE’s CVE project in 2015

In 1999, MITRE created the Common Vulnerabilities and Exposures (CVE) database as a way to standardize the naming of disclosed vulnerabilities. Seventeen years later, the CVE system is faced with ...
Bleeping Computer

CISA adds 15 vulnerabilities to list of flaws exploited in attacks

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added fifteen additional flaws to its list of actively exploited vulnerabilities known to be used in cyberattacks. These public ...
Infosecurity-magazine.com

CISA Launches Roadmap for the CVE Program

In a new document, the US Cybersecurity and Infrastructure Security Agency (CISA) has confirmed its support for the Common Vulnerabilities and Exposures (CVE) program. The agency also outlined some of ...
Homeland Security Today

CISA Presents Vision for the Common Vulnerabilities and Exposures (CVE) Program

The Cybersecurity and Infrastructure Security Agency (CISA) has released CISA Strategic Focus: CVE Quality for a Cyber Secure Future. The detailed roadmap identifies priorities that will elevate the ...