Verizon DBIR: Basic Security Gaffes Underpin Bumper Crop of Breaches

May 1, 2024 at 12:02AM The 2024 Data Breach Investigations Report by Verizon Business reveals that 14% of data breaches in 2023 stemmed from security bugs, demonstrating a 180% increase in exploitation. The MOVEit software breach contributed significantly to this trend, impacting various industries. The report emphasizes the urgent need for organizations to strengthen their … Read more

Alert: Microsoft Releases Patch Updates for 5 New Zero-Day Vulnerabilities

November 15, 2023 at 01:15AM Microsoft has released patches to address 63 security bugs, including three actively exploited vulnerabilities. The flaws are rated as Critical, Important, and Moderate in severity. Five zero-day vulnerabilities are identified, including issues with Windows SmartScreen and ASP.NET Core. The U.S. Cybersecurity and Infrastructure Security Agency has issued a warning and … Read more

CVSS 4.0 Offers Significantly More Patching Context

November 7, 2023 at 03:52PM The latest version of the Common Vulnerability Scoring System (CVSS version 4.0) allows organizations to assess and manage the risk posed by security bugs more effectively. It introduces new metrics that enable a dynamic and context-sensitive evaluation of vulnerabilities. CVSS 4.0 provides a more tailored risk management approach and allows … Read more