Jointly developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), ISO/IEC 29147 and ISO/IEC 30111 provide a structured framework ...

Organizations are facing an increase in cyber threats. Even well-funded security teams may find it challenging to effectively address these threats without a formal program. One effective way to ...

Cybersecurity risk management firm Brinqa Inc. today announced new capabilities that it says will shorten time to value and make it easier to adopt modern vulnerability management best practices. The ...

Platform helps cybersecurity GTM teams capture AI-driven buyer demand as 40% of security decision-makers shift from ...

A new service, the Global Cybersecurity Vulnerability Enumeration (GCVE), offers an alternative to the US-led CVE ...

The vulnerability management lifecycle is a fundamental process for organizations to identify, assess, prioritize and address IT asset vulnerabilities in order to fortify their cybersecurity defenses.

As we pass the first anniversary of the Log4j vulnerability disclosure, it's a timely reminder that when a vulnerability is serious, it deserves our utmost attention. Organizations taking ...

A new vulnerability database has launched in the EU, in a bid to reduce dependence on the U.S. program. Here's what you need ...

Vulnerability exploitation has long been a popular tactic for threat actors. But it’s becoming increasingly so – a fact that should alarm every network defender. Observed cases of vulnerability ...

The European Commission has proposed a comprehensive regulation that would repeal and replace the current EU Cybersecurity Act (Regulation ...

Federal agencies are under a binding operational directive to address exploitable security vulnerabilities in their software, but the success of CISA’s effort relies on the cooperation of software ...