The CyberRisk Summit is back: Join us on Dec 6. as we recap the cyber risk landscape in 2022 | Get free ticket >> 

Live webinar, Oct 13: Attend to learn how you can deduplicate vulnerability and deliver a smarter approach to cyber risk management  | Register  >>

New report: Mapping MITRE ATT&CK framework to CVEs |  Read more  >>

CWE top 25 most dangerous software weaknesses in 2022 – what they mean

As application development accelerates, so must security within this environment. Fortunately, there are many tools and resources to help security teams navigate the increasing threatscape of application security, not least from MITRE, who have released their latest list of software vulnerabilities.  Here’s everything you need to know about the 2022 CWE top 25 most dangerous… Continue reading CWE top 25 most dangerous software weaknesses in 2022 – what they mean

The MITRE ATT&CK framework and more – introducing Voyager18

Spend any time in cyber security, and you’ll know how deep the vulnerability rabbit hole goes. Log4j. Spring4shell. Follina. The list goes on and on and on. Security researchers and bug bounty hunters trawl the sprawling wild west of application, network, and cloud environments, in search of the critical openings that might let an attacker… Continue reading The MITRE ATT&CK framework and more – introducing Voyager18

App security prioritization: the top inputs

With the demand for high-performing, user-friendly applications at an all-time high, developers are now using different programming languages to gain a competitive edge. The downside, however, is that this can lead to app security issues, which are often overlooked. But security is also a key factor when it comes to your application’s success. A securely… Continue reading App security prioritization: the top inputs

Most risk-based vulnerability management programs are ineffective

Latest research shows IT security teams are not doing enough to correlate vulnerability data with actual business risk leaving organizations exposed. TEL AVIV, Israel — December 16, 2021 — According to a Vulcan Cyber survey of more than 200 enterprise IT and security executives conducted by Pulse, 86% of respondents rely on third-party vulnerability severity… Continue reading Most risk-based vulnerability management programs are ineffective