Attend the CyberRisk Summit – for free: Join us May 23 to learn how cyber experts put vulnerability risk in context | Register >>

Vulnerability management metrics: The key metrics that will help you achieve successful cyber risk management | Read more >>

CVE-2023-32784 in KeePass: How to fix the KeePass password manager vulnerability | Read more >>

Attend the CyberRisk Summit – for free: Join us May 23 to learn how cyber experts put vulnerability risk in context | Register >>

Vulnerability management metrics: The key metrics that will help you achieve successful cyber risk management | Read more >>

CVE-2023-32784 in KeePass: How to fix the KeePass password manager vulnerability | Read more >>

TRY VULCAN FREE

Vulnerability management metrics in 2023: the ultimate guide

Vulnerabilities can arise in software due to existing bugs, improperly secured firewall rules, or various other reasons. If attackers succeed in exploiting these vulnerabilities, this can lead to system disruptions and serious damage to the targeted organization. KEY STAT: In 2022, 76% of organizations were targeted by a ransomware attack A thorough and efficient vulnerability… Continue reading Vulnerability management metrics in 2023: the ultimate guide

Thinking of using EPSS? Here’s what you need to know

EPSS – or Exploit Prediction Scoring System – estimates the likelihood of a vulnerability being exploited. It assigns it a probability score between 0 and 1 (0% and 100%), with a higher score meaning a greater likelihood that the vulnerability will be exploited in the next 30 days.  The goal is to better prioritize the… Continue reading Thinking of using EPSS? Here’s what you need to know

In large friendly letters – making sense of cyber vulnerabilities

There is a well-known travel guide that is popular, in part, because it has “Don’t Panic” embossed conspicuously on the cover. In the world of cybersecurity, where new vulnerabilities and new attacks are announced on an almost daily basis, it’s a phrase we should take to heart. While we need to be aware of evolving cyber… Continue reading In large friendly letters – making sense of cyber vulnerabilities

Vulcan Cyber Adds Customizable Risk Modeling to its Risk Remediation Platform

Vulcan Cyber Adds Customizable Risk Modeling to its Risk Remediation Platform Vulcan Cyber now offers customizable vulnerability prioritization to help security and IT operations teams secure digital infrastructure through targeted remediation Tel Aviv – July 1, 2020 – Vulcan Cyber®, developers of the industry’s only end-to-end risk remediation platform, today announced customers can now add… Continue reading Vulcan Cyber Adds Customizable Risk Modeling to its Risk Remediation Platform

Enterprise Security: Deja Vu All Over Again?

The 1990s: When Remediation was Simple Back in the 1990s, every company’s network was fairly self-contained, using relatively few third-party programs with little direct contact with the developing internet, especially during work hours. Corporate email domains were completely separate from personal ones, such as AOL, Yahoo! mail or invitation-only Gmail. 

Don’t React to the Headlines – Solutions for Cyber Security

Malicious breaches are on the rise and they’re getting more expensive, according to a July 2019 IBM report. An average breach now costs $3.92 million, with larger breaches costing over $100 million before penalties. Vulnerabilities are increasing with roughly 1,000 new ones reported per month. Meanwhile, there’s a shortage of cybersecurity workers; in the US… Continue reading Don’t React to the Headlines – Solutions for Cyber Security

Prioritizing Risk with Vulcan Remediation Orchestration

By this point, we’re all well aware of the torrents of vulnerabilities out there and the pressure that they impose on CISOs and security teams. That’s why incorporating automation methodologies into the vulnerability remediation processes has become key to handling the current threat landscape safely and consistently. And not just for efficiency’s sake. As Larry… Continue reading Prioritizing Risk with Vulcan Remediation Orchestration

Why CVSS scores aren’t enough

The number of vulnerabilities uncovered daily has long exceeded what security teams can possibly address. The key to success in vulnerability management no longer lies in patching everything, but rather in making judgment calls and deciding which vulnerabilities to address and which to ignore.

Your Vulnerability Management Process Isn’t Working

It’s the question that plagues every CISO: “Have I done enough?” First, you’ve convinced your partners in the boardroom that vulnerabilities are a serious matter and increased your security budget. Then, you’ve managed to create a collaborative relationship between IT and security teams, coordinating code scans and implementing patches. But every now and then it’s… Continue reading Your Vulnerability Management Process Isn’t Working

A New Approach to Risk-Based Vulnerability Management

The question of remediating every single vulnerability is moot. Given the massive amounts of vulnerabilities being disclosed every month, it’s logistically and organizationally unfeasible. At the enterprise level, even the largest IT team simply can’t handle all the vulnerabilities out there – nor, in truth do they need to.