New Google vulnerability: Learn about zero-day CVE-2022-3075 in Chorme web browser  | Fix now >> 

The CyberRisk Summit on-demand: Watch the latest #CRS anytime, anywhere | Watch now  >>

New report: Mapping MITRE ATT&CK framework to CVEs |  Read more  >>

How to reduce security debt – part 2

In our last blog, we covered security tech debt, how it happens, and how to reduce it. Here, we’ll go into how you and your organization can remain on top of your tech debt, improve cyber hygiene and ultimately mitigate your risk. What to do once you’ve paid your security tech debt Once your security… Continue reading How to reduce security debt – part 2

How to reduce security debt – part 1

In the world of software development, “tech debt” refers to accrued costs and long-term consequences of prioritizing speed over software quality. This can involve taking shortcuts by using poor coding techniques, ignoring outdated modules, or using software architecture that doesn’t meet industry standards. This, however, creates additional work later on (maintaining the software, upgrading the… Continue reading How to reduce security debt – part 1

Vulcan advisors share patch management best practices

We recently asked Vulcan Cyber advisors Brian Lozada, CISO at HBOMax, and Steve Zalewski, former deputy CISO of Levi Strauss, to provide their thoughts on some of the challenges of patch management in an evolving cyber security landscape. Some of their comments were featured in a TechTarget SearchSecurity article titled, “6 Reasons Unpatched Software Persists… Continue reading Vulcan advisors share patch management best practices

Modernize Your Vulnerability Management System in 2020

Today’s IT environment is markedly different to that of the 90s. While changes to infrastructures and applications have helped us reach new highs, they’ve also brought along several challenges.

Block Threat Vectors with Three-Step Vulnerability Remediation

The primary objective of vulnerability remediation is to pre-empt breaches before the vulnerabilities in data, applications, networks, or endpoints are exploited. Should a breach occur, however, then the objective of vulnerability remediation is to contain it as quickly as possible and thus minimize the damage.