CVSS v4.0 is here – what you need to know

The Common Vulnerability Scoring System (CVSS) is a prevalent, standardized method for gauging digital systems’ severity of security vulnerabilities. Developed by the Forum of Incident Response and Security Teams (FIRST), it gives security professionals a consistent approach to assessing and prioritizing risks. The current version, CVSS v3.0, has been operational for over a decade but… Continue reading CVSS v4.0 is here – what you need to know

Threat intelligence frameworks in 2022

Ideally, teams leverage threat intelligence frameworks to more efficiently uncover blind spots, gain visibility, and improve their security posture. And, with threats proliferating every day, even a slight increase in efficiency could be the difference that prevents a data breach.  The key goal, when faced with so many vulnerabilities all at once, is to identify… Continue reading Threat intelligence frameworks in 2022

Why CVSS scores aren’t enough

The number of vulnerabilities uncovered daily has long exceeded what security teams can possibly address. The key to success in vulnerability management no longer lies in patching everything, but rather in making judgment calls and deciding which vulnerabilities to address and which to ignore.