Jointly developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), ISO/IEC 29147 and ISO/IEC 30111 provide a structured framework ...

Organizations are facing an increase in cyber threats. Even well-funded security teams may find it challenging to effectively address these threats without a formal program. One effective way to ...

Federal agencies are under a binding operational directive to address exploitable security vulnerabilities in their software, but the success of CISA’s effort relies on the cooperation of software ...

Cybersecurity risk management firm Brinqa Inc. today announced new capabilities that it says will shorten time to value and make it easier to adopt modern vulnerability management best practices. The ...

A new vulnerability database has launched in the EU, in a bid to reduce dependence on the U.S. program. Here's what you need ...

A new service, the Global Cybersecurity Vulnerability Enumeration (GCVE), offers an alternative to the US-led CVE ...

trackd, the cybersecurity start-up automating vulnerability remediation without the fear of disruption, announced that it is emerging from stealth-mode behind $3.35MM in seed funding, and will bring ...

The Cybersecurity and Infrastructure Security Agency (CISA) continues to set the standard for federal government innovation with its 2024 summer internship program, particularly within its ...

As we pass the first anniversary of the Log4j vulnerability disclosure, it's a timely reminder that when a vulnerability is serious, it deserves our utmost attention. Organizations taking ...

Full-cycle vulnerability management (FCVM) is a set of cybersecurity capabilities that helps organizations better manage their IT infrastructure as well as rapidly identify and prioritize risks ...

The European Commission has proposed a comprehensive regulation that would repeal and replace the current EU Cybersecurity Act (Regulation ...