Threat and Vulnerability Management
Threat and Vulnerability Management | News, how-tos, features, reviews, and videos
EPSS explained: How does it compare to CVSS?
The Exploit Prediction Scoring System has its shortcomings, but it can complement CVSS to help better prioritize and assess vulnerability risk.
Microsoft Event Log vulnerabilities threaten some Windows operating systems
Two newly discovered vulnerabilities have been found to impact an Internet Explorer-specific Event Log present on operating systems prior to Windows 11.
Malwarebytes pairs new MDR, EDR for overwhelmed cybersecurity teams
Malwarebytes MDR (managed detection and response) works by pairing EDR (end point detection and response) technology with a dedicated team of security analysts, providing both automated and human lines of defense.
![A multitude of arrows pierce a target. [numerous attacks / quantity / severity]](https://images.idgesg.net/images/article/2020/12/arrows_piercing_a_target_numerous_attacks_quantity_by_franck_v_cc0_via_unsplash-100869381-small.3x2.jpg?auto=webp&quality=85,70)
3 actions Latin American leaders must take to reduce risk of cyberattacks
Threat actors are targeting government and private sector organizations across Latin America, so business and political leaders must step up to meet the challenge.
Tenable aims to unify your cybersecurity with exposure management platform
Tenable tackles the issue of siloed security apps with a cloud-based exposure management system that pulls in data from diverse types of systems that track a company’s digital assets and identify vulnerabilities.
![A user reviews data and statistical models. [analytics / analysis / tracking / monitoring / logging]](https://images.idgesg.net/images/article/2020/08/user_reviews_data_tracking_monitoring_analytics_event_logging_analysis_threat_detection_by_laurence_dutton_gettyimages-1170687091_2400x1600-100855964-small.3x2.jpg?auto=webp&quality=85,70){kind=tracking}
LiveAction adds new SOC-focused features to ThreatEye NDR platform
A SOC-specific user interface that supports analyst workflows and enhanced predicative threat intelligence capabilities are among the new features.
Recent cases highlight need for insider threat awareness and action
Insider threats can have a devastating impact even if the harm is unintentional. Here's advice to identify and mitigate insider threat risk.
![Tech Spotlight > Cloud [CSO] > Conceptual image of laptop users with cloud security overlay.](https://images.idgesg.net/images/idge/imported/imageapi/2022/05/16/16/spot_cloud_3x2_03_cso_laptop_users_with_ccloud_security_overlay__by_metamorworks_gettyimages-1132912672_b-100891925-small.3x2-100928038-small.3x2.jpg?auto=webp&quality=85,70)
One in 10 employees leaks sensitive company data every 6 months: report
Departing employees are most likely to leak sensitive information to competitors, criminals or the media in exchange for cash.
Hands-on cyberattacks jump 50%, CrowdStrike reports
Malicious hackers hone their tradecraft, reducing the time it takes to move from an initial compromised host machines to other components in enterprise networks, CrowdStrike says.
Russia-linked cyberattacks on Ukraine: A timeline
Cyber incidents are playing a central role in the Russia-Ukraine conflict. Here's how events are unfolding along with unanswered questions.
Top cybersecurity products unveiled at Black Hat 2022
Here are some of the most interesting new products launched at Black Hat USA 2022, including zero trust, extended detection and response (XDR), and a host of other threat and vulnerability management offerings.
CrowdStrike adds AI-powered indicators of attack to Falcon platform
The new feature leverages millions of examples of malicious activity to more accurately identify signs of an attack.
Palo Alto debuts Unit 42 team for managed detection and response
Live expert service builds on Palo Alto’s Cortex extended detection and response (XDR) platform provide, offering a managed detection and response (MDR) team for more personalized cybersecurity management and incident response.
Microsoft boosts threat intelligence with new Defender programs
Drawing from its acquisition of RiskIQ, Microsoft is releasing Defender External Attack Surface Management and Defender Threat Intelligence.
11 stakeholder strategies for red team success
These best practices will help ensure a successful red team exercise by getting all the stakeholders on the same page.
CrowdStrike enhances container visibility and threat hunting capabilities
The cloud-native security provider wants to help customers gain visibility into all of their containers, as well as uncover a growing array of threats across multicloud environments.
Deloitte expands its managed XDR platform
New additions beef up intelligence gathering, threat hunting, and mobile device security.
Orca adds detection and response capabilities to its agentless cloud security solution
New feature gives users full visibility into cloud environments to thwart workload and non-workload attacks.
![Microsoft > Excel [Office 365]](https://images.idgesg.net/images/article/2019/02/cw_microsoft_office_365_excel-100787147-small.3x2.jpg?auto=webp&quality=85,70)
How to manage Microsoft's Excel and Office macro blocking
Microsoft's reversal of its blocking by default on Excel macros creates an opportunity to improve policies and processes around Excel and Office macro use.
