Mapped Known Exploitation Evidence from @vulncheck.bsky.social KEV to CWEs so you can see what are the most commonly exploited weaknesses...

vulncheck.com/blog/cwe-top...

#cybersecurity #infosec

What's it gonna take for this CVE to make it onto CISA KEV?

#cybersecurity #infosecurity #infosec

It's often observed that there's a significant delay between when a vulnerability has publicly known exploitation evidence and when it gets added to CISA KEV.

We published a Jupyter notebook so you can now visualize the gap: vulncheck.com/blog/compari...

#cybersecurity #infosec #infosecurity #cisa

What's cool about today's CISA KEV additions is seeing @albinolobster0.bsky.social's research contribution with the ProjectSend vulnerability being added. We already captured the other KEVs at @vulncheck.bsky.social

#cybersecurity #infosecurity #riskmanagement #vulnerabilitymanagement

The security industry went 6-days without a new Known Exploited Vulnerability which is the longest length of time this year.

So do you think it was the threat actors or security researchers that went on holiday?

ELSE: What did we miss? 😝

#cybersecurity #infosecurity #infosec

Finally took some time to dive into Cybersecurity and Infrastructure Security Agency's 2023 Top Routinely Exploited Vulnerabilities Report. We saw a lot of threat activity across the CVEs in the report...
vulncheck.com/blog/cisa-to...

#cybersecurity #infosec #infosecurity