Google has issued an urgent Chrome security update to address a high-severity, actively exploited zero-day flaw. Identified as CVE-2023-5217, the vulnerability is a heap-based buffer overflow in the VP8 compression format. Google credits the discovery to its Threat Analysis Group and has not disclosed further details, stating that the flaw is being exploited commercially.
Board-Ready Security Metrics That Actually Matter
TL;DR Board-ready security metrics translate technical capabilities into financial risk and business outcomes. Boards need visibility across three dimensions: risk exposure, incident response capability, and
