Cybersecurity company JFrog has argued that the Common Vulnerability Scoring System (CVSS) needs a complete overhaul due to overhyped vulnerability ratings. In a new report, the firm contends that the CVSS metrics often provide an oversimplified view of security risks. JFrog’s review of the top 50 Common Vulnerabilities and Exposures suffered in 2022 revealed that JFrog gave 64% a lower severity rating. The company maintains that lack of context and overly complex assessments misdirect action and can result in priority vulnerabilities being ignored.
The NHS needs to tighten its third-party supplier cybersecurity
The NHS should proactively fortify cybersecurity within its third-party software suppliers following recent damaging ransomware attacks, says Jonathan Lee from Trend Micro. He suggests implementing
