cognitive cybersecurity intelligence

News and Analysis

Search

Don’t let CVEs distract you: Shift your AppSec team’s focus to malware

Rising vulnerabilities in open-source software have led to an increase in reports made to the National Vulnerability Database (NVD), highlighting issues with the Common Vulnerabilities and Exposures (CVE) process. This prompts a rethink of the NVD and conventional security team approaches. While reporting and scoring modifications can help improve the system, industry experts suggest focusing on threats such as malware and tampering. They also propose integrating the CVSS with a more effective scoring metric, like EPSS, to provide a better understanding of likely-to-be exploited vulnerabilities.

Source: securityboulevard.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts