CISO

Turf wars? NIST to fix NVD backlog by September – insists it’s right agency to run vulnerability database

vulnerabilities

Turf wars? NIST to fix NVD backlog by September – insists it’s right agency to run vulnerability database

Update comes after CISA started enriching CVEs itself…

Edward Targett May 30, 2024

No LLMs aren’t about to “autonomously” hack your company

No LLMs aren’t about to “autonomously” hack your company

Welcome to your latest episode of “is this exciting or is this mild AI exaggeration™"

Edward Targett April 25, 2024

CISO-CEO communication gaps continue to undermine cybersecurity

CISO-CEO communication gaps continue to undermine cybersecurity

Qualys CEO says disconnect can hinder effective security strategies.

Francesca Dean April 23, 2024

As NVD flatlines, cybersecurity professionals call for urgent action

vulnerabilities

As NVD flatlines, cybersecurity professionals call for urgent action

Consortium plans “doomed” as rumours swirl over vulnerability database program borkage.

Edward Targett April 18, 2024

Sisense breach: CISO posts guidance amid frantic community action

Sisense breach: CISO posts guidance amid frantic community action

"They have direct access to JDBC connections, to SSH, and to SaaS platforms... This is a worst case scenario"

Edward Targett April 12, 2024

Microsoft roasted over “cascade of security failures” – authentication system utterly broken

Microsoft roasted over “cascade of security failures” – authentication system utterly broken

"A corporate culture that deprioritized both enterprise security investments and rigorous risk management."

Edward Targett April 03, 2024

Malicious backdoor, CVSS 10, slipped onto major Linux distributions

software supply chain

Malicious backdoor, CVSS 10, slipped onto major Linux distributions

Poisoned Easter eggs for all: Apparent supply chain attack caught mercifully early…

Edward Targett March 30, 2024