Vulnerability Management

Related events

Related Videos

North Korea flag with circuitry and fingerprint

FlexibleFerret malware targets the macOS via North Korea job campaign

Steve ZurierFebruary 4, 2025

New malware strain a continuation of the North Korean Contagious Interview job lure campaign first described last December.

Application security

Threat Modeling That Helps the Business – Sandy Carielli, Akira Brand – ASW #316

February 4, 2025

Threat modeling has been in the appsec toolbox for decades. But it hasn't always been used and it hasn't always been useful. Sandy Carielli shares what she's learned from talking to orgs about what's been successful, and what's failed, when they've approached this practice. Akira Brand joins to talk about her direct experience with building threat ...

Cyber Threat Detected in Digital Code Interface, Alert System Highlighting Security Vulnerability in Cyber Environment

Network Security

Record number of exploited security vulnerabilities reached in 2024

Shaun NicholsFebruary 3, 2025

A total of 768 CVE-listed vulnerabilities exploited in the wild, a 20% increase from 2023.

Vulnerability Management

Semgrep non-drama, Facebook hates Linux – Vulns in Cars, Cell Towers, M365, and more – ESW #392

February 3, 2025

This week in the enterprise security weekly news, we discuss funding and acquisitions Understanding the Semgrep license drama Ridiculous vulnerabilities everywhere: vulns to take down your entire city’s cell service vulns to mess with your Subarus vulns in Microsoft 365 authentication cybersecurity regulations are worthless Facebook is banning pe...

Today’s columnist, Steve Wilson of Exabeam, explores the concept of “fair use” when it comes to AI data. (Adobe Stock)

AI/ML

How AI can revolutionize vulnerability research

Laura FrenchFebruary 3, 2025

AI agents and GenAI-driven fuzzing tools are already discovering flaws in open-source software.

Python programming code is seen on a computer screen.

Supply chain

New PyPI project archiving system aims to curb open-source security risks

SC StaffFebruary 3, 2025

While the archived projects remain available for download, users will be provided a warning banner to help them make informed dependency choices. PyPI aims to enhance supply-chain security by preventing attackers from hijacking abandoned projects and injecting malicious updates.

Vulnerability Management

.ASS, Deepseek, AI Time Travel, Google, HeartBlocker, TikTok, Aaran Leyland, and More – SWN #447

January 31, 2025

.ASS, Deepseek, AI Time Travel, Google, HeartBlocker, TikTok, Aaran Leyland, and More, on this edition of the Security Weekly News.

Close-up of stethoscope on a circuit board with blue lights, symbolizing the intersection of technology and healthcare for diagnostic solutions.

Vulnerability Management

Backdoor in Contec CMS8000 monitors may allow faulty patient readings

Steve ZurierJanuary 31, 2025

Agencies say firmware backdoor can cause an RCE, which could result in faulty readings on patients’ vital signs.

Vulnerability Management

Related events

Exposure management: How organizations can use it to build cyber resilience

CISO Perspectives to Improve/Optimize Vulnerability Management

Balancing Act: Prioritizing Vulnerabilities and Misconfigurations in Vulnerability Management

Related Videos

Transform cybersecurity with process mining

Security for the modern workforce

Log4j vulnerability response for banks: ‘This is not a quick process’

FlexibleFerret malware targets the macOS via North Korea job campaign

Threat Modeling That Helps the Business – Sandy Carielli, Akira Brand – ASW #316

Record number of exploited security vulnerabilities reached in 2024

Semgrep non-drama, Facebook hates Linux – Vulns in Cars, Cell Towers, M365, and more – ESW #392

How AI can revolutionize vulnerability research

New PyPI project archiving system aims to curb open-source security risks

.ASS, Deepseek, AI Time Travel, Google, HeartBlocker, TikTok, Aaran Leyland, and More – SWN #447

Backdoor in Contec CMS8000 monitors may allow faulty patient readings