CISA reverses course, extends MITRE CVE contract
While the last-minute extension averts an immediate lapse in support, rival organizations are being stood up to supplant the global vulnerability system.
Advertisement
MITRE
Despite challenges, the CVE program is a public-private partnership that has shown resilience
In 1999, Dave Mann and Steve Christey, two researchers from the nonprofit R&D corporation MITRE, debuted a concept for security vulnerabilities that laid the groundwork for the…
Infosec pros: We need CVSS, warts and all
The Common Vulnerability Scoring System has a lot of critics, but experts say it’s still the best unified way to share the severity of cybersecurity flaws.
Latest round of MITRE ATT&CK evaluations put cybersecurity products through rigors of ransomware
The sixth round of tests included two ransomware variants, while also incorporating macOS for the first time.
Twitter’s recommendation algorithm opens platform to manipulation, bot attacks, researcher finds
Twitter's source code apparently revealed how it's possible to game the company's software to reduce access to specific accounts.
How to improve threat detection in ICS environments
A new report evaluates an end-to-end cyberattack on industrial control systems and offers solutions for threat detection capabilities.
Advertisement
Here comes the bride: New map matches threat intel to cyberdefenses
It's a marriage between the NIST cybersecurity the MITRE ATT&CK frameworks.
State Department pledges $8 million more in cybersecurity aid to Ukraine
The U.S. has increased cyber aid to Ukraine after Russia-linked cyberattacks on power grids in 2015 and 2016.
Can software vendors block a notorious criminal group’s attacks? MITRE wants to find out
First Cozy Bear, now FIN7.
How would MITRE’s popular cyberattack framework apply to industrial control systems?
The ATT&CK framework should account for the “full gamut of adversary behavior,” says one of the lead cybersecurity engineers who helps maintain the popular document.