Forbes

The Real Vulnerability Is Time: How Automation Closes The Remediation Gap

As the CEO and co-founder of Vicarius, Roi Cohen leads a cybersecurity company that provides exposure management solutions for enterprises. I’ve seen security teams generate alerts by the thousands, ...
WeLiveSecurity

Threat actors exploiting zero-days faster than ever – Week in security with Tony Anscombe

As many as 97 out of the 138 vulnerabilities disclosed as actively exploited in the wild in 2023 were zero-days, according to a report from Mandiant. The rest of the software flaws under review were ...
WeLiveSecurity

RomCom exploits Firefox and Windows zero days in the wild

ESET researchers discovered a previously unknown vulnerability in Mozilla products, exploited in the wild by Russia-aligned group RomCom. This is at least the second time that RomCom has been caught ...
Infosecurity-magazine.com

Vulnerability Exploit Assessment Tool EPSS Exposed to Adversarial Attack

In a new proof-of-concept, endpoint security provider Morphisec showed that the Exploit Prediction Scoring System (EPSS), one of the most widely used frameworks for assessing vulnerability exploits, ...
CSOonline

Gen AI is transforming vulnerability hunting for pen-testers and attackers alike

Generative AI has had a significant impact on a wide variety of business processes, optimizing and accelerating workflows and in some cases reducing baselines for expertise. Add vulnerability hunting ...