Communications of the ACM

Exposing Common Vulnerabilities

Common vulnerabilities and exposures (CVEs) include all types of subversive entry-points discovered in programs, along with a ...

Microsoft fixed 112 security vulnerabilities this month

The majority of this month's vulnerabilities are considered less likely or unlikely to be exploited, with eight considered ...
Defense One

Can AI spot vulnerabilities in infrastructure software?

LAS VEGAS — Over the next year, seven teams will hone AI-powered systems designed to harden the open-source software that underpins critical infrastructure—with a winner to be declared at next year's ...
Dark Reading

4 Pillars for Building a Responsible Cybersecurity Disclosure Program

Software vulnerabilities are a lot like landmines in a war zone: they're hidden in plain sight, seemingly everywhere, and poised to explode when you least expect it. However, unlike the uniform ...
SiliconANGLE

Majority of 2023’s critical cyberattacks stemmed from fewer than 1% of vulnerabilities

A new report released today by cybersecurity software provider Qualys Inc. finds that in 2023, fewer than 1% of vulnerabilities contributed to the highest risks and were routinely exploited in the ...
Healthcare IT News

Healthcare software and firmware risks up 59%, says H-ISAC

The 2023 State of Cybersecurity for Medical Devices and Healthcare Systems report, a collaboration of the Health Information Sharing and Analysis Center with Securin and Finite State, examined the ...

Trend Micro patches critical flaws in its Apex Central software

The bugs could allow an attacker to take over an affected system for their own purposes, or to crash the software, causing a ...
TechCrunch

CISA issues warning about another Ivanti flaw under active attack

Hackers are exploiting yet another vulnerability in one of Ivanti’s widely used enterprise products, the U.S. government’s cybersecurity agency CISA warned in a fresh alert this week. The remote code ...