The Cloud Controls Matrix (CCM) is a framework of controls that are essential for cloud computing security. Created by CSA, the CCM aligns with CSA best practices. You can use CCM to assess and guide ...

Maryland is giving cybersecurity researchers and residents alike a chance to help defend the state’s digital infrastructure, through a new initiative that encourages responsible reporting of online ...

This week, Google has launched an AI Vulnerability Reward Program dedicated to security researchers who find and report flaws in the company's AI systems. The new bug bounty program focuses on the ...

Thousands of vulnerabilities were identified and remediated through a government clearinghouse in 2023, according to a new report from the nation’s top cybersecurity agency. The Cybersecurity and ...

Picture the scenario: you log into your vulnerability management dashboard on a Monday morning. The scan ran overnight, and the report lights up with a dozen new high-severity CVEs. One stands out ...

The EU Cyber Resilience Act introduces a harmonized regulatory framework for the cybersecurity of certain products with digital elements. With a phased implementation, the CRA mandates ...

Business has slowed considerably in the vulnerability management market segment, yet there are more vulnerabilities to contend with than ever before. When security mainstays experience the same harsh ...

The Federal Risk and Authorization Management Program has begun soliciting public comments on a proposed standard designed to ensure that FedRAMP Authorized cloud service offerings use automated ...

The US system to track vulnerabilities is struggling to keep up with its backlog. Experts are scrambling to assemble alternatives. Every day, billions of people trust digital systems to run everything ...

Vulnerability management is undeniably a key part of any organization’s cyber risk strategy. Yet, despite regular patching and constant monitoring for new threats, attackers still manage to exploit ...

Many organizations prioritize compliance, assuming it ensures security—but does it, actually? Vulnerability management should come first, as security is about proactively identifying and mitigating ...

The European Union’s vulnerability database, under development since the release of the NIS2 Directive in December 2022, has officially launched. While the database has been in the works for some time ...