Resources

Tripwire and Astro Making Best Practices a Daily Show

Assessing and managing vulnerabilities is a core cybersecurity practice, but it can put a heavy strain on IT security and operations teams. In many cases, introducing vulnerability management as a service is what’s necessary to overcome the challenge of accumulating vulnerabilities across complex IT environments—especially when time and resources are limited. This was the case for one mid-size U.S...

Blog

VERT Threat Alert: August 2022 Patch Tuesday Analysis

By Tyler Reguly on Tue, 08/09/2022

Today’s Patch Tuesday VERT Alert addresses Microsoft’s August 2022 Security Updates . VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-1015 on Wednesday, August 10th. In-The-Wild & Disclosed CVEs CVE-2022-34713 According to Microsoft, CVE-2022-34713 is a variant of the Dogwalk vulnerability . There has been a lot of Twitter discussion around this Dogwalk as...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of August 1, 2022

By Andrew Swoboda on Mon, 08/08/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of August 1 st , 2022. I’ve also included some comments on these stories. Windows 11 Smart App Control blocks files used to push malware Smart App Control, a Windows 11...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of July 25, 2022

By Andrew Swoboda on Mon, 08/01/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of July 25, 2022. I’ve also included some comments on these stories. SonicWall fixed critical SQLi in Analytics and GMS products Security company SonicWall addressed a...

Blog

4 Stages of Vulnerability Management Program Best Practices

By Tripwire Researcher on Mon, 07/18/2022

An enterprise vulnerability management program can reach its full potential when it is built on well-established foundational goals. These goals should address the information needs of all stakeholders, tie back to the business goals of the enterprise, and reduce the organization’s risk. Existing vulnerability management technologies can detect risk, but they require a foundation of people and...

Blog

VERT Threat Alert: July 2022 Patch Tuesday Analysis

By Tyler Reguly on Tue, 07/12/2022

Today’s VERT Alert addresses Microsoft’s July 2022 Security Updates . VERT is actively working on coverage for these Patch Tuesday vulnerabilities and expects to ship ASPL-1011 on Wednesday, July 13th. In-The-Wild & Disclosed CVEs CVE-2022-22047 Microsoft is reporting this month that a single vulnerability in the Windows Client/Server Runtime Subsystem (CSRSS) is the only one that has seen active...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of June 20, 2022

By Andrew Swoboda on Mon, 06/27/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of June 20, 2022. I’ve also included some comments on these stories. Over a Dozen Flaws Found in Siemens' Industrial Network Management System Cybersecurity researchers have...

Blog

VERT Threat Alert: June 2022 Patch Tuesday Analysis

By Tyler Reguly on Tue, 06/14/2022

Today’s VERT Alert addresses Microsoft’s June 2022 Security Updates . VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-1007 on Wednesday, June 15th. In-The-Wild & Disclosed CVEs None of the vulnerabilities patched this month have been exploited in-the-wild or publicly disclosed according to Microsoft. However, Microsoft did update last month’s security...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of June 06, 2022

By Andrew Swoboda on Mon, 06/13/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of June 06, 2022. I’ve also included some comments on these stories. Another nation-state actor exploits Microsoft Follina to attack European and US entities A nation-state...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 30, 2022

By Andrew Swoboda on Mon, 06/06/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of May 30, 2022. I’ve also included some comments on these stories. Vendor Refuses to Remove Backdoor Account That Can Facilitate Attacks on Industrial Firms Korenix JetPort...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 16, 2022

By Andrew Swoboda on Mon, 05/23/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of May 16, 2022. I’ve also included some comments on these stories. Watch Out! Hackers Begin Exploiting Recent Zyxel Firewalls RCE Vulnerability The U.S. Cybersecurity and...

Blog

VERT Threat Alert: May 2022 Patch Tuesday Analysis

By Tyler Reguly on Tue, 05/10/2022

Today’s VERT Alert addresses Microsoft’s May 2022 Security Updates . VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-1002 on Wednesday, May 11th. CVE-2022-26925 In-The-Wild & Disclosed CVEs Based on Microsoft’s limited documentation, this appears to be a resurgence and/or improved version of PetitPotam . This month’s security guidance links to both the...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 2, 2022

By Editorial Staff on Mon, 05/09/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of May 2, 2022. I’ve also included some comments on these stories. Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other Customers Microsoft on Thursday...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 25, 2022

By Editorial Staff on Mon, 05/02/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of April 25, 2022. I’ve also included some comments on these stories. Homeland Security bug bounty program uncovers 122 holes in its systems The first bug bounty program by...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 18, 2022

By Editorial Staff on Mon, 04/25/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of April 18, 2022. I’ve also included some comments on these stories. CISA Alert on ICS, SCADA Devices Highlights Growing Enterprise IoT Security Risks On April 13, the...

Blog

The Four Stages to a Successful Vulnerability Management Program

By Mitch Parker on Wed, 04/20/2022

Have you ever been around someone who is just better at something than you are? Like when you were in grade school and there was this person who was effortless at doing things correctly, like getting high grades? They had great study habits, they arrived on time, they were prepared and confident in the materials that they studied in class, and they were a consistently high performer at every stage...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 11, 2022

By Editorial Staff on Tue, 04/19/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of April 11, 2022. I’ve also included some comments on these stories. Microsoft's Autopatch feature improves the patch management process Microsoft announced a feature called...

Blog

VERT Threat Alert: April 2022 Patch Tuesday Analysis

By Tyler Reguly on Tue, 04/12/2022

Today’s VERT Alert addresses Microsoft’s April 2022 Security Updates . VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-996 on Wednesday, April 13th. In-The-Wild & Disclosed CVEs CVE-2022-24521 While not previously publicly disclosed, Microsoft is reporting that they have seen active exploitation of this vulnerability in the wild. The vulnerability can lead...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 4, 2022

By Editorial Staff on Mon, 04/11/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of April 4, 2022. I’ve also included some comments on these stories. Borat RAT, a new RAT that performs ransomware and DDoS attacks Cyble researchers discovered a new remote...

Blog

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of March 28, 2022

By Editorial Staff on Mon, 04/04/2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of March 28, 2022. I’ve also included some comments on these stories. Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability Muhstik, a botnet infamous...

First page
Previous page
…
4
5
6
7
8
9
10
11
12
…
Next page
Last page

Tripwire and Astro Making Best Practices a Daily Show

VERT Threat Alert: August 2022 Patch Tuesday Analysis

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of August 1, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of July 25, 2022

4 Stages of Vulnerability Management Program Best Practices

VERT Threat Alert: July 2022 Patch Tuesday Analysis

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of June 20, 2022

VERT Threat Alert: June 2022 Patch Tuesday Analysis

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of June 06, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 30, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 16, 2022

VERT Threat Alert: May 2022 Patch Tuesday Analysis

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 2, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 25, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 18, 2022

The Four Stages to a Successful Vulnerability Management Program

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 11, 2022

VERT Threat Alert: April 2022 Patch Tuesday Analysis

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of April 4, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of March 28, 2022

Contact Information

Privacy Policy

Cookie Policy

Impressum