Risk Based Security and DSquare Security Announce Integration

Risk Based Security is pleased to announce a partnership with DSquare Security and the integration of VulnDB and the D2 Elliot Framework. The D2 Elliot Web Exploitation Framework helps enterprises replicate real-life attacks during web application penetration testing by providing a powerful framework and reliable exploits.  There are currently over 600 enterprise-grade exploits in the […]

OpenEMR Flaw Leaves Hundreds Of Organizations’ Medical Records Exposed

The first known medical vulnerability currently on record is from June 1985 and was in a radiation therapy machine, Therac-25, produced by Atomic Energy of Canada Limited (AECL). Due to a race condition the vulnerability lead to fatal radiation overdoses in patients. Since some of the initial reports in 2011 about vulnerabilities in medical devices, […]

VulnDB Enrichment Module Released for MISP Project

Risk Based Security is pleased to announce that a new VulnDB enrichment module has been published for the Malware Information Sharing Platform & Threat Sharing Project (MISP)! MISP is a feature-rich, open source threat intelligence platform used by more than 2,500 organizations for sharing, storing, and correlating Indicators of Compromises (IoC) of targeted attacks. Koen […]

No-Shock: Worst Year For Vulnerabilities Already – Only Through Q3 2017

2017 has officially become the worst year on record with over 16,006 disclosed vulnerabilities, according to Risk Based Security. RICHMOND, VA, November 14, 2017 — Risk Based Security today announced the release of its Q3 2017 VulnDB QuickView report that shows there have been 16,006 vulnerabilities disclosed through September 30th this year. This is the […]

2017, Yet Another “Worst Year Ever” For Data Breaches

The number of records exposed due to data breaches in the first nine months of 2017 is up 305% compared to the same period in 2016. RICHMOND, VA, November 8, 2017 — Risk Based Security today announced the release of its Q3 2017 Data Breach QuickView report, showing there have been 3,833 publicly disclosed data […]

Equifax Breach: A Wrap-up?

This is the ninth blog in the running series on the Equifax data breach. Equif*@#$d: Equifax Breach Response Off To A Rough Start Equifax Breach: Legal, Vulnerability Blame Game, and the Big Technical Debacle Equifax Breach: EULAs, Size Doesn’t Matter, and Where’s The Data? Equifax Breach: The Bigger Picture, Identity, Impact, and Advice Equifax Breach: […]

Equifax Breach: Updated Timeline, Phishing, Regulation, and a Roundup

This is the eighth blog in the running series on the Equifax data breach. Equif*@#$d: Equifax Breach Response Off To A Rough Start Equifax Breach: Legal, Vulnerability Blame Game, and the Big Technical Debacle Equifax Breach: EULAs, Size Doesn’t Matter, and Where’s The Data? Equifax Breach: The Bigger Picture, Identity, Impact, and Advice Equifax Breach: […]

Equifax Breach: Cyber Insurance To The Rescue?!

This is the seventh blog in the running series on the Equifax data breach. Equif*@#$d: Equifax Breach Response Off To A Rough Start Equifax Breach: Legal, Vulnerability Blame Game, and the Big Technical Debacle Equifax Breach: EULAs, Size Doesn’t Matter, and Where’s The Data? Equifax Breach: The Bigger Picture, Identity, Impact, and Advice Equifax Breach: […]

Equifax Breach: Timeline, International, Patching, Gender, PCI, oh my!

This is the sixth blog in the running series on the Equifax data breach. Equif*@#$d: Equifax Breach Response Off To A Rough Start Equifax Breach: Legal, Vulnerability Blame Game, and the Big Technical Debacle Equifax Breach: EULAs, Size Doesn’t Matter, and Where’s The Data? Equifax Breach: The Bigger Picture, Identity, Impact, and Advice Equifax Breach: […]

Equifax Breach: Ambulance Chasing, FireEye, and a News Roundup

This is the fifth blog in the running series on the Equifax data breach. Equif*@#$d: Equifax Breach Response Off To A Rough Start Equifax Breach: Legal, Vulnerability Blame Game, and the Big Technical Debacle Equifax Breach: EULAs, Size Doesn’t Matter, and Where’s The Data? Equifax Breach: The Bigger Picture, Identity, Impact, and Advice Equifax Breach: […]