Homeland Security Today

CISA Releases SSVC Methodology to Prioritize Vulnerabilities

CISA published its guide on Stakeholder-Specific Vulnerability Categorization (SSVC), a vulnerability management methodology that assesses vulnerabilities and prioritizes remediation efforts based on ...
Nextgov

CISA directive revamps how agencies prioritize vulnerable systems

The move is part of CISA’s response “to the current threat landscape where AI software services can assist threat actors to ...
Defense One

New CISA directive will reshape how agencies prioritize cyber risks, official says

The Cybersecurity and Infrastructure Security Agency plans to release a binding directive on Wednesday that tasks the federal ...
Dark Reading

Will Putting a Dollar Value on Vulnerabilities Help Prioritize Them?

When videoconferencing service Zoom searched for a better way to assign a severity to vulnerabilities found during bug bounty programs, the company's security team could not find a suitable approach: ...
Yahoo Finance

Proofpoint Introduces Active Exploits Protection to Help Organizations Prioritize Vulnerability Patching for Real-World Attacks in the AI Era

Automatically translates exploit intelligence into immediate protection across primary attack paths SUNNYVALE, Calif., May 27, 2026 (GLOBE NEWSWIRE) -- Proofpoint, Inc., a leading cybersecurity and ...
SiliconANGLE

Tenable enhances vulnerability rating system with AI to improve risk prioritization

Network security company Tenable Holdings Inc. today unveiled an artificial intelligence-powered update to its Vulnerability Priority Rating system, designed to help organizations better identify and ...
The Manila Times

MazeBolt Named Best AI-Powered Vulnerability Management Solution in 2026 Cybersecurity Stars Awards

The Hacker News recognizes MazeBolt for providing measurable reduction in DDoS risk, with AI-driven analysis on big data sets identifying and prioritizing DDoS vulnerabilities that attackers are most ...
SiliconANGLE

NetRise updates platform to help teams prioritize real-world software vulnerabilities

Software supply chain startup NetRise Inc. today announced a major update to its platform aimed at improving how organizations identify and manage vulnerabilities in the software running on devices ...

As Cyberattacks Get More Complex, So Does Pentesting

The good news is that even as hackers get more sophisticated, so too do cybersecurity platforms, especially automated penetration testing (or “pentesting”) platforms like XBOW.
CSOonline

How EPSS 3.0 is an improvement over previous versions of the threat assessment system

In late 2022, we compared the Exploit Prediction Scoring System (EPSS) and the widely used Common Vulnerability Scoring System (CVSS). Now EPSS 3.0 brings a more comprehensive, efficient, and ...
Dark Reading

CVSS 4.0 Is Here, but Prioritizing Patches Still a Hard Problem

The soon-to-be-released Version 4.0 of the Common Vulnerability Scoring System (CVSS) promises to fix a number of issues with the severity metric for security bugs. But vulnerability experts say that ...
TechRepublic

Top 5 Requirements for Prioritizing Vulnerability Remediation

IT departments are overwhelmed by the abundance of vulnerabilities that continue to grow at a rapid pace every day. They struggle to identify the most critical threats they must address right away at ...