Cyberint: Vulnerability Intelligence: Using Threat Intel To Assess The Risk Of A CVE
Throughout 2023, threat actors launched many large campaigns to exploit vulnerabilities at scale: ESXi, GoAnywhere MFT, MOVEit, Microsoft Exchange, Fortinet VPNs, Barracuda Email Security Gateways, and more.
With vulnerability exploitation re-emerging as a preferred initial attack vector, it is critical for organizations to which vulnerabilities pose the most risk so they can be prioritized and patched as quickly as possible. Threat intelligence-- data on which vulnerabilities are exploited in the wild, which have public exploit code, which are being discussed in threat actor forums, and much more-- is essential to risk assessment and prioritization processes.
In this webinar, Gino Rombley, a Senior Security Architect at Cyberint, will discuss the following:
- An overview of CVE statistics and vulnerability exploitation campaigns of 2023
- A brief intro to CVSS v4.0 and highlights of what's new in v4
- Using attack surface management to understand the CVEs in your external assets
- How Threat Intelligence reveals the true risk profile of a CVE
- Accelerating prioritization and remediation processes to stay secure
Join us at 10:00am EST on Thursday, December 14th to understand how you can optimize remediation efforts and keep your organization secure.