The Amazon employee used knowledge she gained working at the company, along with scripts, to scan Amazon Web Service servers for misconfigured web application firewalls.
National cyber director nominee, Chris Inglis, pointed to three ways that more widespread adoption of cyber best practices could take hold: "One is enlightened self interest; that's apparently not working. The second is market forces; that's apparently not working. And the third is some imposition of standards or regulation on top of that."
Today's columnist, Teresa Shea of Raytheon Intelligence & Space, says groups such as Girls Who Code play a major role in attracting more diversity to the cyber workforce.
FireEye announced its products and name will be sold to a consortium led by private equity firm Symphony Technology Group in a $1.2 billion dollar acquisition announced June 2.
The CVSS score – more accurately, the CVSS base score – is a useful tool to compare vulnerabilities in the abstract. But it was not designed to evaluate risk or be the end of the conversation on vulnerability prioritization. And yet, that is often how CVSS is utilized.
Paul McKay, principal analyst at Forrester Research, will talk about his own research on security rating platforms: where he sees the most potential, and what could still use some development before prime time.