CSO Online

CISA tells agencies to patch smarter, not harder — foreshadowing broader industry practice

A new CISA directive moves federal agencies beyond severity scores and toward a risk-based patching model that prioritizes ...
SiliconANGLE

NIST shifts National Vulnerability Database to risk-based triage as CVE submissions hit record levels

The U.S. National Institute of Standards and Technology today announced an overhaul of how it processes cybersecurity vulnerabilities in its National Vulnerability Database . NIST is abandoning its ...
techtimes

NIST National Vulnerability Database Severity Scores Wrong 88% of Time, Inspector General Finds

The federal database that security teams worldwide consult to decide which software flaws to patch first produces severity scores that are wrong nearly 88% of the time — and the government watchdog ...
GovInfoSecurity

Auditors Rip NIST Management of NVD Program

Management by the National Institute of Standards and Technology of a repository of vulnerability data came under sharp ...
CSO Online

US government report slams NIST for NVD backlog

NIST’s lack of strategic planning and decisive action have allowed the backlog of unprocessed vulnerabilities to continue ...
TechCrunch

NIST releases a tool for testing AI model risk

The National Institute of Standards and Technology (NIST), the U.S. Commerce Department agency that develops and tests tech for the U.S. government, companies and the broader public, has re-released a ...
Infosecurity-magazine.com

NVD Revamps Operations as Vulnerability Reporting Surges

After a tumultuous year marked by internal turmoil and a mounting vulnerability backlog, the National Vulnerability Database (NVD) team within the US National Institute of Standards and Technology ...
Forbes

The Critical Role Of Vulnerability Management In Compliance

Many organizations prioritize compliance, assuming it ensures security—but does it, actually? Vulnerability management should come first, as security is about proactively identifying and mitigating ...