Derrick Coston, CISA, CISSP, GIAC

-

Rami Sass, CEO, WhiteSource has found that for the past two years have seen an explosion in the number of software vulnerabilities being published, jumping from 6,447 in 2016 to 14,714 in 2017. Seeing as 2018 beat out the previous year with 16,521 CVEs reported, we should prepare ourselves for plenty of patching ahead in 2019.  Despite this, he notes that we need to remember that even as a rise in CVEs can be eternally frustrating and means more remediation work, it is still far more preferable to deal with these vulnerabilities early before they are exploited by attackers.See his article here.



source https://derrick-coston.com/2019/03/19/derrick-coston-cisa-cissp-giac-3/

Comments

Post a Comment

Popular posts from this blog

Derrick Coston, CISA, CISSP, GIAC

-
It’s amazing to see on a weekly basis, that organizations are still not taking steps in teh right direction to protect information that it has on its customers and employees.  Kacy Zurkus identified a troubling gap in her article “ Nearly Half of US Orgs Not Ready for CCDA ”   Despite how there was a push by organizations, about a year or so ago, to be compliant with the EU General Data Protection Regulation (GDPR), there now appears to be a less push or concern.  Is it because of the ability to enforce compliance.  Well Politico has identified an alarming fact in their article “ How one country blocks the world on data privacy ”  The GDPR is the world’s toughest standard for data privacy. But nearly a year later, its chief enforcer has yet to take a single action against major tech firms like Facebook and Google.  I applaud the State of California for their efforts, however, will the state be able to use its power to enforce compliance?  On paper...
Read more

Derrick Coston, Cyber Security Consultant. I am looking forward to seeing all of the new products and services at this Year’s RSA conference. Looking forward to speak with Madiant. They released its 2019 MANDIANT M-TRENDS REPORT which has some great information regarding APT37, APT38, APT39 AND APT40.

-
Madiant M-Trends Report source https://derrick-coston.com/2019/03/05/derrick-coston-cyber-security-consultant-i-am-looking-forward-to-seeing-all-of-the-new-products-and-services-at-this-years-rsa-conference-looking-forward-to-speak-with-madiant-they-released-i/
Read more