• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Total Published CVEs Hits Record High for Fourth Year

You are here: Home / General Cyber Security News / Total Published CVEs Hits Record High for Fourth Year

The previous 12 months have witnessed a report quantity of CVEs printed by the US authorities, the fourth 12 months in a row volumes have risen.

As of December 15, the quantity of vulnerabilities in generation code uncovered and assigned a CVE variety by the US-CERT Vulnerability Database, topped the 2019 determine.

Final yr there were 17,306 CVEs revealed, together with 4337 higher-risk, 10,956 medium-risk and 2013 reduced-risk flaws. As of yesterday, 17,447 were being recorded in total, including 4168 higher-risk, 10,710 medium-risk and 2569 very low-risk bugs.

✔ Approved Seller by TheCyberSecurity.News From Our Partners
Acronis True Image 2021

Protect and backup your data using Acronis True Image. Acronis is made in Germany and is a leading brand in IT back up and secirity for years. Acronis True Image take secure and enxrypted backups from your Wdindows and macOS. With Acronis True image you will never be worried about Ransomware attacks and virus infections.

Get Acronis with 50% discount from our partner: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


Between 2005-16 quantities ranged from about 4000 to 8000 vulnerabilities every year, in accordance to the formal figures from the National Institute of Requirements and Technology (NIST)’s National Vulnerability Database.

Having said that, in 2017 the quantity skyrocketed to in excess of 14,000, and each year because released volumes have strike a record significant.

K2 Cyber Security, which recognized the modern report spike, argued that the pandemic may possibly have experienced an impact on disclosures this 12 months.

“Companies nonetheless struggle to find the stability concerning obtaining programs to marketplace promptly, and securing their code. The COVID-19 pandemic is a significant factor this calendar year,” argued the vendor’s co-founder and CEO, Pravin Kothari.

“It’s pushed lots of organizations to rush receiving their purposes to creation they run a lot less QA cycles, and use extra third-party, legacy, and open source code, which is a vital risk factor for elevated vulnerabilities.”

To mitigate these threats, DevOps groups really should change security as far still left in the lifecycle as attainable, when sysadmins should really patch as shortly as they can to ensure working techniques and critical software package are up-to-date, he reported.

“Finally, it’s critical to have a security framework that delivers a defense-in-depth architecture. It is time to choose a trace from the modern finalization of NIST’s SP800-53 that was just launched on September 23,” reported Kothari. 

“The new security and privacy framework regular now needs Runtime Application Self-Defense (RASP) as an added layer of security in the framework.”


Some elements of this article are sourced from:
www.infosecurity-journal.com

Previous Post: «Solarwinds Issues Second Hotfix For Orion Platform Supply Chain Attack SolarWinds Issues Second Hotfix for Orion Platform Supply Chain Attack
Next Post: Android and iOS users blackmailed by ‘Goontact’ spyware Android And Ios Users Blackmailed By 'goontact' Spyware»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Recent Posts

  • Big Tech Bans Social Networking App
  • Lack of Funding Could Lead to “Lost Generation” of Cyber-Startups
  • Unveiled: SUNSPOT Malware Was Used to Inject SolarWinds Backdoor
  • ‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform
  • DarkSide decryptor unlocks systems without ransom payment – for now
  • Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group
  • Millions of Social Profiles Leaked by Chinese Data-Scrapers
  • Feds will weigh whether cyber best practices were followed when assessing HIPAA fines
  • SolarWinds Hack Potentially Linked to Turla APT
  • 10 quick tips to identifying phishing emails

Copyright © TheCyberSecurity.News, All Rights Reserved.