Security News

Inside MITRE ATT&CK v17: Smarter defenses, sharper threat intel
2025-05-19 04:00

In this Help Net Security video, Adam Pennington, MITRE ATT&CK Lead, breaks down what’s new in the ATT&CK v17 release. He highlights the addition of the ESXi platform, new and updated techniques...

Week in review: MITRE ATT&CK v17.0 released, PoC for Erlang/OTP SSH bug is public
2025-04-27 08:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Released: MITRE ATT&CK v17.0, now with ESXi attack TTPs MITRE has released the latest version of...

Released: MITRE ATT&CK v17.0, now with ESXi attack TTPs
2025-04-23 12:52

MITRE has released the latest version of its ATT&CK framework, which now also includes a new section (“matrix”) to cover the tactics, techniques and procedures (TTPs) used to target VMware ESXi...

Funding uncertainty may spell the end of MITRE’s CVE program
2025-04-16 11:44

The future of the Common Vulnerabilities and Exposures (CVE) program hangs in the balance: MITRE, the not-for-profit US organization that runs it, could lose the US federal funding that helps them...

MITRE warns that funding for critical CVE program expires today
2025-04-16 06:16

MITRE Vice President Yosry Barsoum has warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs expires today, which...

U.S. Govt. Funding for MITRE's CVE Ends April 16, Cybersecurity Community on Alert
2025-04-16 05:06

The U.S. government funding for non-profit research giant MITRE to operate and maintain its Common Vulnerabilities and Exposures (CVE) program will expire Wednesday, an unprecedented development...

MITRE Caldera RCE vulnerability with public PoC fixed, patch ASAP! (CVE-2025–27364)
2025-02-28 14:44

Users of the MITRE Caldera cyber security platform have been urged to plug a critical hole (CVE-2025–27364) that may allow unauthenticated attackers to achieve remote code execution. About MITRE...

MITRE Caldera security suite scores perfect 10 for insecurity
2025-02-25 20:47

Is a trivial remote-code execution hole in every version part of the training, or? The smart cookie who discovered a perfect 10-out-of-10-severity remote code execution (RCE) bug in MITRE's...

ONLY Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK Evaluation
2024-12-18 10:30

Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders is to keep IT environments up and running. To guard against cyber threats...

Only Cynet delivers 100% protection and detection visibility in the 2024 MITRE ATT&CK Evaluation
2024-12-12 07:51

Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders is to keep IT environments up and running. To guard against cyber threats...