The new report of the European Union Agency for Cybersecurity (ENISA) confirms investment continues to grow but stresses the importance of vulnerability management.
Study on cryptographic protocols
Cryptographic algorithms, when used in networks, are used within a cryptographic protocol. Even if the cryptographic primitives and schemes (discussed in the “Algorithms, key size and parameters” report of 2014, see link below) are deemed secure,…
Coordinated Vulnerability Disclosure: Towards a Common EU Approach
The new report of the European Union Agency for Cybersecurity (ENISA) explores how to develop harmonised national vulnerability programmes and initiatives in the EU.
Coordinated Vulnerability Disclosure policies in the EU
The European Union Agency for Cybersecurity (ENISA) publishes a map of national Coordinated Vulnerability Disclosure (CVD) policies in the EU Member States and makes recommendations.
The economics of vulnerability disclosure
A new ENISA report aims to provide a glimpse into the costs, incentives, and impact related to discovering and disclosing vulnerabilities in information security.
Statement on Microsoft Exchange vulnerabilities
The EU Agency for Cybersecurity (ENISA) has provided a statement with an assessment and advice on Microsoft Exchange vulnerabilities.
Coordinated Vulnerability Disclosure: Guidelines published by NCSC
The Coordinated Vulnerability Disclosure Guideline that aims to support organisations with their CVD-policy was published last week by the Dutch National Cybersecurity Centre.
Joint Statement on Ivanti Connect Secure and Ivanti Policy Secure Vulnerabilities
Assessment and advice on recovery and mitigating actions.
Vulnerability of Wi-Fi WPA2 networks
A serious vulnerability affecting the Wi-Fi Protected Access II – WPA2 protocol has been discovered. A potential attack would work against most Wi-Fi network setups e.g. the original WPA, WPA2, and even against networks that only use the Advanced…
ENISA statement related to the recent Internet Explorer vulnerability
In relation to the warnings of Microsoft on Sunday, of a previously unknown vulnerability in all supported versions of Internet Explorer being exploited, affecting all supported versions of IE, and allows them to secretly hijack vulnerable computers…