The European Union Agency for Cybersecurity (ENISA) publishes a map of national Coordinated Vulnerability Disclosure (CVD) policies in the EU Member States and makes recommendations.
The economics of vulnerability disclosure
A new ENISA report aims to provide a glimpse into the costs, incentives, and impact related to discovering and disclosing vulnerabilities in information security.
Statement on Microsoft Exchange vulnerabilities
The EU Agency for Cybersecurity (ENISA) has provided a statement with an assessment and advice on Microsoft Exchange vulnerabilities.
Joint Statement on Ivanti Connect Secure and Ivanti Policy Secure Vulnerabilities
Assessment and advice on recovery and mitigating actions.
Coordinated Vulnerability Disclosure: Guidelines published by NCSC
The Coordinated Vulnerability Disclosure Guideline that aims to support organisations with their CVD-policy was published last week by the Dutch National Cybersecurity Centre.
Vulnerability of Wi-Fi WPA2 networks
A serious vulnerability affecting the Wi-Fi Protected Access II – WPA2 protocol has been discovered. A potential attack would work against most Wi-Fi network setups e.g. the original WPA, WPA2, and even against networks that only use the Advanced…
ENISA statement related to the recent Internet Explorer vulnerability
In relation to the warnings of Microsoft on Sunday, of a previously unknown vulnerability in all supported versions of Internet Explorer being exploited, affecting all supported versions of IE, and allows them to secretly hijack vulnerable computers…
The state of Cybersecurity Vulnerabilities 2018-2019
The European Union Agency for Cybersecurity, ENISA organises a joint workshop with CERT-EU, computer emergency response team for the EU Institutions, Bodies and Agencies to share information on key cybersecurity activities.
Guide to mitigate vulnerabilities, threats & cyber attacks
ENISA launches Guide on sharing information to mitigate network security vulnerabilities, threats and cyber attacks
Log4j vulnerability - update from the CSIRTs Network
The EU CSIRTs Network has been closely following the development of the Log4Shell situation since 10 December 2021.