Security News from Acunetix - 17 Nov 2021
Security-related vocabulary includes a lot of words with imprecise meanings. Two such terms that give me a headache when used in the web application security context are the verbs to secure and to protect. But this headache is nothing compared to the one I get...
The post You are the only one who can secure and protect your web applications appeared first on Acunetix.
The Cybersecurity and Infrastructure Security Agency (CISA) is reinforcing the nation’s cybersecurity efforts by announcing a new Binding Operational Directive (BOD) related to common vulnerabilities and exposures. Also referred to as CVEs, these publicly disclosed flaws in software open doors that attackers are able to exploit at alarming rates: the FBI’s Internet Crime Complaint Center noted in its 2020 report that the department saw a massive 69% increase in suspected cybercrime complaints from 2019 to 2020.
Getting ahead of this worrisome trend, BOD 22-01 is set to play a role in shaping how the United States government addresses nearly 300 known software security flaws and handles the cyber threats we’re faced with today. “Vulnerabilities that have previously been used to exploit public and private organizations are a frequent attack vector for malicious cyber actors of all types,” the BOD states. “These vulnerabilities pose significant risk to agencies and the federal enterprise. It is essential to aggressively remediate known exploited vulnerabilities to protect federal information systems and reduce cyber incidents.”
The post What government agencies need to know about CISA’s new Binding Operational Directive appeared first on Acunetix.