27 min listen
Getting Vulnerability Management Back on the Rails - Patrick Garrity - ESW #356
Getting Vulnerability Management Back on the Rails - Patrick Garrity - ESW #356
ratings:
Length:
52 minutes
Released:
Apr 4, 2024
Format:
Podcast episode
Description
NVD checked out, then they came back? Maybe? Should the xz backdoor be treated as a vulnerability? Is scan-driven vulnerability management obsolete when it comes to alerting on emerging threats? What were some of the takeaways from the first-ever VulnCon? EPSS is featured in over 100 security products, but is it properly supported by those that benefit from it? How long do defenders have from the moment a vulnerability is disclosed to patch or mitigate it before working exploits are ready and in the wild? There's SO much going on in the vulnerability management space, but we'll try to get to the bottom of some of in in this episode. In this interview, we talk to Patrick Garrity about the messy state of vulnerability management and how to get it back on the rails. Segment Resources: Exploitation TImelines NVD Sources for known exploitation Exploitation in the Wild - Rockstar Show Notes: https://securityweekly.com/esw-356
Released:
Apr 4, 2024
Format:
Podcast episode
Titles in the series (100)
Enterprise Security Weekly #9 - Sniffing Each Others' Farts: This week in the news no excuses to go Phish yourself, a services vendor helps you identify risk, the #1 privileged identity management solution (According to some), and a huge blow to the Endpoint Security Agent market. And we'll talk about how to... by Enterprise Security Weekly (Video)