home.social

#exposuremanagement — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #exposuremanagement, aggregated by home.social.

  1. VIKI SNIFFER analyzed 72,953 CVEs in the latest OSINT cycle.

    Key findings:

    47,064 CVEs still have no CVSS
    64 MITRE ATT&CK techniques identified
    Strong growth in:
    T1071 — Application Layer Protocol
    T1055 — Process Injection
    T1003.005 — Cached Credentials
    T1020 — Automated Exfiltration

    jaroslawkuchta.substack.com/p/

    #CyberSecurity #ThreatIntelligence #SOC #BlueTeam #MITREATTACK #ExposureManagement #CTEM #ThreatHunting #OSINT #CVE #KEV #InfoSec #IdentitySecurity #LLMSecurity #OpenAPI #MCP #DetectionEngineering

  2. VIKI SNIFFER analyzed 72,953 CVEs in the latest OSINT cycle.

    Key findings:

    47,064 CVEs still have no CVSS
    64 MITRE ATT&CK techniques identified
    Strong growth in:
    T1071 — Application Layer Protocol
    T1055 — Process Injection
    T1003.005 — Cached Credentials
    T1020 — Automated Exfiltration

    jaroslawkuchta.substack.com/p/

    #CyberSecurity #ThreatIntelligence #SOC #BlueTeam #MITREATTACK #ExposureManagement #CTEM #ThreatHunting #OSINT #CVE #KEV #InfoSec #IdentitySecurity #LLMSecurity #OpenAPI #MCP #DetectionEngineering

  3. Cyber insurers are shifting from yearly audits to continuous validation.
    Kimberly Manibusan from Qualys explains why insurers now want measurable proof of:
    🔴 Faster remediation
    🔴 Patch management effectiveness
    🔴 Continuous security visibility

    📖 Read:
    technadu.com/cyber-insurers-no

    #CyberInsurance #CyberSecurity #CyberRisk #ExposureManagement

  4. Cyber insurers are shifting from yearly audits to continuous validation.
    Kimberly Manibusan from Qualys explains why insurers now want measurable proof of:
    🔴 Faster remediation
    🔴 Patch management effectiveness
    🔴 Continuous security visibility

    📖 Read:
    technadu.com/cyber-insurers-no

    #CyberInsurance #CyberSecurity #CyberRisk #ExposureManagement

  5. Cyber insurers are shifting from yearly audits to continuous validation.
    Kimberly Manibusan from Qualys explains why insurers now want measurable proof of:
    🔴 Faster remediation
    🔴 Patch management effectiveness
    🔴 Continuous security visibility

    📖 Read:
    technadu.com/cyber-insurers-no

    #CyberInsurance #CyberSecurity #CyberRisk #ExposureManagement

  6. Cyber insurers are shifting from yearly audits to continuous validation.
    Kimberly Manibusan from Qualys explains why insurers now want measurable proof of:
    🔴 Faster remediation
    🔴 Patch management effectiveness
    🔴 Continuous security visibility

    📖 Read:
    technadu.com/cyber-insurers-no

    #CyberInsurance #CyberSecurity #CyberRisk #ExposureManagement

  7. 📢 Don't miss runZero's Rob King on the latest episode of the Nexus podcast.

    Rob and host Michael Mimoso discuss the challenges of protecting #OT environments and why traditional mitigations and tools often fall short in converged networks.

    🎧 Listen today: runzero.com/resources/ot-asset

    #OTsecurity #ITOTConvergence #ExposureManagement

  8. 📢 Don't miss runZero's Rob King on the latest episode of the Nexus podcast.

    Rob and host Michael Mimoso discuss the challenges of protecting #OT environments and why traditional mitigations and tools often fall short in converged networks.

    🎧 Listen today: runzero.com/resources/ot-asset

    #OTsecurity #ITOTConvergence #ExposureManagement

  9. 📢 Don't miss runZero's Rob King on the latest episode of the Nexus podcast.

    Rob and host Michael Mimoso discuss the challenges of protecting #OT environments and why traditional mitigations and tools often fall short in converged networks.

    🎧 Listen today: runzero.com/resources/ot-asset

    #OTsecurity #ITOTConvergence #ExposureManagement

  10. 📢 Don't miss runZero's Rob King on the latest episode of the Nexus podcast.

    Rob and host Michael Mimoso discuss the challenges of protecting #OT environments and why traditional mitigations and tools often fall short in converged networks.

    🎧 Listen today: runzero.com/resources/ot-asset

    #OTsecurity #ITOTConvergence #ExposureManagement

  11. 📢 Don't miss runZero's Rob King on the latest episode of the Nexus podcast.

    Rob and host Michael Mimoso discuss the challenges of protecting #OT environments and why traditional mitigations and tools often fall short in converged networks.

    🎧 Listen today: runzero.com/resources/ot-asset

    #OTsecurity #ITOTConvergence #ExposureManagement

  12. Exposure Management Platforms Face Validation Test

    Are you tired of filling dashboards with green and closing hundreds of tickets, only to wonder if your organization is truly safer? The harsh reality is that most exposure management platforms fall short in connecting remediation to real risk reduction.

    osintsights.com/exposure-manag

    #ExposureManagement #VulnerabilityManagement #Cves #RiskReduction #Remediation

  13. 💽 As data centers become Critical Information Infrastructure, cyber insurance is no longer optional—it’s essential.

    To meet stricter underwriting requirements, operators need more than vulnerability lists. They need audit-ready proof of security controls.

    This checklist shows how to combine visibility, #ExposureManagement, and #NetworkSegmentation to turn renewals into a strategic advantage.

    📋 View here: claroty.com/resources/datashee

  14. 💽 As data centers become Critical Information Infrastructure, cyber insurance is no longer optional—it’s essential.

    To meet stricter underwriting requirements, operators need more than vulnerability lists. They need audit-ready proof of security controls.

    This checklist shows how to combine visibility, #ExposureManagement, and #NetworkSegmentation to turn renewals into a strategic advantage.

    📋 View here: claroty.com/resources/datashee

  15. 🚰 Water and wastewater utilities depend on complex cyber-physical systems to deliver essential services, but traditional IT-centric security approaches don’t address the unique risks in these environments.

    Discover how CPS Exposure Management helps utilities gain visibility into assets, prioritize risk based on operational impact, and strengthen resilience across #water and #wastewater systems.

    📄 Read here: claroty.com/resources/white-pa

    #ExposureManagement #WaterSecurity #CriticalInfrastructure #OTSecurity #CyberPhysicalSystems

  16. 🚰 Water and wastewater utilities depend on complex cyber-physical systems to deliver essential services, but traditional IT-centric security approaches don’t address the unique risks in these environments.

    Discover how CPS Exposure Management helps utilities gain visibility into assets, prioritize risk based on operational impact, and strengthen resilience across #water and #wastewater systems.

    📄 Read here: claroty.com/resources/white-pa

    #ExposureManagement #WaterSecurity #CriticalInfrastructure #OTSecurity #CyberPhysicalSystems

  17. Liat Hayun, SVP Product Management at Tenable, on ownership and exposure:
    Remove “someone should fix this.”

    Adopt “I am the only one who will fix this.”
    “A vulnerability in a vacuum is just a line of code.”

    Security teams are drowning in signals. Context defines actionability.

    Read: technadu.com/from-national-sec

    #WomenInCyber #ExposureManagement #SecurityLeadership #LeadHerInSecurity #Tenable

  18. Liat Hayun, SVP Product Management at Tenable, on ownership and exposure:
    Remove “someone should fix this.”

    Adopt “I am the only one who will fix this.”
    “A vulnerability in a vacuum is just a line of code.”

    Security teams are drowning in signals. Context defines actionability.

    Read: technadu.com/from-national-sec

    #WomenInCyber #ExposureManagement #SecurityLeadership #LeadHerInSecurity #Tenable

  19. Liat Hayun, SVP Product Management at Tenable, on ownership and exposure:
    Remove “someone should fix this.”

    Adopt “I am the only one who will fix this.”
    “A vulnerability in a vacuum is just a line of code.”

    Security teams are drowning in signals. Context defines actionability.

    Read: technadu.com/from-national-sec

    #WomenInCyber #ExposureManagement #SecurityLeadership #LeadHerInSecurity #Tenable

  20. Liat Hayun, SVP Product Management at Tenable, on ownership and exposure:
    Remove “someone should fix this.”

    Adopt “I am the only one who will fix this.”
    “A vulnerability in a vacuum is just a line of code.”

    Security teams are drowning in signals. Context defines actionability.

    Read: technadu.com/from-national-sec

    #WomenInCyber #ExposureManagement #SecurityLeadership #LeadHerInSecurity #Tenable

  21. Tenable’s new insights show a growing AI exposure gap as organizations adopt AI faster than they can secure it. While many align with frameworks, fewer encrypt data or run AI-specific tests. With AI expanding across multi-cloud and hybrid environments, visibility and identity security matter more than ever.
    How is your team approaching AI risk?
    Follow for more updates.

    #AIsecurity #CloudSecurity #ExposureManagement #AIGovernance #CyberRisk #AIAdoption

  22. Tenable’s new insights show a growing AI exposure gap as organizations adopt AI faster than they can secure it. While many align with frameworks, fewer encrypt data or run AI-specific tests. With AI expanding across multi-cloud and hybrid environments, visibility and identity security matter more than ever.
    How is your team approaching AI risk?
    Follow for more updates.

    #AIsecurity #CloudSecurity #ExposureManagement #AIGovernance #CyberRisk #AIAdoption

  23. Tenable’s new insights show a growing AI exposure gap as organizations adopt AI faster than they can secure it. While many align with frameworks, fewer encrypt data or run AI-specific tests. With AI expanding across multi-cloud and hybrid environments, visibility and identity security matter more than ever.
    How is your team approaching AI risk?
    Follow for more updates.

    #AIsecurity #CloudSecurity #ExposureManagement #AIGovernance #CyberRisk #AIAdoption

  24. Traditional security tools struggle to address the complexities of today’s connected care environments. Claroty xDome Exposure Management offers a more effective approach to securing medical devices and #OT/#IoT systems.

    📄 Learn more: claroty.com/resources/datashee

    #HealthcareSecurity #ExposureManagement #Claroty

  25. Traditional security tools struggle to address the complexities of today’s connected care environments. Claroty xDome Exposure Management offers a more effective approach to securing medical devices and #OT/#IoT systems.

    📄 Learn more: claroty.com/resources/datashee

    #HealthcareSecurity #ExposureManagement #Claroty

  26. 🏭 Discover how to reduce cyber risk across your #OT network with Claroty xDome. This on-demand webinar walks you through #ExposureManagement, risk prioritization, and threat mitigation. ▶️ Watch anytime: claroty.com/resources/webinars

  27. 🏭 Discover how to reduce cyber risk across your #OT network with Claroty xDome. This on-demand webinar walks you through #ExposureManagement, risk prioritization, and threat mitigation. ▶️ Watch anytime: claroty.com/resources/webinars

  28. In this interaction, Ryan Knisley, Chief Product Strategist at Axonius, shares the company’s product roadmap, CISO challenges, and how field insights shape solutions.

    It’s about giving security and IT teams the one thing they need most under pressure: ground truth they can build on.

    Knisley emphasizes that the organizations that are keeping pace with evolving threats are the ones with the most accurate, complete, and current understanding of their environment.

    Knisley raised critical questions about visibility in security:

    ✖️Will this new capability improve decision-making, or just create new decisions to manage?
    ✖️You can’t prioritize risk on identities you don’t know are active.
    ✖️Real integration means the platform consolidates fragmented data.

    Knisley outlines how CISOs must translate security into a language that is understandable and demonstrates a return on investment.

    🔗 Full interview: technadu.com/wrong-data-wrong-

    #Cybersecurity #AIinSecurity #ExposureManagement #ZeroTrust #CISO #AssetIntelligence #RiskManagement #CyberResilience

  29. In this interaction, Ryan Knisley, Chief Product Strategist at Axonius, shares the company’s product roadmap, CISO challenges, and how field insights shape solutions.

    It’s about giving security and IT teams the one thing they need most under pressure: ground truth they can build on.

    Knisley emphasizes that the organizations that are keeping pace with evolving threats are the ones with the most accurate, complete, and current understanding of their environment.

    Knisley raised critical questions about visibility in security:

    ✖️Will this new capability improve decision-making, or just create new decisions to manage?
    ✖️You can’t prioritize risk on identities you don’t know are active.
    ✖️Real integration means the platform consolidates fragmented data.

    Knisley outlines how CISOs must translate security into a language that is understandable and demonstrates a return on investment.

    🔗 Full interview: technadu.com/wrong-data-wrong-

    #Cybersecurity #AIinSecurity #ExposureManagement #ZeroTrust #CISO #AssetIntelligence #RiskManagement #CyberResilience

  30. In this interaction, Ryan Knisley, Chief Product Strategist at Axonius, shares the company’s product roadmap, CISO challenges, and how field insights shape solutions.

    It’s about giving security and IT teams the one thing they need most under pressure: ground truth they can build on.

    Knisley emphasizes that the organizations that are keeping pace with evolving threats are the ones with the most accurate, complete, and current understanding of their environment.

    Knisley raised critical questions about visibility in security:

    ✖️Will this new capability improve decision-making, or just create new decisions to manage?
    ✖️You can’t prioritize risk on identities you don’t know are active.
    ✖️Real integration means the platform consolidates fragmented data.

    Knisley outlines how CISOs must translate security into a language that is understandable and demonstrates a return on investment.

    🔗 Full interview: technadu.com/wrong-data-wrong-

    #Cybersecurity #AIinSecurity #ExposureManagement #ZeroTrust #CISO #AssetIntelligence #RiskManagement #CyberResilience

  31. Alex Spivakovsky of Pentera: “Most breaches don’t hinge on zero-days; hackers rely on misconfigurations, over-permissioned identities, and process gaps.”

    Read how exposure management and continuous validation redefine cyber resilience 👇
    technadu.com/building-cyber-re

    #Pentera #CyberSecurity #ExposureManagement #AdversarialTesting

  32. Alex Spivakovsky of Pentera: “Most breaches don’t hinge on zero-days; hackers rely on misconfigurations, over-permissioned identities, and process gaps.”

    Read how exposure management and continuous validation redefine cyber resilience 👇
    technadu.com/building-cyber-re

    #Pentera #CyberSecurity #ExposureManagement #AdversarialTesting

  33. Alex Spivakovsky of Pentera: “Most breaches don’t hinge on zero-days; hackers rely on misconfigurations, over-permissioned identities, and process gaps.”

    Read how exposure management and continuous validation redefine cyber resilience 👇
    technadu.com/building-cyber-re

    #Pentera #CyberSecurity #ExposureManagement #AdversarialTesting

  34. Long time no post - here's a short tutorial on using theHarvester as a lightweight, continuous attack surface monitoring system to detect new exposures. technicalciso.com/harvest-seas #OSINT #ThreatHunting #ExposureManagement

  35. Long time no post - here's a short tutorial on using theHarvester as a lightweight, continuous attack surface monitoring system to detect new exposures. technicalciso.com/harvest-seas #OSINT #ThreatHunting #ExposureManagement

  36. With Claroty xDome's Exposure Scenarios, security teams get an attacker's view of their environment, including devices with a combo of exposures and actionable recommendations to protect your organization. Learn more: claroty.com/blog/think-like-an

    #ExposureManagement #RiskReduction

  37. With Claroty xDome's Exposure Scenarios, security teams get an attacker's view of their environment, including devices with a combo of exposures and actionable recommendations to protect your organization. Learn more: claroty.com/blog/think-like-an

    #ExposureManagement #RiskReduction

  38. 🧠 EDR Tools Are Not Exposure Management Solutions.

    They’re reactive, not proactive - designed to respond after compromise, not prevent it.
    EDR misses entire classes of assets like routers, IoT, and third-party systems.

    💬 What’s your approach to achieving full attack surface visibility?

    Follow @technadu for more discussions on vulnerability intelligence and exposure reduction.

    #CyberSecurity #ExposureManagement #EDR #Tenable #InfoSec #ThreatDetection #VulnerabilityIntelligence #TechNadu

  39. 🧠 EDR Tools Are Not Exposure Management Solutions.

    They’re reactive, not proactive - designed to respond after compromise, not prevent it.
    EDR misses entire classes of assets like routers, IoT, and third-party systems.

    💬 What’s your approach to achieving full attack surface visibility?

    Follow @technadu for more discussions on vulnerability intelligence and exposure reduction.

    #CyberSecurity #ExposureManagement #EDR #Tenable #InfoSec #ThreatDetection #VulnerabilityIntelligence #TechNadu

  40. 🧠 EDR Tools Are Not Exposure Management Solutions.

    They’re reactive, not proactive - designed to respond after compromise, not prevent it.
    EDR misses entire classes of assets like routers, IoT, and third-party systems.

    💬 What’s your approach to achieving full attack surface visibility?

    Follow @technadu for more discussions on vulnerability intelligence and exposure reduction.

    #CyberSecurity #ExposureManagement #EDR #Tenable #InfoSec #ThreatDetection #VulnerabilityIntelligence #TechNadu

  41. 💡 New on Nexus from George V. Hulme: Converged #IT/#OT operations often run into decision-making gridlock when it comes to #ExposureManagement and vulnerability management of OT. Without clearly established governance, organizations are experiencing prolonged periods of time exposed to attacks. Read here: nexusconnect.io/articles/bridg

  42. 💡 New on Nexus from George V. Hulme: Converged #IT/#OT operations often run into decision-making gridlock when it comes to #ExposureManagement and vulnerability management of OT. Without clearly established governance, organizations are experiencing prolonged periods of time exposed to attacks. Read here: nexusconnect.io/articles/bridg

  43. Exposure management programs can create meaningful change to the risk posture of your organization. This isn’t just creating an impact for security metrics–this is reducing the likelihood of your company losing revenue, reputation, and, in some cases, real lives.

    Use these 5️⃣ steps to effectively manage exposures and create an automated system for ongoing exposure management: claroty.com/resources/white-pa

    #ExposureManagement

  44. Exposure management programs can create meaningful change to the risk posture of your organization. This isn’t just creating an impact for security metrics–this is reducing the likelihood of your company losing revenue, reputation, and, in some cases, real lives.

    Use these 5️⃣ steps to effectively manage exposures and create an automated system for ongoing exposure management: claroty.com/resources/white-pa

    #ExposureManagement