NUCLEUS BLOG.
Week of October 2, 2023 CISA KEV Breakdown
Week of October 2: 7 New Vulns | Google, Arm, Microsoft, JetBrains, Apple, Atlassian, Progress In this CISA KEV Breakdown, we cover the additions of the
A History in Open Vulnerability Management Standards, and Initiatives
A History In Open Vulnerability Management Standards and Initiatives In the landscape of cybersecurity, vulnerability management stands as a critical line of defense, evolving to
October 2, 2023 CISA KEV Breakdown | Google, Red Hat
October 2: 2 New Vulns | CVE-2018-14667, CVE-2023-5217 In this CISA KEV Breakdown, we cover the Red Hat addition from the 28th of September as well
Nucleus Product Update 3.8
Better team and finding management, plus a Bulk Data Export release preview! Welcome to the Nucleus Product Update 3.8. It’s September, the official starting month
September 22, 2023 CISA KEV Breakdown | Trend Micro
September 22: 1 New Vuln | Trend Micro In this CISA KEV Breakdown, a vulnerability in the Worry-Free suite of services offered by Trend Micro was
September 12-19, 2023 CISA KEV Breakdown | 15 New Vulns
With these 15 new additions to CISA KEV, the catalog has officially grown to cover more than 1,000 vulnerabilities – a feat that we’ve been
September 11, 2023 CISA KEV Breakdown | Apple
September 11: 2 New Vulns | CVE-2023-41061, CVE-2023-41064 In this CISA KEV Breakdown, Apple discovers a 0-day exploit-chain resulting in RCE with the help of Citizen
September 6, 2023 CISA KEV Breakdown | Apache
September 6: 1 New Vuln | CVE-2023-33246 In this CISA KEV Breakdown, a reawakened botnet campaign targets the use of Apache’s RocketMQ in activity spotted by
Understanding and Acting on CISA BOD 23-02
On June 13th, the Cybersecurity and Infrastructure Security Agency (CISA) released another Binding Operational Directive (BOD), CISA BOD 23-02, that will shake the feathers within
August 24, 2023 CISA KEV Breakdown | Openfire, RARLAB
August 24: 2 New Vulns | CVE-2023-32315, CVE-2023-38831 In this CISA KEV Breakdown, a 0-day in WinRAR is used to target traders and yet another well-known
August 22, 2023 CISA KEV Breakdown | Ivanti, Veeam
August 22: 2 New Vulns | CVE-2023-27532, CVE-2023-38035 In this CISA KEV Breakdown, an Ivanti Sentry bypass vulnerability finds a home in the KEV after confirmation
August 21, 2023 CISA KEV Breakdown | Adobe
August 21: 1 New Vuln | CVE-2023-26359 In this CISA KEV Breakdown, one vulnerability in Adobe ColdFusion likely part of an exploit-chain alongside CVE-2023-26360 which was
Nucleus Product Update 3.7
SNow App 1.2.0, Custom File Schema upgrade, and more asset group restrictions incoming. Welcome to the Nucleus Product Update 3.7. This product update comes just
August 9 & 16, 2023 CISA KEV Breakdown | Microsoft, Citrix
August 9 & 16: 2 New Vulns | CVE-2023-38180, CVE-2023-24489 In this CISA KEV Breakdown, we cover the additions from August 9 as well as August
Black Hat 2023 Retrospective: AI, Keeping Focus, Hackers, and More AI
Black Hat 2023 Retrospective: AI, Keeping Focus, Hackers, and More AI Black Hat USA 2023 came and went, and if you didn’t notice one subject