Prioritizing patching: A deep dive into frameworks and tools – Part 2: Alternative frameworks
In the second of a two-part series on tools and frameworks designed to help with remediation prioritization, we explore some alternatives to CVSS
Similar Posts
Four Arrested in £440M Cyber Attack on Marks & Spencer, Co-op, and Harrods
Bys sThe U.K. National Crime Agency (NCA) on Thursday announced that four people have been arrested in connection with cyber attacks targeting major retailers Marks & Spencer, Co-op, and Harrods. The arrested individuals include two men aged 19, a third aged 17, and a 20-year-old woman. They were apprehended in the West Midlands and London on…
Cyberattack puts healthcare on hold for hundreds in St. Louis metro
Bys sRussell Kinsaul reports on what sounds like a seriously impactful ransomware attack: Sometime in April, Esse Health was hit by a cyberattack, locking up parts of the health group’s computer network and putting healthcare on hold for many patients. Cindy Wagner needs to switch to a new doctor but her records can’t be transferred because they’re locked up…
MNGI Digestive Health settles class action lawsuit stemming from BlackCat attack
Bys sMNGI Digestive Health, a multi-location gastroenterology practice in Minnesota, received preliminary court approval on May 7 to settle a class action lawsuit stemming from an August 2023 cyberattack. The incident was first reported on DataBreaches on September 25, 2023, but had been discovered by MNGI on August 25, 2023, after the BlackCat (AlphV) ransomware gang…
RESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell Features
Bys sThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has shed light on a new malware called RESURGE that has been deployed as part of exploitation activity targeting a now-patched security flaw in Ivanti Connect Secure (ICS) appliances. “RESURGE contains capabilities of the SPAWNCHIMERA malware variant, including surviving reboots; however, RESURGE contains distinctive commands that
New Android Trojan “Datzbro” Tricking Elderly with AI-Generated Facebook Travel Events
Bys sCybersecurity researchers have flagged a previously undocumented Android banking trojan called Datzbro that can conduct device takeover (DTO) attacks and perform fraudulent transactions by preying on the elderly. Dutch mobile security company ThreatFabric said it discovered the campaign in August 2025 after users in Australia reported scammers managing Facebook groups promoting “active senior
Leveraging Credentials As Unique Identifiers: A Pragmatic Approach To NHI Inventories
Bys sIdentity-based attacks are on the rise. Attacks in which malicious actors assume the identity of an entity to easily gain access to resources and sensitive data have been increasing in number and frequency over the last few years. Some recent reports estimate that 83% of attacks involve compromised secrets. According to reports such as the…