Mitre by mitre: How North Macedonian nuns are stitching priceless holy headwear for bishops worldwide https://www.byteseu.com/1178215/ #mitre #NorthMacedonia

Submit your new vulnerability discovery here and we will assign a CVE in no time. https://vuldb.com/?id.add #vuldb #cna #cve #mitre #nvd

MITRE ATT&CK & CISA CVE Mapping
I have a connection established with CISA's CVE JSON and MITRE ATT&CK's TAXII API. But how do I map them together?
https://wadebach.blackcatwhitehatsecurity.com/blog.cfm#cvemapping
#Blog #MITRE #ATTACK #CISA #CVE #Mapping #programming

You want to publish a new vulnerability? Just submit and we will handle your CVE assignment in no time. https://vuldb.com/?id.add #vuldb #cna #cve #mitre #nvd

@soatok may I directly ask a question?

During an interview I was asked about #MITRE ATT&CK. I was aware of it but never considered it of actual utility. Do people use it actually?

Thanks

European Vulnerability Database goes live, but who benefits? https://www.helpnetsecurity.com/2025/05/14/enisa-european-vulnerability-database-euvd/ #ContrastSecurity #LegitSecurity #NetRise #Europe #ENISA #MITRE #News #EU

EU Vulnerability Database Officially Launches Amid CVE Program Concerns https://thecyberexpress.com/eu-vulnerability-database-officially-launches-amid-cve-program-concerns/ #TheCyberExpressNews #TheCyberExpress #Vulnerabilities #FirewallDaily #cybersecurity #CyberNews #ENISA #MITRE #CISA #CVE #NVD #EU

You have discovered a new vulnerability? Submit it here and we will assign a CVE in no time. https://vuldb.com/?id.add #vuldb #cna #cve #mitre #nvd

Updates from the #CVEFoundation

Representatives from the CVE Foundation met with representatives from CISA on 4/24/2025. The talks were positive and encouraging. All parties wish to keep the conversation and progress moving forward.

https://www.thecvefoundation.org/news

Neu im Research-Blog: Rolling in the Deep (Web) - Lazarus Tsunami

Bei der Unterstützung eines Kunden konnte HiSolutions umfangreiche Teile des #Malware-Frameworks #Tsunami sicherstellen, analysieren und damit den Angriffsweg der laufenden „Contagious Interview“-Kampagne der Angreifergruppe #Lazarus rekonstruieren.

Für Betroffene enthält unser Artikel alle technischen Details inklusive YARA-Regeln und IoC zur Entdeckung einer Infektion sowie einer Abbildung der genutzten Tools und Techniken auf die #MITRE ATT&CK Matrix.

Zum Blog-Beitrag: https://research.hisolutions.com/2025/04/rolling-in-the-deepweb-lazarus-tsunami/

#CVE fallout: The splintering of the standard #vulnerability tracking system has begun
Earlier this week, CVE program faced doom as the #US #government discontinued funding for #MITRE, the non-profit that operates the program. Uncle Sam U-turned at the very last minute.
Meanwhile, the #EU is rolling its own. #EuropeanUnion Agency for #Cybersecurity (#ENISA) developed and maintains this alternative, which is known as the #EUVD, or the European Union Vulnerability Database.
https://www.theregister.com/2025/04/18/splintering_cve_bug_tracking/

As part of the 2022 EU NIS2 directive, the EU agency for cybersecurity (ENISA) has been setting up the EU Vulnerability Database (EUVD) at https://euvd.enisa.europa.eu/ (now in beta).

Started as a collaboration with MITRE's authoritative CVE database, EUVD may now end up replacing it, as US funding for the CVE database has stopped.

The US Cybersecurity and Infrastructure Security Agency (CISA) has moved to secure continued operations of the Common Vulnerabilities and Exposures (CVE) programme by extending its contract with MITRE, preventing a potentially disruptive lapse in critical cybersecurity services.

https://www.computing.co.uk/news/2025/security/cisa-extends-mitre-s-bug-tracking-funding-for-now

CVE Database Saved: Critical Cybersecurity Resource Gets 11-Month Extension

#CVE #CyberSecurity #CISA #VulnerabilityManagement #InfoSec #CyberThreats #MITRE #CVEExtension #CyberDefense #TechNews #CVEProgram #CWE #SecurityUpdate #CyberCommunity #DataProtection

Read Full Article :-
https://www.techi.com/us-extrends-support-save-mitre-cve-database/

Nach dem gestrigen Schock und der drohenden CVE-Abschaltung hat die US-Regierung die Finanzierungsvereinbarung mit der #MITRE Corporation im so ziemlich letzten Moment verlängert.

Im Nachgang an den gestrigen Tag ergeben sich durchaus Parallelen zur bisherigen Trump'schen Salamitaktik in Fragen der nationalen Digitalregulierung mit außenpolitischer Relevanz.

Viel deutlicher als gestern konnte der Weckruf für die EU wohl nicht sein, eigene Wege zu finden und zu gehen.

https://www.heise.de/news/Nach-drohendem-CVE-Aus-Schwachstellendatenbank-der-EU-geht-an-den-Start-10354324.html

#CISA's 11-Month extension ensures continuity of #MITRE's CVE Program
https://securityaffairs.com/176608/security/cisas-11-month-extension-ensures-continuity-of-mitres-cve-program.html
#securityaffairs #hacking

#DHS har finansiert #MITRE til nå kutter nå støtten i en etterhvert kjent stil der det ikke kommer noe varsel eller mulighet til å overføre ansvar på en forsvarlig måte. Heldigvis har det allerede vært bekymring rundt den amerikanske finansieringen en stund og #CVE Foundation vil overta. Så noe bra kommer det ut av det men kriminelle har nå et større spillerom inntil arbeidet med klassifisering av sårbarhet er på samme nivå som tidligere.
https://www.digi.no/artikler/ny-stiftelse-vil-overta-det-globale-sarbarhetsregisteret/557922
#norsktut #sikkerhet

#CVE-Aus abgewendet, #Schwachstellendatenbank der #EU geht an den Start

"Entscheidung in letzter Minute - offenbar geht der Vertrag zwischen #CISA und #MITRE in die Verlängerung. Mehrere Initiativen präsentieren derweil Alternativen.

Die US-Cybersicherheitsbehörde CISA hat den Vertrag mit der MITRE Corporation, Betreiberin der CVE-Datenbank, offenbar in allerletzter Sekunde verlängert..."
https://www.heise.de/news/Nach-drohendem-CVE-Aus-Schwachstellendatenbank-der-EU-geht-an-den-Start-10354324.html

The CVE program narrowly avoided shutdown as #CISA stepped in to extend MITRE’s contract.

Read: https://hackread.com/cve-program-online-cisa-temporary-mitre-extension/