Explore

Higher Education Institutions Enhance Cybersecurity with Continuous Threat Exposure Management

Higher Education Institutions Enhance Cybersecurity with Continuous Threat Exposure Management

Higher education institutions are increasingly adopting Continuous Threat Exposure Management (CTEM) to bolster their cybersecurity frameworks. CTEM is a proactive security process that focuses on identifying and prioritizing vulnerabilities within an organization's IT infrastructure. This approach is particularly relevant for universities, which often have decentralized IT systems due to the autonomy of different colleges and departments. The CTEM framework involves a five-stage process: scoping, discovery, prioritization, validation, and mobilization. This method allows institutions to continuously monitor and manage risks, ensuring that high-risk vulnerabilities are addressed promptly. The integration of breach and attack simulations further aids in identifying potential gaps that could be exploited by attackers, thereby enhancing the overall security posture of these institutions.

Tycoon 2FA Phishing Kit Loses Dominance Amid Surge in Cyber Attacks

Tycoon 2FA Phishing Kit Loses Dominance Amid Surge in Cyber Attacks

The Tycoon 2FA phishing kit, once dominant in the phishing-as-a-service (PhaaS) market, has lost its leading position following a surge in cyber attacks. Despite a coordinated effort to disrupt its operations, threat actors have migrated to other platforms like Mamba 2FA and EvilProxy, reusing Tycoon 2FA's tools. The overall number of phishing attacks has increased, with Tycoon 2FA now trailing behind other platforms. Barracuda Networks reports that the ecosystem has diversified, with threat actors modifying and redeploying Tycoon 2FA's code.

Half of Internet-Facing FTP Servers Lack Encryption, Exposing Security Risks

Half of Internet-Facing FTP Servers Lack Encryption, Exposing Security Risks

Half of Internet-Facing FTP Servers Lack Encryption, Exposing Security Risks

Asante Babers Consulting Warns of Rising Cybersecurity Threats Amid Digital Transformation

Asante Babers Consulting Warns of Rising Cybersecurity Threats Amid Digital Transformation

Asante Babers Consulting Warns of Rising Cybersecurity Threats Amid Digital Transformation

Vercel Security Breach Prompts Urgent Secrets Rotation for Customers

Vercel Security Breach Prompts Urgent Secrets Rotation for Customers

Vercel Security Breach Prompts Urgent Secrets Rotation for Customers

NIST Halts Rating of Non-Priority Flaws Amid Rising Submission Volumes

NIST Halts Rating of Non-Priority Flaws Amid Rising Submission Volumes

The National Institute of Standards and Technology (NIST) has announced it will cease assigning severity scores to lower-priority vulnerabilities due to an overwhelming increase in submission volumes. Starting April 15, NIST will focus on analyzing and providing details for security issues that pose significant risks, such as those in the CISA's Known Exploited Vulnerabilities catalog or affecting U.S. federal government software. The National Vulnerability Database (NVD) will continue to list all submitted vulnerabilities, but those deemed low priority will only have severity ratings from the CVE Numbering Authority that evaluated them. This decision comes as the number of submissions has grown by 263%, with NIST enriching 42,000 CVEs in 2025 alone.

Vercel Confirms Security Breach, Customer Data Compromised

Vercel Confirms Security Breach, Customer Data Compromised

Vercel Confirms Security Breach, Customer Data Compromised

Continuous Threat Exposure Management Enhances Cybersecurity in Higher Education

Continuous Threat Exposure Management Enhances Cybersecurity in Higher Education

Continuous Threat Exposure Management Enhances Cybersecurity in Higher Education

Tycoon 2FA Phishing Platform Loses Dominance Amid Rising Attacks

Tycoon 2FA Phishing Platform Loses Dominance Amid Rising Attacks

Tycoon 2FA Phishing Platform Loses Dominance Amid Rising Attacks

Continuous Threat Exposure Management Enhances Cybersecurity in Higher Education

Continuous Threat Exposure Management Enhances Cybersecurity in Higher Education

Colleges and universities are increasingly adopting a cybersecurity approach known as Continuous Threat Exposure Management (CTEM) to address vulnerabilities in their systems. This framework helps security teams in higher education to proactively manage risks by focusing on asset visibility and prioritizing vulnerabilities. Traditional vulnerability management often falls short due to the decentralized nature of IT functions across different departments within universities. CTEM, however, offers a structured process involving scoping, discovery, prioritization, validation, and mobilization to improve cybersecurity measures. The approach is particularly relevant as higher education institutions face complex challenges such as open networks and the use of personal devices by students and staff.

Hackers Exploit Unpatched Windows Flaws to Breach Organizations

Hackers Exploit Unpatched Windows Flaws to Breach Organizations

Hackers Exploit Unpatched Windows Flaws to Breach Organizations

NIST Updates National Vulnerability Database to Prioritize Critical Software CVEs

NIST Updates National Vulnerability Database to Prioritize Critical Software CVEs

The National Institute of Standards and Technology (NIST) has announced changes to its National Vulnerability Database (NVD) operations to better manage the increasing volume of new Common Vulnerabilities and Exposures (CVEs). The update involves adopting a risk-based model for enriching CVE entries, focusing on those added to the Cybersecurity and Infrastructure Security Agency's (CISA) Known Exploited Vulnerabilities (KEV) catalog and critical software used by federal agencies. This change is driven by a surge in CVE submissions, which increased by 263% between 2020 and 2025. NIST aims to address the backlog of unenriched CVEs by prioritizing those that pose systemic risks.