Cisco to acquire Kenna Security to help customers improve their security posture

Kenna’s risk-based vulnerability management technology enables organizations to work cross-functionally to rapidly identify, prioritize and remediate cyber risks. With this acquisition, Cisco will transform the way security and IT teams collaborate to … Continue reading Cisco to acquire Kenna Security to help customers improve their security posture

When exploit code precedes a patch, attackers gain a massive head start

Cybersecurity researchers that publicize exploit code used in cyberattacks are giving a clear and unequivocal advantage to attackers, new research conducted by Kenna Security and Cyentia Institute has found. “This data-driven research, built over the c… Continue reading When exploit code precedes a patch, attackers gain a massive head start

Risk-based vulnerability management has produced demonstrable results

Several years ago, risk-based cybersecurity was a largely untested and hotly debated topic. But the tests have since been administered and the debate largely settled: risk-based cybersecurity produces proven results. The data shows that risk-based vuln… Continue reading Risk-based vulnerability management has produced demonstrable results

Having a cybersecurity training program in place isn’t enough to ensure cyber safety

With cyberattacks increasing dramatically after the pandemic, TalentLMS and Kenna Security teamed up to gauge employees’ awareness and knowledge of cybersecurity risks. While 59% of employees received cybersecurity training from their companies in resp… Continue reading Having a cybersecurity training program in place isn’t enough to ensure cyber safety

The effectiveness of vulnerability disclosure and exploit development

New research into what happens after a new software vulnerability is discovered provides an unprecedented window into the outcomes and effectiveness of responsible vulnerability disclosure and exploit development. The analysis of 473 publicly exploited… Continue reading The effectiveness of vulnerability disclosure and exploit development

Kenna Security Delivers Risk-Based Vulnerability Management for New VMware Carbon Black Cloud Workload Solution

SAN FRANCISCO, Calif., Sept. 29, 2020 — Kenna Security, the enterprise leader in risk-based vulnerability management, and VMware Carbon Black, a leader in cloud-native next-generation endpoint security, are partnering to power the vulnerability assessm… Continue reading Kenna Security Delivers Risk-Based Vulnerability Management for New VMware Carbon Black Cloud Workload Solution

Kenna Security provides a faster and more accurate way to gauge the risk of specific vulnerabilities

Kenna Security, the enterprise leader in risk-based vulnerability management, announces the Exploit Prediction Scoring System (EPSS), a free, open model that uses 16 variables to predict the likelihood of a vulnerability being exploited in the wild in … Continue reading Kenna Security provides a faster and more accurate way to gauge the risk of specific vulnerabilities

Kenna Security raises $48M to accelerate its international expansion and drive further innovation

Kenna Security, the enterprise leader in risk-based vulnerability management, announced a $48 million series D funding round that adds Sorenson Capital and Citi Ventures as new investors. Ken Elefant, Managing Director of Sorenson Capital will join Ken… Continue reading Kenna Security raises $48M to accelerate its international expansion and drive further innovation

Should enterprises delay efforts to remediate most vulnerabilities?

Companies today appear to have the resources needed to address all of their high-risk vulnerabilities. The research demonstrates that companies are getting smarter in how they protect themselves from today’s cyber threats, improving operational efficie… Continue reading Should enterprises delay efforts to remediate most vulnerabilities?

Equifax: A study in accountability but not authority responsibility

Like most of the security community, I have spent hours digesting the recently released U.S. House of Representatives Committee on Oversight and Government Reform report on the Equifax breach. I read the report with a mix of heartfelt empathy and fear-… Continue reading Equifax: A study in accountability but not authority responsibility