19 NOVEMBER 2019 | GCN, SRINIVAS MUKKAMALA
RiskSense analysis shows that over two-thirds of U.S. states have suffered a ransomware attack in the past 18 months, making it more important than ever to understand the factors driving this spike in government-focused ransomware.
Read Full Article
11 NOVEMBER 2019 | SECURITYWEEK, EDUARD KOVACS
Recent attacks exploiting the BlueKeep vulnerability to deliver cryptocurrency mining malware caused some systems to crash due to the Meltdown patch being deployed on targeted machines.
Read Full Article
11 NOVEMBER 2019 | ZDNET, CATALIN CIMPANU
Currently, the only public proof-of-concept exploit code for the infamous BlueKeep vulnerability is a module for the Metasploit penetration testing framework, put together from proof-of-concept code donated by RiskSense security researcher Sean Dillon.
Read Full Article
07 OCTOBER 2019 | INFOSECURITY, CALEB HIGHTOWER
While the National Vulnerability Database (NVD) is a valuable source of vulnerability information, it only represents one piece of the puzzle and should not be used as the single source of truth when evaluating an organization’s security and risk posture.
Read Full Article
07 OCTOBER 2019 | INFORISK TODAY, SUPARNA GOSWAMI
New Report Asserts That Using CVSS Scores Alone Is Inadequate
Read Full Article
01 OCTOBER 2019 | SECURITYWEEK, BARAK PERELMAN
In the decade since the Stuxnet worm was discovered, multiple attacks that have been launched against operational technology (OT) networks, and a disturbing trend has emerged. Industrial attacks are being recycled.
Read Full Article
30 SEPTEMBER 2019 | INFOSECURITY, DANNY BRADBURY
The Enterprise Ransomware report from pen testing and vulnerability management company RiskSense warns that many of the vulnerabilities that ransomware exploits are far from new.
Read Full Article
26 SEPTEMBER 2019 | DARK READING
Ransomware attacks are taking advantage of vulnerabilities that might have gone unnoticed by security teams, with more than half of exploited vulnerabilities having a CVSS v2 score less than 8.
Read Full Article
26 SEPTEMBER 2019 | CISOMAG
RiskSense, a cyber risk management company, recently revealed the list of topmost vulnerabilities used across multiple ransomware attacks targeting public and private enterprises.
Read Full Article
26 SEPTEMBER 2019 | SECURITYNOW, LARRY LOEB
RiskSense has announced the results of the RiskSense Spotlight Report for Enterprise Ransomware. The report analyzes the most common vulnerabilities used across multiple families of ransomware targeting enterprises and government organizations.
Read Full Article
25 SEPTEMBER 2019 | HELP NET SECURITY
Almost 65% of top vulnerabilities used in enterprise ransomware attacks targeted high-value assets like servers, close to 55% had CVSS v2 scores lower than 8, nearly 35% were old (from 2015 or earlier), and the vulnerabilities used in WannaCry are still being used today, according to RiskSense.
Read Full Article
24 SEPTEMBER 2019 | NEXTGOV, FRANK KONKEL
Ransomware attacks cost enterprise organizations across the country $8 billion in 2018, and a report released Tuesday digs into why these specific types of cyberattacks are so successful.
Read Full Article
24 SEPTEMBER 2019 | TECHREPUBLIC, JAMES SANDERS
Ransomware attacks are burgeoning again—in terms of overall economic impact, according to the Enterprise Ransomware report published by vulnerability management firm RiskSense on Tuesday.
Read Full Article
24 SEPTEMBER 2019 | BETANEWS, Ian Barker
A new report from vulnerability management company RiskSense looks at the most common vulnerabilities used across multiple families of ransomware that target enterprises and government organizations.
Read Full Article
16 SEPTEMBER 2019 | SILICONINDIA
RiskSense named one of the 20 Most Promising Technology companies founded and managed by Indians in the U.S., as identified by a distinguished panel of accomplished Indian business executives, VCs, analysts, entrepreneurs, and Siliconindia’s editorial board.
Read Full Article
21 AUGUST 2019 | ITSPmagazine, SEAN MARTIN
Interview with Sean Dillon and Nate Caroe at Black Hat 2019 on BlueKeep, cool vulnerability research, and open-source tool development
Read Full Article
Chuck Harold from SecurityGuyTV.com interviews RiskSense CEO and Co-founder Srinivas Mukkamala at Black Hat 2019
Read Full Article
18 JULY 2019 | DARK READING, KELLY JACKSON HIGGINS
Koadic toolkit gets upgrades to help professional penetration testers find holes before the bad guys do
Read Full Article
12 JUNE 2019 | DARK READING, SRINIVAS MUKKAMALA
Advances in data science are making it possible to shift vulnerability management from a reactive to a proactive discipline.
Read Full Article
05 April 2019 | Gus Fritschie
With cybersecurity attack surfaces growing and the financial and legal consequences of a breach increasing, organizations are re-considering their cybersecurity strategy, looking to have business case justification help guide them. This article explores how cyber risk management offers significant strategic advantages and represents compelling business case value.
Read Full Article
28 March 2019 | CSO MAGAZINE, JON OLTSIK
Prioritizing fixes, workflows, and timely patching are just some of the challenges organizations face, but advanced data analytics may offer some help.
Read Full Article
26 MARCH 2019 | CSO MAGAZINE
Pairing artificial intelligence or machine learning with traditional fuzzing techniques creates a powerful tool to find application or system vulnerabilities — for both researchers and cyber criminals.
Read Full Article
31 JANUARY 2019 | AITHORITY
RiskSense, Inc., pioneering risk-based vulnerability prioritization and management, announced that CEO, Srinivas Mukkamala, Ph.D. will present both a solo session and participate in an expert panel at the AIOps Expo on 30-31 January in Ft. Lauderdale, Florida.
Read Full Article
25 JANUARY 2019 | TAMMY WAITT
RiskSense®, Platinum Award Winner in the 2018 ‘ASTORS’ Homeland Security Awards Program for Best Cyber Risk Management, has launched a new version of the RiskSense platform that closes the gap between security and IT that often prevents vulnerabilities from being remediated in a timely fashion.
Read Full Article
