http://sei.cmu.edu/feeds/tag/Updates on changes and additions to the SEI Blog for posts matching Vulnerability Mitigationen-usMon, 19 Sep 2022 00:00:00 -0400https://www.sei.cmu.edu/blog/using-alternate-data-streams-in-the-collection-and-exfiltration-of-data/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn this blog post, we describe how attackers obscure their activity via alternate data streams (ADSs) and how to defend against malware attacks that employ ADSs.Dustin Updyke, Molly JaconskiMon, 19 Sep 2022 00:00:00 -0400https://www.sei.cmu.edu/blog/using-alternate-data-streams-in-the-collection-and-exfiltration-of-data/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisVulnerability DiscoveryVulnerability MitigationMalware AnalysisMalwarehttps://www.sei.cmu.edu/blog/how-easy-is-it-to-make-and-detect-a-deepfake/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThe technology underlying the creation and detection of deepfakes and assessment of current and future threat levelsCatherine Bernaciak, Dominic RossMon, 14 Mar 2022 00:00:00 -0400https://www.sei.cmu.edu/blog/how-easy-is-it-to-make-and-detect-a-deepfake/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSecurity VulnerabilitiesVulnerability DiscoveryVulnerability MitigationSecurity-Related RequirementsArtificial Intelligence EngineeringAdvanced Computinghttps://www.sei.cmu.edu/blog/adversarial-ml-threat-matrix-adversarial-tactics-techniques-and-common-knowledge-of-machine-learning/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis SEI Blog post introduces the Adversarial ML Threat Matrix, a list of tactics to exploit machine learning models, and guidance on defense against them.Jonathan SpringThu, 22 Oct 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/adversarial-ml-threat-matrix-adversarial-tactics-techniques-and-common-knowledge-of-machine-learning/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCAutonomy and Counter-Autonomyhttps://www.sei.cmu.edu/blog/security-automation-begins-at-the-source-code/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesHi, this is Vijay Sarvepalli, Information Security Architect in the CERT Division. On what seemed like a normal day at our vulnerability coordination center, one of my colleagues asked me....Vijay SarvepalliWed, 11 Mar 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/security-automation-begins-at-the-source-code/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity VulnerabilitiesVulnerability DiscoveryVulnerability MitigationCERT/CChttps://www.sei.cmu.edu/blog/prioritizing-vulnerability-response-with-a-stakeholder-specific-vulnerability-categorization/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesWe've just released a follow-up paper in our research agenda about prioritizing actions during vulnerability management, Prioritizing Vulnerability Response: A Stakeholder-Specific Vulnerability Categorization....Allen HouseholderThu, 05 Dec 2019 00:00:00 -0500https://www.sei.cmu.edu/blog/prioritizing-vulnerability-response-with-a-stakeholder-specific-vulnerability-categorization/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity VulnerabilitiesVulnerability MitigationCERT/CCSoftware and Information Assurancehttps://www.sei.cmu.edu/blog/vpn-a-gateway-for-vulnerabilities/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVirtual Private Networks (VPNs) are the backbone of today's businesses providing a wide range of entities from remote employees to business partners and...Vijay SarvepalliWed, 13 Nov 2019 00:00:00 -0500https://www.sei.cmu.edu/blog/vpn-a-gateway-for-vulnerabilities/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity VulnerabilitiesVulnerability DiscoveryVulnerability MitigationCERT/CChttps://www.sei.cmu.edu/blog/its-time-to-retire-your-unsupported-things/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updates"If it ain't broke, don't fix it." Why mess with something that already works? This is fair advice with many things in life. But when it comes to software security, it's important to....William DormannWed, 23 Oct 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/its-time-to-retire-your-unsupported-things/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/update-on-the-cert-guide-to-coordinated-vulnerability-disclosure/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIt's been two years since we originally published the CERT Guide to Coordinated Vulnerability Disclosure. In that time, it's influenced both the US Congress and EU Parliament....Allen HouseholderMon, 16 Sep 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/update-on-the-cert-guide-to-coordinated-vulnerability-disclosure/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity VulnerabilitiesVulnerability DiscoveryVulnerability MitigationCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/the-dangers-of-vhd-and-vhdx-files/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesRecently, I gave a presentation at BSidesPGH 2019 called Death By Thumb Drive: File System Fuzzing with CERT BFF....William DormannWed, 04 Sep 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/the-dangers-of-vhd-and-vhdx-files/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity VulnerabilitiesVulnerability DiscoveryVulnerability MitigationCERT/CChttps://www.sei.cmu.edu/blog/life-beyond-microsoft-emet/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesApproximately eight years ago (September 2010), Microsoft released EMET (Enhanced Mitigation Experience Toolkit) 2.0. In the world of software defenders, there was much rejoicing....William DormannWed, 29 Aug 2018 00:00:00 -0400https://www.sei.cmu.edu/blog/life-beyond-microsoft-emet/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CChttps://www.sei.cmu.edu/blog/when-aslr-is-not-really-aslr-the-case-of-incorrect-assumptions-and-bad-defaults/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesAs a vulnerability analyst at the CERT Coordination Center, I am interested not only in software vulnerabilities themselves, but also exploits and exploit mitigations....William DormannFri, 03 Aug 2018 00:00:00 -0400https://www.sei.cmu.edu/blog/when-aslr-is-not-really-aslr-the-case-of-incorrect-assumptions-and-bad-defaults/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/the-cert-guide-to-coordinated-vulnerability-disclosure/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesDiscover the recently released CERT Guide to Coordinated Vulnerability Disclosure in this SEI Blog post.Allen HouseholderTue, 15 Aug 2017 00:00:00 -0400https://www.sei.cmu.edu/blog/the-cert-guide-to-coordinated-vulnerability-disclosure/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity VulnerabilitiesVulnerability DiscoveryVulnerability MitigationCERT/CCCyber MissionsBest Practiceshttps://www.sei.cmu.edu/blog/the-consequences-of-insecure-software-updates/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn this blog post, I discuss the impact of insecure software updates as well as several related topics, including mistakes made by software vendors in their update mechanisms, how to verify the security of a software update, and how vendors can implement secure software updating mechanisms.William DormannFri, 30 Jun 2017 00:00:00 -0400https://www.sei.cmu.edu/blog/the-consequences-of-insecure-software-updates/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/the-twisty-maze-of-getting-microsoft-office-updates/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis SEI Blog post explores the complexities and challenges of managing Microsoft Office updates and provides insights into installation best practices.William DormannThu, 13 Apr 2017 00:00:00 -0400https://www.sei.cmu.edu/blog/the-twisty-maze-of-getting-microsoft-office-updates/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/windows-10-cannot-protect-insecure-applications-like-emet-can/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesRecently, Microsoft published a blog post called Moving Beyond EMET that appears to make two main points....William DormannMon, 21 Nov 2016 00:00:00 -0500https://www.sei.cmu.edu/blog/windows-10-cannot-protect-insecure-applications-like-emet-can/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CChttps://www.sei.cmu.edu/blog/the-risks-of-google-sign-in-on-ios-devices/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThe Google Identity Platform is a system that allows you to sign in to applications and other services by using your Google account....William DormannTue, 02 Aug 2016 00:00:00 -0400https://www.sei.cmu.edu/blog/the-risks-of-google-sign-in-on-ios-devices/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity VulnerabilitiesVulnerability MitigationCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/bypassing-application-whitelisting/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesApplication whitelisting is a useful defense against users running unapproved applications....William DormannThu, 30 Jun 2016 00:00:00 -0400https://www.sei.cmu.edu/blog/bypassing-application-whitelisting/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/who-needs-to-exploit-vulnerabilities-when-you-have-macros/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesRecently, there has been a resurgence of malware that is spread via Microsoft Word macro capabilities....William DormannWed, 08 Jun 2016 00:00:00 -0400https://www.sei.cmu.edu/blog/who-needs-to-exploit-vulnerabilities-when-you-have-macros/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/supporting-android-ecosystem/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesA few months ago, a widely-publicized set of vulnerabilities called StageFright hit the Android ecosystem....William DormannMon, 19 Oct 2015 00:00:00 -0400https://www.sei.cmu.edu/blog/supporting-android-ecosystem/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CCBest Practiceshttps://www.sei.cmu.edu/blog/instant-karma-might-still-get-you/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesAbout a year ago, I started looking into Android applications that aren't validating SSL certificates. Lately I've been checking whether IOS applications are consistently checking SSL certificates, and they appear to be pretty similar to Android applications in that regard.William DormannTue, 11 Aug 2015 00:00:00 -0400https://www.sei.cmu.edu/blog/instant-karma-might-still-get-you/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability MitigationSecurity VulnerabilitiesCERT/CC