Jonathan Greig reports that a CISA resource is having a positive effect at both a federal level as well as for non-governmental organizations:
The Cybersecurity and Infrastructure Security Agency (CISA) has run its Known Exploited Vulnerabilities (KEV) catalog for nearly three years and it has quickly become the go-to repository for software and hardware bugs actively being exploited by hackers around the world.
Experts at cybersecurity scanning company Bitsight posed the question, “do organizations remediate KEVs faster than vulnerabilities not in the KEV catalog?”
“The answer is a clear ‘yes,’” they said.
Read more at The Record.