Internet Security Systems (ISS) has released a useful new tool for network managers desperate to keep their security up to scratch – a Catastrophic Risk Index that lists what its X-Force (zam!) security experts feel are the 30 most important vulnerabilities currently out there. The index is available for free online as a pdf file and is updated quarterly. Each vulnerability comes with an ISS reference number, the risk name, a brief description and the industry-norm CVE (Common Vulnerabilities and Exposures) and CAN (candidate vulnerability) numbers. Hypertext links connect to full information about the vulnerability and how to deal with it. The idea behind the list is to enable companies to tackle the most serious problems first and then get to work sorting and patching for other problems. The 30 are selected from ISS’ X-Force (pow!) database of over 10,000 vulnerabilities and, we are told, selected according to four criteria: Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.