Connect with us

Hi, what are you looking for?

HEADLINES

Sophos named Common Vulnerability and Exposure Numbering Authority

With this status, Sophos is authorized to assign CVE identification to unique vulnerabilities within the scope of its products. Security researchers can now work directly with Sophos to open CVEs for the company’s products, making the process of reporting issues and assigning CVEs more straightforward.

Sophos, a global player in next-generation cybersecurity, announced that it has been named a Common Vulnerabilities and Exposures (CVE) Numbering Authority (CNA) in the CVE program, a recognized international standard for identifying and naming cybersecurity vulnerabilities.

With this status, Sophos is authorized to assign CVE identification to unique vulnerabilities within the scope of its products. Security researchers can now work directly with Sophos to open CVEs for the company’s products, making the process of reporting issues and assigning CVEs more straightforward.

The CVE program is an international, community-based effort that maintains a community-driven, open data registry of vulnerabilities. The program catalogs CVEs in a publicly available registry that is available to security researchers, vulnerability disclosure and information technology vendors. Using a common identifier makes it easier to share and cross-check data across the industry’s several and separate security databases and tools that track vulnerabilities. 

“Sophos’ new status as a CNA is another example of our commitment to be transparent, and by having the ability to assign CVEs, we can provide the industry with pertinent information about our products faster. This allows organizations to more quickly assess security issues, determine the scale of urgency and prioritize updates,” said Ross McKerchar, vice president and chief information security officer at Sophos. “Sophos’ CVEs will also get entered into the multiple CVE-compatible databases within the industry. By working collectively on these databases with other vendors and industry standards watchguards, we can together improve defenses against persistent attackers.”

“The Common Vulnerabilities and Exposures Team welcomes Sophos as our newest CVE Numbering Authority. Sophos has a strong reputation of contributing to the global digital security community, producing antivirus, encryption and cybersecurity capabilities for over 30 years. Their experience brings real value to the CVE Program. We are very pleased to have Sophos as a contributing member of the CVE Team,” said Kent Landfield, CVE board member.

Advertisement. Scroll to continue reading.
Advertisement

Like Us On Facebook

You May Also Like

HEADLINES

NTC’s failure to act on NOW Telecom’s application for more than a decade, according to the ARTA, is a violation of Republic Act no....

HEADLINES

This year’s research looks at the impact of the pandemic on Filipinos’ access to opportunities. More importantly, it spotlights the gender gaps that continue...

HEADLINES

Third party contractors including their technicians and personnel are barred from selling any Globe gadgets or devices on their own.

Biz Solutions

The Prisma Access 2.0 release extends this vision further and resets the bar for cloud-delivered security while providing 10 times more throughput than other...

HEADLINES

The company has also engaged the Philippine Red Cross for needed RT-PCR (reverse transcription-polymerase chain reaction) tests which use swabs for the nose or...

GAMING

A reason for these breaks may be to find a distraction from high workloads, which was also cited as the most common reason to...

BUSINESS

In the Philippines, manufacturing industry has the biggest share in safety related accidents since 2015 according to the Philippine Statistics Office’s data on Safety...

HEADLINES

These new partners include FAW-Volkswagen, Anker and NXP Semiconductors —leaders in their respective fields of automobiles, portable charging, and chip manufacture. Between them, their...

Advertisement