With tens of thousands of vulnerabilities disclosed every year, security teams struggle with resources to remediate.

Prioritizing vulnerabilities is one of the most important tasks vulnerability management teams should focus on to eliminate the most critical threats and risk from the organization.

Weaknesses found in hardware and software coupled with an exploit allow attackers to infiltrate an organization either directly or through the use of known malware as part of ransomware operations.

As we know, ransomware continues to be a big challenge and pain point for organizations across industries.

Staying in front of the latest vulnerabilities and knowing which ones ransomware groups are using is key to prioritization and ensuring teams are focused on the vulnerabilities most likely to have a negative impact on your organization.

VulnDB Ransomware and Exploit Prediction Model

The next step of Flashpoint’s VulnDB evolution has arrived and equips Vulnerability Management teams with the information needed to better prioritize and take action on the vulnerabilities likely to be used in ransomware and other attacks

For each vulnerability, VulnDB now provides our Ransomware Likelihood and two implementations of EPSS (Exploit Prediction Scoring System).

The model takes a newly published vulnerability and using predictive analysis, determines the likelihood that it will be used in future ransomware operations.

Flashpoint’s EPSS model elevates exploit prediction to the next level, as it runs against the entire VulnDB dataset which includes all vulnerabilities, not just ones with CVE IDs.

RANSOMWARE LIKELIHOOD

  • Predict which vulnerabilities are likely to be used in future ransomware events for better prioritization and more effective remediation

EPSS (VULNDB AND NVD)

  • Prioritize vulnerabilities based on the likelihood they will be actively exploited in the wild

  • Originally designed using data from NVD, we provide a VulnDB-adapted score additionally as the NVD data is frequently missing or incomplete

BACKED BY VULNDB’S ROBUST VULNERABILITY INTELLIGENCE

  • Leverage VulnDB’s best in class vulnerability intelligence, including over 300,000 vulnerabilities (of which 96,000+ are not included in CVE/NVD) and 60+ fields of independently-researched advanced metadata

GAIN ADDED CONTEXT TO TRANSFORM DATA INTO INTELLIGENCE

  • Cross-reference data with Flashpoint’s primary source data and intelligence reports across illicit communities, threat actor TTPs, and malware families to further contextualize risk

Did this answer your question?