GRIMM announced the launch of the company’s new Private Vulnerability Disclosure (PVD) program. This offering allows defenders to get ahead of the attack curve, instead of reacting to unknown threats, by providing previously unknown vulnerabilities.
Subscribers will have access to a stream of high-impact vulnerabilities from GRIMM’s internal research team. Release timing will be at least two weeks before the vulnerabilities are publicly known, allowing partners to defend themselves before most attackers are aware of the vulnerability/vulnerabilities.
Each PVD release will include:
Full technical details of the vulnerabilities and affected systems
Instructions on how to quickly mitigate
Any indicators of compromise (such as log messages) to speed detection
It also includes proof-of-concept exploit, which provides:
Verification that specific configurations are (or are not) vulnerable
Assessment of defenses to determine true effe ..
Support the originator by clicking the read the rest link below.
