Businesses need a risk-based approach to tackle vulnerabilities like Meltdown

The recent Spectre and Meltdown vulnerabilities have been well documented, but for businesses it can be difficult to know which fixes to prioritize. Software management and security specialist Flexera is announcing a set of recommendations to provide a standardized, risk-based approach to managing this type of vulnerability. While these vulnerabilities are pervasive and potentially harmful, to truly assess risk CIO's need deeper vulnerability intelligence (beyond a basic CVE score). This deeper intelligence should provide product context that takes into account attack vectors and possible security impact, allowing security teams to look beyond threats commonly hyped by the media. To date, Secunia… [Continue Reading]