The CISA has intervened to extend its contract for the Mitre-operated Common Vulnerabilities and Exposures (CVE) Programme, which is critical for security professionals monitoring disclosed vulnerabilities. Earlier concerns about a lapse in the contract were raised by a warning from Mitre, highlighting severe repercussions if the program were to stop. An agreement for an 11-month extension was reached, ensuring that essential services continue amidst growing cyber threats. The program is noted as a foundational component of the cybersecurity landscape, emphasizing its immense value to the community.
The CVE Program is invaluable to the cyber community and a priority of CISA. Last night, CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services.
Barsoum said that should a break in service occur, the programme would experience multiple impacts including "deterioration of national vulnerability databases and advisories, tool vendors, incident response operations, and all manner of critical infrastructure."
Collection
[
|
...
]