Incident handling strategy is one key strategy to mitigate risks to the confidentiality, integrity
and availability (CIA) of organisation assets, as well as minimising loss (eg financial …

Knowing the exploitability and severity of software vulnerabilities helps practitioners
prioritize vulnerability mitigation efforts. Researchers have proposed and evaluated many …

We study the vulnerability reports in the Common Vulnerability and Exposures (CVE)
database by using topic models on their description texts to find prevalent vulnerability types …

The Art and Science of Analyzing Software Data provides valuable information on analysis
techniques often used to derive insight from software data. This book shares best practices …

With the integration of cyber devices into power systems, such as information
communication technology devices and intelligent electronic devices, there are currently a …

The Common Vulnerability Scoring System (CVSS) is a widely used and well-established
standard for classifying the severity of security vulnerabilities. For instance, all vulnerabilities …

With the growing number of vulnerabilities while attacks are becoming more advanced,
known software security vulnerabilities need to be managed more efficiently with …

Whenever a vulnerability is detected by the testing team, it is described based on its
characteristics and a detailed overview of the vulnerability is given by the testing team …

Featured Application The Vulnerability Management Center allows for the improvement of
the quality and efficiency of operation for security operation centers. Abstract Vulnerability …

The cyber risk from malicious external attackers is a significant socio-economic problem.
Cyber risk prediction is particularly difficult, given the constantly changing attack vectors …