Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

11/4/2020
01:15 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Vulcan Cyber Launches Remedy Cloud, Providing Free Access to Thousands of Vulnerability Fixes

Providing remediation solutions on demand, Vulcan Remedy Cloud helps security and IT teams collaboratively "get fix done."

Tel Aviv – November 4, 2020 - Vulcan Cyber®, the vulnerability remediation orchestration company, today announced Vulcan Remedy Cloud, a free service built on the world’s largest database of curated remedies for thousands of security vulnerabilities. By sharing the Remedy Cloud library of fixes with the  global vulnerability management community, Vulcan Cyber provides a powerful tool that streamlines the work of remediation by helping security and IT teams more effectively coordinate remediation campaigns. 

In related news, Vulcan Cyber today announced Vulcan remediation analytics, which adds powerful business intelligence capabilities to its remediation orchestration platform.

“Vulnerability management should be a means to an end, but due to process breakdowns there's never an end -- just a growing backlog of vulnerabilities that require remediation,” says Yaniv Bar-Dayan, Vulcan Cyber co-founder and CEO. “We’ve identified a critical breakdown in the process when security teams hand off vulnerability remediation tasks to IT operations teams. Vulcan Remedy Cloud streamlines this workflow by providing both teams with remediation playbooks. This one function is extraordinarily effective at creating cross-team alignment and cooperation. We’re proud to offer Remedy Cloud as a free service to our community to help enterprise organizations get fix done.”

Remedy Cloud is a standalone, free version of the Vulcan remediation intelligence capabilities already offered through the Vulcan remediation orchestration platform. This remediation intelligence is the missing link for any “found-to-fixed” remediation workflow. Vulcan remedies include the right patches, the best configuration scripts, and even workarounds and compensating controls to help security and IT operations teams quickly tackle the most difficult vulnerabilities. Vulcan remediation intelligence adds enterprise-scale remediation solutions designed to facilitate more collaborative and efficient remediation by integrating remedies with vulnerability scan, prioritization, patch and configuration management tools.

Security teams most often identify and prioritize vulnerabilities but the actual work of remediation is done by IT operations, DevOps, and site reliability engineering teams. Remedy Cloud helps these teams identify and align on the best remedies for the job, saving time and effort. This Vulcan Cyber freemium offering is part of a broader initiative to help vulnerability management programs become more effective at driving remediation outcomes. With Remedy Cloud, Vulcan Cyber opens a valuable resource to entire infosec and IT communities to promote a “get fix done” mindset.

Vulcan Cyber is helping to accelerate the industry’s move from passive vulnerability management to active vulnerability remediation and automated cyber hygiene. 

Learn more

Visit https://vulcan.io/remedy-cloud to start using Remedy Cloud for free today. To learn more about the full Vulcan Cyber vulnerability remediation orchestration platform request a demo or a free trial instance. 

About Vulcan Cyber

Vulcan Cyber has developed the industry’s first vulnerability remediation orchestration platform, built to help cybersecurity and IT operations teams to collaborate and “get fix done.” The Vulcan platform orchestrates the remediation lifecycle from found to fix by prioritizing vulnerabilities, curating and delivering the best remedies, and automating processes and fixes through the last mile of remediation. Vulcan transforms vulnerability management from find to fix by making it possible to remediate vulnerabilities at scale. The unique capability of the Vulcan Cyber platform has garnered Vulcan Cyber recognition as a 2019 Gartner Cool Vendor and as a 2020 RSA Conference Innovation Sandbox finalist. For more information please visit https://vulcan.io

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
US Formally Attributes SolarWinds Attack to Russian Intelligence Agency
Jai Vijayan, Contributing Writer,  4/15/2021
News
Dependency Problems Increase for Open Source Components
Robert Lemos, Contributing Writer,  4/14/2021
News
FBI Operation Remotely Removes Web Shells From Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/14/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-28973
PUBLISHED: 2021-04-21
The ABUS Secvest wireless alarm system FUAA50000 (v3.01.17) fails to properly authenticate some requests to its built-in HTTPS interface. Someone can use this vulnerability to obtain sensitive information from the system, such as usernames and passwords. This information can then be used to reconfig...
CVE-2021-29456
PUBLISHED: 2021-04-21
Authelia is an open-source authentication and authorization server providing 2-factor authentication and single sign-on (SSO) for your applications via a web portal. In versions 4.27.4 and earlier, utilizing a HTTP query parameter an attacker is able to redirect users from the web application to any...
CVE-2021-31523
PUBLISHED: 2021-04-21
The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_net_raw enabled for the /usr/libexec/xscreensaver/sonar file, which allows local users to gain privileges because this is arguably incompatible with the design of the Mesa 3D Graphics library dependency.
CVE-2020-23907
PUBLISHED: 2021-04-21
An issue was discovered in retdec v3.3. In function canSplitFunctionOn() of ir_modifications.cpp, there is a possible out of bounds read due to a heap buffer overflow. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution.
CVE-2020-23912
PUBLISHED: 2021-04-21
An issue was discovered in Bento4 through v1.6.0-637. A NULL pointer dereference exists in the function AP4_StszAtom::GetSampleSize() located in Ap4StszAtom.cpp. It allows an attacker to cause Denial of Service.