Requested whether or not leaving a renewal determination to the final minute was only a mistake of a brand new administration centered on different issues, Schneier stated he suspects it was determined that “that is inside the blast radius” of value slicing. Somebody, he stated, determined, “’We’re slicing all the things, that is a part of all the things.’ That’s occurred a bunch of instances. Like [the way] they fired nuclear security engineers, after which they stated, ‘Wait, we would want these,’ so that they tried to get them again. My guess is that’s what occurred.”
Schneier couldn’t say why the contract was solely prolonged for 11 months. “I don’t assume there’s a sign in that in any respect.”
MITRE’s CVE program is the de facto normal for figuring out vulnerabilities and guiding defenders’ vulnerability administration packages. It gives foundational information to cybersecurity merchandise throughout vulnerability administration, cyber risk intelligence, security data, occasion administration, and endpoint detection and response.
