vulnerability prioritization
Rapid response | 1 min read
Security alert: CVE contract expiration and option periodThe contract for the federally funded CVE program has been extended, but uncertainty remains. Here’s why it matters and what's next.
MDR | 6 min read
15 ways Expel rocked The Forrester Wave™: MDR Services, Q1 2025Enjoy this complimentary playlist while diving into the fifteen reasons why Expel is the best option when it comes to MDR cloud providers.
Cloud security | 9 min read
Vulnerability management for cloud environmentsVulnerability management in the cloud has its own unique challenges and strategies. Dive into the nuances and how Expel can help.
Current events | 2 min read
Patch Tuesday roundup for February 2025The February 2025 edition of Patch Tuesday is live, including 63 published CVEs from Microsoft. Here are our top takeaways.
Current events | 2 min read
Patch Tuesday roundup for January 2025The January 2025 edition of Patch Tuesday is live, including 159 published CVEs from Microsoft. Here are our top takeaways.
Current events | 2 min read
Patch Tuesday roundup for December 2024The December 2024 edition of Patch Tuesday is live, including 73 published CVEs from Microsoft. Here are our top takeaways.
Current events | 2 min read
Patch Tuesday roundup for November 2024The November 2024 edition of Patch Tuesday is live, including 89 published CVEs from Microsoft. Here are our top takeaways.
Current events | 2 min read
Patch Tuesday roundup for October 2024The October 2024 edition of Patch Tuesday is live, including 117 published CVEs from Microsoft. Here are our top takeaways.
Current events | 2 min read
Patch Tuesday roundup for September 2024The September 2024 edition of Patch Tuesday is live, including 79 published CVEs from Microsoft. Here are our top four takeaways.
Data & research | 7 min read
MDR insights: how our SOC identified & responded to CVE-2024-3400Learn how Expel's security operations center (SOC) identified and resolved CVE-2024-3400 for one of our customers.
Data & research | 5 min read
MDR insights: using vulnerability data to inform remediation strategiesMDR vulnerabilities data can be used with EPSS scoring and the CISA catalog to glean insights, reduce alert noise, and guide remediation.
Current events | 2 min read
Patch Tuesday roundup for August 2024The August 2024 edition of Patch Tuesday is live, including 53 published CVEs from Microsoft. Here are our top takeaways.
Current events | 2 min read
Patch Tuesday roundup for July 2024The July 2024 edition of Patch Tuesday is live, including 53 published CVEs from Microsoft. Here are our top takeaways.
Current events | 2 min read
Patch Tuesday roundup for June 2024The June 2024 edition of Patch Tuesday is live, including 53 published CVEs from Microsoft. Here are our top takeaways.
Current events | 1 min read
Patch Tuesday roundup for May 2024Patch Tuesday for May 2024 includes 67 published CVEs from Microsoft, and VMware joins the party with four CVEs of its own.
Rapid response | 1 min read
Security alert: Palo Alto Networks PAN-OS GlobalProtect Command Injection VulnerabilityPalo Alto Networks disclosed that attackers are exploiting a vulnerability in PAN-OS for GlobalProtect. Here's what you need to know.
Current events | 2 min read
Patch Tuesday roundup for April 2024The April 2024 Patch Tuesday included 150 CVEs from Microsoft and 24 CVEs from Adobe. Here’s what our team recommends to reduce exploit risk.
Current events | 2 min read
Patch Tuesday roundup for March 2024The March 2024 Patch Tuesday included 60 CVEs from Microsoft and 68 CVEs from Apple. Here’s what our team recommends to reduce exploit risk.
Rapid response | 2 min read
Security alert: ConnectWise ScreenConnect 23.9.8 security fixVulnerabilities in ConnectWise versions 23.9.7 and prior leave some ScreenConnect instances exposed to attackers. Here’s how to fix it.
Security operations | 2 min read
Risk-based prioritization in vulnerability managementSoftware vulnerabilities are a huge challenge, but risk-based, stakeholder-specific vulnerability prioritization can reduce organizational risk and drive better results. Read the white paper now.
Security operations | 2 min read
Celebrating(?) 20 Years of Patch TuesdayIt’s the 20th anniversary of Patch Tuesday. We can’t patch all vulnerabilities, so we should focus on the ones that are most likely to have an impact on their environment.