Tenableは、最大3％の脆弱性を予測

それが構築した新しいセキュリティツールは、150のソースにわたるデータを分析します。その後、機械学習を使用して、今後28日間に脆弱性が悪用される可能性を予測します。Security teams found 16,500 new vulnerabilities in 2018, according to Tenable. Obviously, that’s way too many for most — if not all — organizations to wrap their arms around. The “good” news is that just 7 percent of these had a public exploit available, and Tenable estimates only 3 percent of vulnerabilities will be exploited. If only there was a way to figure out which ones are in that 3 percent…wait for it…Tenable says it developed a new tool that helps companies do just that. It’s called Predictive Prioritization, and it analyzes Tenable vulnerability data combined with third-party vulnerability data and threat intelligence across 150 data sources. It then uses a proprietary machine learning algorithm to predict the likelihood a vulnerability will be exploited in the next 28 days. Predictive Prioritization also calculates a vulnerability priority rating, which automatically indicates the remediation priority for each vulnerability. It’s updated daily so companies can use the most recent threat intelligence to prioritize remediation efforts. The new tool is included in in Tenable.sc 5.9 for on-premises vulnerability management now, and it will be available in Tenable.io for cloud-based vulnerability management later this year. In addition to predicting which security vulnerabilities companies should focus on remediating, Tenable’s platform also measures and quantifies cyber risk. It launched Lumin, a new application within Tenable.io, in March 2018. This application works with Tenable’s other products, like its container and web application security offerings. And it analyzes vulnerability data, business-critical assets, and threat context, then quantifies an organization’s cyber risk and benchmarks it against their peers.