VulnCheck

CVE disclosures are rising sharply across several suppliers and OSS projects, including Chrome (+563.2%) & GitHub (+476.07%). Early signs suggest AI-assisted vuln discovery may be starting to reshape disclosure volumes, but the signal is still emerging: vulncheck.com/blog/ai-assist…

The VulnCheck Exploit Intelligence App is available on Splunkbase. Security teams can enrich CVEs with real-world exploitation context, analyze SBOM risk, and prioritize vulnerabilities without leaving Splunk. Learn more: vulncheck.com/blog/vulncheck…

Heading to BSides Knoxville 2026? VulnCheck Security Architect Scott Moore is presenting “The Myth of the Meteoric Rise in Vulnerabilities” on May 22. The talk explores why rising CVE counts do not always equal rising risk. More details: vulncheck.com/events/vulnche… #BSK2026

VulnCheck’s Caitlin Condon spoke with @CyberScoop about the latest Ivanti EPMM zero-day activity, recent disclosures and threat actor interest in Ivanti products. Get the full story: cyberscoop.com/ivanti-epmm-ze…

CVSS isn’t enough. VulnCheck’s Guillermo Menjivar is speaking at DevOps Pro Europe (May 21) on how to prioritize vulnerabilities by reachability, blast radius, and ownership instead of severity alone. More info: vulncheck.com/events/guiller…

VulnCheck is joined by Casey Ellis (@Bugcrowd) on this week’s THREATCON1. We cover why cybersecurity feels more chaotic than ever, the evolution of bug bounties, and why vulnerability disclosure is still broken. Listen/watch: podcasts.apple.com/us/podcast/epi… youtube.com/watch?v=6Av2hn…

CVE-2026-29014 (MetInfo CMS) is being actively exploited. VulnCheck observed initial activity on April 25, with a surge by May 1 tied to China and Hong Kong IPs. ~2,000 instances remain exposed. Read more: thehackernews.com/2026/05/metinf…

Vulnerability data keeps repeating the same problems. In the latest Wild in the Webinar, we break down CISA, NIST, Mythos, and what AI-driven discovery really means for signal vs noise. Watch here: wwv.vulncheck.com/in-the-wild-wi…

On the latest THREATCON1 podcast, Patrick Garrity and Kimber D. talk with Joe Silva (Founder & CEO, @spektion) about what enterprise security looks like in the age of AI and rapidly growing software complexity. Check it out: youtube.com/watch?v=Er-alQ… podcasts.apple.com/us/podcast/epi…

VulnCheck’s Caitlin Condon spoke with @CyberScoop about Copy Fail, AI’s role in the research, and what teams should focus on. Key takeaway: use caution when running untested or unexplained code, including AI-generated exploits. cyberscoop.com/copy-fail-linu…

Security teams shouldn’t have to leave Splunk to know if a vuln is being exploited. VulnCheck’s Exploit Intelligence App is now on Splunkbase, bringing CVE enrichment, SBOM risk insight, and real-world context into your workflow. Learn more: vulncheck.com/blog/vulncheck…

Heading to @HealthISAC Americas Spring Summit in Tampa? Find VulnCheck at Booth 25 to talk real-world exploitation and smarter vuln prioritization. Also catch Neal Dennis’ session on moving beyond CVSS + EPSS. Learn more: vulncheck.com/events/health-…

Don’t miss this afternoon! 🔍 In the Wild with VulnCheck With Kimber D., Patrick Garrity & Mike Price We’re digging into shifting vulnerability data reliability + what teams are doing about it, and the rise of AI-driven discovery. Join us: wwv.vulncheck.com/in-the-wild-wi…

ICMYI: VulnCheck’s Caitlin Condon shared perspective with @TheHackersNews on NIST scaling back CVE enrichment and what that means for vulnerability data quality and downstream users. Full story: thehackernews.com/2026/04/nist-l…

Attackers keep going after edge devices but why? On a recent THREATCON1 episode, VulnCheck’s Patrick Garrity sat down with Ryan Dewhurst (@watchTowr) to talk how exploitation is evolving, why these systems stay targeted, and what defenders are missing. youtube.com/watch?v=W7uAxF…

🔍 Live Webinar: In the Wild with VulnCheck on April 29 Public vuln data sources are seeing shifts in reliability. We’ll dig into what’s changing, where things fall short, and how teams are adapting plus what’s real vs noise in AI-driven discovery: wwv.vulncheck.com/in-the-wild-wi…

VulnCheck has partnered with @Cytora to bring exploit intelligence into insurance workflows, helping underwriters assess cyber risk in real time and make more informed decisions. More: ffnews.com/newsarticle/cy…

On a recent THREATCON1 episode, VulnCheck’s Patrick Garrity and Kimber D. sat down with Saeed Abbasi (@Qualys) to talk what’s happening at the network edge, from why attackers target them to how fast exploitation timelines are shrinking. youtube.com/watch?v=bcEtqS…

Executive Biz sat down with VulnCheck VP Jay Wallace to talk threat intel, CMMC, and access to cybersecurity, including supply chain risk and what smaller contractors should be thinking about. Read more: executivebiz.com/articles/jay-w…

Project Glasswing is getting a lot of attention, but the CVE picture is still incomplete. VulnCheck’s Patrick Garrity spoke with @TheRegister's Jessica Lyons about what’s actually been disclosed so far and what’s still to come. theregister.com/2026/04/15/pro…