Information security
fromSecurityWeek
3 weeks agoQuestions Raised Over CISA's Silent Ransomware Updates in KEV Catalog
CISA quietly changes KEV entries to mark vulnerabilities as observed in ransomware, creating material shifts in organizational risk and patch prioritization without public alerts.