This Threat Report takes a look at some of the events of mid 2017. Specifically, it looks at the global WannaCry and Petya Threats, attacks that bypass filtering, a Chinese threat group, and threat actors stealing intellectual property from Japan.

From the report, “Application security (AppSec) is maturing for most organizations, according to the 475 respondents who took the SANS 2016 State of Application Security survey. In it, respondents recognize the need for AppSec programs and are working to improve them, despite a lack of the necessary skills, lack of funding and management buy-in, and silos between departments hampering their AppSec programs.”

This annual report takes a look at the bug bounty industry in 2018.

This Report provides key takeaways from the vulnerability issues of 2017.

In this report, they highlight key findings from a recent survey of more than 200 CIO’s and CISO’s, and outline how executives are actively revising security models to create a culture of cybersecurity and safeguard their organizations in today’s continually changing business environment.

This paper from CCS 2017, presents a system that analyzes binary file appearance logs of machines to predict which machines are at risk of infection months in advance.

In this paper, they look at how most organizations have shifted from centralized to distributed operations, and what that change means from a cybersecurity perspective. They also examine the deficiencies of traditional on-prem, hybrid, and all-cloud secure web gateway solutions.

This report breaks down four strategic pillars of handling vulnerability management.