A newly released RAND Corp. study found that zero-day vulnerabilities have an average life expectancy (time between first private discovery and public disclosure) of 6.9 years, making it a reasonable option to stockpile vulnerabilities for cyber defenders and attackers.The study, “Zero Days, Thousands of Nights: The Life and Times of Zero-Day Vulnerabilities and Their Exploits,” was based on access to a dataset of over 200 zero-day software vulnerabilities. Zero-days are software vulnerabilities unknown to the vendor and can be used…
Recommended
Trending
Congress Updates
House Republicans’ Blueprint For Reconciliation 3.0 Includes $60 Billion For Defense
House Republicans on Wednesday unveiled a blueprint for a third reconciliation bill that includes $60 billion for defense, a figure slightly below the Trump administration’s request to cover Iran war […]
Senate Dems Block Consideration Of FY ‘27 NDAA Over Iran War Concerns
Senate Democrats on Tuesday blocked a vote to advance consideration of the chamber’s $1.14 trillion fiscal year 2027 National Defense Authorization (NDAA). The procedural vote was 46-50, failing to reach […]
Concerns Raised At SASC Hearing On Unobligated Reconciliation Funds And Lack Of Updates On Iran War Cost
Members of the Senate Armed Services Committee (SASC) raised concerns at a hearing on Tuesday about the majority of funds in the $153 billion first reconciliation bill being unobligated thus […]
CBO Says Upfront Costs To Protect Military Installations From Drones Between $1 Million And $74 Million
The initial costs to acquire and deploy counter-small unmanned aircraft system (C-sUAS) defenses at individual Defense Department installations are estimated at between $1.2 million and $73.6 million depending on the […]
By