@daviottenheimer @SushiDude @thegrugq @4Dgifts out of scope for CVE, @osvdb, secunia, BID, etc. software, not services are tracked.
-
-
@attritionorg@SushiDude@thegrugq@4Dgifts@OSVDB so if software is run as a service, no need to disclose/notify vulns? -
@daviottenheimer@SushiDude@thegrugq@4Dgifts@OSVDB no, just that traditional VDBs don't track it. OSF has a project to track those.. -
@attritionorg@SushiDude@thegrugq@4Dgifts@OSVDB /me runs off to check OSF for known vulns -
@daviottenheimer most of the site-specific vulns (our term, rather than SaaS) are not added but we have a list going -
@attritionorg but i'm talking more than outage. bypass, disclosure, loss -
@daviottenheimer outage is the primary thing we have been tracking decently. site-specific vulns (any kind) is next goal -
@attritionorg that's what need to see entered. tracking SaaS breaches where attackers suck data out -
@daviottenheimer@Datalossdb tracks the breaches. we want association between site-specific vulns, which led to breaches, and more. - 6 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.