Kevin BeaumontApr 15, 2025

Wow. CVE database is in serious trouble, tomorrow.

The cyber industry as a whole is in trouble also really, it’s the elephant in the room - the collapse of the White House’s support for cybersecurity is obvious and pronounced due to widespread cutbacks.

Show threadKevin BeaumontApr 15, 2025
Show threadKevin BeaumontApr 15, 2025

My take on the CVE contract issue for businesses: don’t overreact, wait and see what impacts are.

The NVD backlog was already pretty crazy.. the US gov has gotta put real funding into this area if it wants to retain control of cyber standards.

Show threadKevin BeaumontApr 15, 2025
Just as an update to this - @briankrebs has confirmed with MITRE the letter is real, and as it stands the CVE database is likely to go offline tomorrow.
Show threadMark Esler
@GossiTheDog @briankrebs multiple CVE Board members have confirmed.
Apr 15, 2025 at 9:42pmWeb