Le Lézard
Classified in: Science and technology
Subjects: PDT, SVY

Morphisec Fortifies Capabilities with Next-gen Risk-Based Vulnerability Prioritization for Exposure Management


Continuous Risk and Usage-based Prioritization Combined with Virtual Patching Helps Organizations Mitigate High-risk Vulnerabilities Faster

BOSTON and BEER-SHEVA, Israel, Nov. 28, 2023 /PRNewswire-PRWeb/ -- Morphisec, the world's leading provider of prevention-first endpoint security software, today announced the launch of a risk-based vulnerability prioritization capability for exposure management.

Morphisec's risk-based vulnerability prioritization capability prioritizes the vulnerabilities that pose the greatest risk, based on a unique risk profile. It combines threat intelligence with business context and usage data, delivering continuous and customized risk-based patching prioritization.

Present vulnerability management practices are typically driven by the Common Vulnerability Scoring System (CVSS) to identify high severity vulnerabilities for patch prioritization and mitigation efforts. However, less than 2% of vulnerabilities are exploited. In this reality, CVSS driven vulnerability management programs insufficiently align mapped CVEs to the organization's actual risk. They do not account for the exploitability potential of vulnerabilities, the actual usage of applications, and crucially ? the organization's unique business context and operating environments, thereby leading to incorrect prioritization of vulnerability remediation efforts.

"Current vulnerability management methods are focused mostly on identifying vulnerabilities, but don't offer the context required to help teams prioritize the vulnerabilities with the greatest risk where mitigation and patching efforts needs to be focussed." said Michael Gorelik, Chief Technology Officer at Morphisec. "The result is an overwhelming list of vulnerabilities that aren't appropriately prioritized which adds stress to the already overburdened IT Security operations team. Vulnerability exploitation is a leading cause of breaches ? without a risk-based approach to vulnerability management organizations face greater risk of advanced attacks like ransomware."

Morphisec's risk-based vulnerability prioritization capability prioritizes the vulnerabilities that pose the greatest risk, based on an organization's unique risk profile. It combines threat intelligence with business context, application and device usage data, delivering continuous and customized risk-based patching prioritization.

Key features include:

"Morphisec is a prevention-first technology company," said Gorelik. "These capabilities take risk and exposure management to the next level, helping customers reduce total cost of ownership. With Morphisec, teams realize benefits throughout the attack lifecycle. The days of depending solely on CVSS for vulnerability management are behind us."

Morphisec's prevention-first security (powered by AMTD) uses a patented zero-trust at-execution technology to proactively block advanced and evasive attacks. As an application loads to memory space, the platform's three-step prevention process uses its AMTD technology to morph and conceal process structures, protecting code memory and uses lightweight skeleton traps to deceive attackers. Unable to access original resources, malicious code injection fails, thereby stopping and logging attacks with full forensic details.

According to Gartner: "Combining AMTD solutions at different layers of the technology stack provides innovation leaders with a highly effective 'defense in depth' strategy that significantly improves overall security posture."

Morphisec is trusted by more than 5,000 companies and prevents more than 30,000 attacks daily across more than nine million protected endpoints. Security professionals and industry analysts can experience Morphisec AMTD and access case studies by visiting: www.morphisec.com/demo.

[1] Gartner Emerging Tech: Security ? Tech Innovators in Automated Moving Target Defense, Mark Pohto, Carl Manion, 07 June 2023

Gartner Disclaimer

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About Morphisec:

Morphisec provides prevention-first security against the most advanced threats to stop the attacks that others don't, from endpoint to the cloud. Morphisec's software is powered by Automated Moving Target Defense (AMTD) technology, the next evolution of cybersecurity.

AMTD stops ransomware, supply chain attacks, zero-days, and other advanced attacks. Leading analysts indicate that AMTD is the future of cyber. AMTD provides an ultra-lightweight, Defense-in-Depth security layer to fortify solutions like NGAV, EPP and EDR/XDR. We close their runtime memory security gap against the undetectable cyberattacks with no performance impact or extra staff needed. Over 5,000 organizations trust Morphisec to protect nine million Windows and Linux servers, workloads, and endpoints. Morphisec stops thousands of advanced attacks daily at Lenovo/Motorola, TruGreen, Covenant Health, Citizens Medical Center, and many more. http://www.morphisec.com/Learn more at www.morphisec.com.

Media Contact

Michael Gerard, Morphisec, 1 (617) 775-1282, [email protected], www.morphisec.com

SOURCE Morphisec


These press releases may also interest you

at 05:00
Marc G. Serré, Parliamentary Secretary to the Minister of Energy and Natural Resources and to the Minister of Official Languages, on behalf of the Honourable Jonathan Wilkinson, Minister of Energy and Natural Resources, will deliver a keynote address...

at 03:30
H2O Hospitality (hereinafter H2O), a tech-based global hospitality management company today announced that select rental properties will be available on Homes & Villas by Marriott Bonvoy, a premium and luxury home rental offering backed by Marriott...

2 mar 2024
OKX Ventures, the investment arm of leading Web3 technology company OKX, has issued updates for March 2, 2024. OKX Ventures Announces...

2 mar 2024
Marc G. Serré, Parliamentary Secretary to the Minister of Energy and Natural Resources and to the Minister of Official Languages, on behalf of the Honourable Jonathan Wilkinson, Minister of Energy and Natural Resources, will deliver a keynote address...

2 mar 2024
zkLink, the leading zero-knowledge(ZK) Layer 3 infrastructure provider, today announced the launch of zkLink Nova, the industry's first aggregated Layer 3 zkEVM rollup network, based on zkSync's ZK Stack and zkLink Nexus. zkLink Nova unifies...

2 mar 2024
Celebrating a significant milestone, JKA Supplier Diversity Solutions, at the forefront of supplier diversity consulting, proudly announces its prestigious ranking of No. 143 on the Inc. 5000 Regionals: Northeast list for 2024. Achieving an...



News published on and distributed by: