Thousands of new vulnerabilities are disclosed each year. This volume makes it impossible for companies to patch everything, but unpatched vulnerabilities leave openings for attackers to strike. Security Operations and IT Operations teams need external threat context to prioritize based on the likelihood of vulnerability exploitation, not just the severity. That’s where Recorded Future comes in.
Recorded Future scores vulnerabilities based on exploitability using real-time data. This gives you the context you need to prioritize patching and prevent attacks. Recorded Future’s machine learning automatically detects reporting of new vulnerabilities and structures this information so Security Operations and IT Operations managers can utilize Recorded Future’s Vulnerability Risk Score as an input into a single prioritization metric that takes the vulnerability threat environment into account.
By harnessing Recorded Future’s rich intelligence in ServiceNow for Vulnerability Response, teams can:
-
Reduce risk by prioritizing patching based on threat severity
-
Minimize expensive off-cycle patches with real-time context
-
Respond quickly with transparency and context
-
Increase team efficiency and simplify workflows
-
Maximize investment in existing security tools
Threat-based risk scores for fast prioritization of vulnerabilities.
Risk Rules and Risk Evidence linked to temporal and base vulnerability life cycle.
Seamless integration with existing third-party scanners.
Recorded Future's Risk Score leveraged in the Vulnerability Response calculator for threat-based patch prioritization.
Deep link to Recorded Future's Portal for further vulnerability enrichment.
Dashboard to get an overview of all vulnerable items and vulnerabilities.
3.0.5
- Adds functionality to automatically delete old Recorded Future risk data from the Risk Score (x_refui_vr_risk_score) and Risk Evidence (x_refui_vr_risk_evidence) tables. The deletion happens as part of the Recorded Future Vulnerability Integration run and deletes any records that have not been updated since before the previous integration run.
- Merged the following business rules into a single rule with the name Vulnerability CVEs - Insert/Delete:
- Vulnerability CVEs - Insert
- Vulnerability CVEs - Delete
- Merged the following business rules into a single rule with the name Vulnerability Reference - Insert/Delete:
- Vulnerability Reference - Insert
- Vulnerability Reference - Delete
- Vulnerability Response (v.18.2.6 or higher)