Initiative for Trust and Transparency in Cybersecurity
@ittc.bsky.social
Non-profit focused on helping ensure a robust and responsive CVE system and fostering an environment of trust and transparency in cyber.
Pinned
ITTC
ittcybersecurity.org
🔍 Vulnerability disclosure varies widely across the industry.
The Initiative for Trust and Transparency in Cybersecurity (ITTC) is launching to conduct research and promote best practices for vulnerability disclosure.
Learn more: ittcybersecurity.org
#CyberTransparency #CVE
The Initiative for Trust and Transparency in Cybersecurity (ITTC) is launching to conduct research and promote best practices for vulnerability disclosure.
Learn more: ittcybersecurity.org
#CyberTransparency #CVE
For more than 20 years, the CVE system has been a foundational system used to track and categorize cyber vulnerabilities. @istorg.bsky.social recently released a report, "CVE at a Crossroads" looking at what should come next.
Read more: www.ittcybersecurity.org/news-resourc...
Read more: www.ittcybersecurity.org/news-resourc...
REPORT: CVE at a Crossroads: Building a Global Vulnerability System for the Next 25 Years
For more than two decades, the CVE system has been the foundation of global vulnerability management, ensuring that everyone from software developers to government agencies speaks the same language wh...
www.ittcybersecurity.org
October 30, 2025 at 8:31 PM
For more than 20 years, the CVE system has been a foundational system used to track and categorize cyber vulnerabilities. @istorg.bsky.social recently released a report, "CVE at a Crossroads" looking at what should come next.
Read more: www.ittcybersecurity.org/news-resourc...
Read more: www.ittcybersecurity.org/news-resourc...
Reposted by Initiative for Trust and Transparency in Cybersecurity
Cybersecurity is a market for lemons: information asymmetry, opaque products, no performance metrics. The Initiative for Trust & Transparency in Cybersecurity will product comparisons easier. www.hstoday.us/subject-matt...
www.ittcybersecurity.org
www.ittcybersecurity.org
CYBERSECURITY'S TRUST DEFICIT: Why We Need Responsible Transparency - HSToday
The cybersecurity industry has a major trust problem. While demanding visibility from customers about their networks, applications and threats, security providers often operate their own businesses be...
www.hstoday.us
October 22, 2025 at 7:21 PM
Cybersecurity is a market for lemons: information asymmetry, opaque products, no performance metrics. The Initiative for Trust & Transparency in Cybersecurity will product comparisons easier. www.hstoday.us/subject-matt...
www.ittcybersecurity.org
www.ittcybersecurity.org
"Responsible transparency isn’t just about vulnerability disclosure, it means sharing information about risks and building processes that help build trust." -- read more from
Fortinet's Derek Manky here: ittcybersecurity.org/news-resourc...
Fortinet's Derek Manky here: ittcybersecurity.org/news-resourc...
Blog
ittcybersecurity.org
October 21, 2025 at 2:45 PM
"Responsible transparency isn’t just about vulnerability disclosure, it means sharing information about risks and building processes that help build trust." -- read more from
Fortinet's Derek Manky here: ittcybersecurity.org/news-resourc...
Fortinet's Derek Manky here: ittcybersecurity.org/news-resourc...
Reposted by Initiative for Trust and Transparency in Cybersecurity
Nice in-depth look at what's going on with the CVE program from @metacurity.com cyberscoop.com/cve-program-...
Behind the struggle for control of the CVE program
Following a funding scare that nearly shuttered the CVE program, outside experts and CISA are positioning to take charge of the 25-year-old system before the next funding crisis hits.
cyberscoop.com
October 20, 2025 at 4:44 PM
Nice in-depth look at what's going on with the CVE program from @metacurity.com cyberscoop.com/cve-program-...
Read Fortinet's Derek Manky on "Cybersecurity's Trust Deficit: Why We Need Responsible Transparency" and why the company supported the formation of the ITTC, in Homeland Security Today: www.hstoday.us/subject-matt...
CYBERSECURITY'S TRUST DEFICIT: Why We Need Responsible Transparency - HSToday
The cybersecurity industry has a major trust problem. While demanding visibility from customers about their networks, applications and threats, security providers often operate their own businesses be...
www.hstoday.us
October 20, 2025 at 1:15 PM
Read Fortinet's Derek Manky on "Cybersecurity's Trust Deficit: Why We Need Responsible Transparency" and why the company supported the formation of the ITTC, in Homeland Security Today: www.hstoday.us/subject-matt...
Interesting panel this morning on the CVE system and some of the challenges it's been experiencing.
Starting now at #CyberNextDC a panel on "Vulnerable: Weaknesses in the Nation's Vulnerability Management System."
Watch here: www.youtube.com/live/VxtE68R...
Watch here: www.youtube.com/live/VxtE68R...
October 8, 2025 at 3:32 PM
Interesting panel this morning on the CVE system and some of the challenges it's been experiencing.
Cybersecurity isn’t just about tech—it’s about trust.
Cybersecurity Awareness Month is a reminder that we stay safe when:
➡️Vulnerabilities are disclosed
➡️Researchers are respected
➡️Organizations are transparent
#CybersecurityAwarenessMonth #staysafeonline
Cybersecurity Awareness Month is a reminder that we stay safe when:
➡️Vulnerabilities are disclosed
➡️Researchers are respected
➡️Organizations are transparent
#CybersecurityAwarenessMonth #staysafeonline
October 1, 2025 at 9:14 PM
Cybersecurity isn’t just about tech—it’s about trust.
Cybersecurity Awareness Month is a reminder that we stay safe when:
➡️Vulnerabilities are disclosed
➡️Researchers are respected
➡️Organizations are transparent
#CybersecurityAwarenessMonth #staysafeonline
Cybersecurity Awareness Month is a reminder that we stay safe when:
➡️Vulnerabilities are disclosed
➡️Researchers are respected
➡️Organizations are transparent
#CybersecurityAwarenessMonth #staysafeonline
Interesting new post out today from NVIDIA researchers on CVEs and AI. They ask: "As AI models become core components of enterprise systems, the security community is asking: should the CVE system also apply to models?"
Read more here: developer.nvidia.com/blog/why-cve...
Read more here: developer.nvidia.com/blog/why-cve...
Why CVEs Belong in Frameworks and Apps, Not AI Models | NVIDIA Technical Blog
The Common Vulnerabilities and Exposures (CVE) system is the global standard for cataloging security flaws in software. Maintained by MITRE and backed by CISA, the program gives each vulnerability a…
developer.nvidia.com
September 26, 2025 at 7:25 PM
Interesting new post out today from NVIDIA researchers on CVEs and AI. They ask: "As AI models become core components of enterprise systems, the security community is asking: should the CVE system also apply to models?"
Read more here: developer.nvidia.com/blog/why-cve...
Read more here: developer.nvidia.com/blog/why-cve...
The CVE system has protected cybersecurity for 25+ years—but it's under strain.
A recent report from @cyberseccenter.bsky.social details funding risks, fragmentation threats and transparency gaps affecting how vulnerabilities are tracked globally.
More: www.ittcybersecurity.org/news-resourc...
A recent report from @cyberseccenter.bsky.social details funding risks, fragmentation threats and transparency gaps affecting how vulnerabilities are tracked globally.
More: www.ittcybersecurity.org/news-resourc...
ITTC
www.ittcybersecurity.org
September 25, 2025 at 12:29 PM
The CVE system has protected cybersecurity for 25+ years—but it's under strain.
A recent report from @cyberseccenter.bsky.social details funding risks, fragmentation threats and transparency gaps affecting how vulnerabilities are tracked globally.
More: www.ittcybersecurity.org/news-resourc...
A recent report from @cyberseccenter.bsky.social details funding risks, fragmentation threats and transparency gaps affecting how vulnerabilities are tracked globally.
More: www.ittcybersecurity.org/news-resourc...
🔍 Vulnerability disclosure varies widely across the industry.
The Initiative for Trust and Transparency in Cybersecurity (ITTC) is launching to conduct research and promote best practices for vulnerability disclosure.
Learn more: ittcybersecurity.org
#CyberTransparency #CVE
The Initiative for Trust and Transparency in Cybersecurity (ITTC) is launching to conduct research and promote best practices for vulnerability disclosure.
Learn more: ittcybersecurity.org
#CyberTransparency #CVE
ITTC
ittcybersecurity.org
September 23, 2025 at 1:01 PM
🔍 Vulnerability disclosure varies widely across the industry.
The Initiative for Trust and Transparency in Cybersecurity (ITTC) is launching to conduct research and promote best practices for vulnerability disclosure.
Learn more: ittcybersecurity.org
#CyberTransparency #CVE
The Initiative for Trust and Transparency in Cybersecurity (ITTC) is launching to conduct research and promote best practices for vulnerability disclosure.
Learn more: ittcybersecurity.org
#CyberTransparency #CVE