Trump administration decides to fund CVE cybersecurity tracker after all
1 min read
Summary
The US Cybersecurity and Infrastructure Agency (CISA) has pledged to continue funding for the Common Vulnerabilities and Exposures (CVE) programme after next month’s scheduled expiry.
The extension comes after organisations, including Microsoft, Apple, Google and Intel, warned that a gap in funding for the programme would create “significant risks for public safety and national security.”
The CVE is a database of all known vulnerabilities and is widely used to develop fixes to improve cybersecurity.
Without it, businesses could be at risk of hacking and cyber attacks.
The CVE Foundation, a consortium of retailers, tech companies and other stakeholders, had said it would take in the programme as a nonprofit earlier this week.
However, it is unclear if the foundation will still need to do so following CISA’s announcement.