Why make a hard job harder? May 2025 CINS Brief
Our Take
Just Fix It
There's no shortage of crazy news out there right now. Vulnerabilities are up and our ability to mitigate them is down. So, seeing things like the CVE database backlog and all the changes at MITRE and CISA right now — we just want somebody to fix those things. What can we do in the meantime?
New Podcast
Beyond the SIEM: Network Visibility for Municipal Cybersecurity - Season 2, Ep. 1
It’s a common refrain from small municipalities: how do we provide robust cybersecurity protection with limited resources and budget? The City of Newton, Kansas, has just two IT staff members supporting 230 employees and serving 20,000 residents. The team wanted better visibility into their network and needed to enhance their protection against evolving threats. But the solution couldn’t strain their budget or require extensive manpower. To kick off Season 2 of Cybersecurity on the Front Lines, IT Director Brenda Ternes and Cybersecurity Architect Nathan Wallace share how they navigated the critical selection process.
View or Listen to the Cybersecurity on the Front Lines Podcast
In Other News
Our familiar themes of layered security and an open dialog with leadership can provide some relief for all the cybersecurity issues that need fixing right now. Here are a few related articles from May that you may have missed.
- NIST proposes new metric to gauge exploited vulnerabilities (HelpNet Security)
- Survey: Too Much Time Being Spent on Managing Cybersecurity Tools (Security Boulevard)
- Life Without CVEs? It's Time to Act (Dark Reading)
- How CIOs and CISOs can improve their collaboration (CIO Dive)
- Boards Need a More Active Approach to Cybersecurity (Harvard Business Review)
- How CISOs can talk cybersecurity so it makes sense to executives (HelpNet Security)
Nomic News
Threat actors are increasing in sophistication and aren’t making exceptions for the small or underprepared. The same threats that target Fortune 500s also come after SMBs and organizations just growing into their digital maturity. Smaller organizations now need to be protected more than ever, but where to start? In recent years, managed services have stepped in to solve this paradox in various novel ways.
Learn How Managed NDR Protects SMBs
Why is it called the "CINS Brief" Newsletter?
"CINS" is a reference to the CINS Army. As one of the first widely distributed threat intelligence feeds, CINS Army filters out most of the noise caused by malicious scanners, allowing analysts to focus on more important threats. Its strength comes from the source of its data: A diverse Nomic customer base made up of real networks, with real people behind them.
