jayjacobs
@jayjacobs
Followers
3K
Following
1K
Media
188
Statuses
4K
Founder, Partner and Data Scientist at Cyentia Institute. EPSS Author, https://t.co/Mpv6tSyfo0 and Co-author of Data-Driven Security https://t.co/JAzDtlMra5;
Joined May 2008
Have you wondered how Elon's takeover of Twitter will or has affected cyber security discussions? I've been tracking CVE (vulnerability) discussions on twitter for two years now and the recent trend makes me question the future of "infosec twitter". #CVE
https://t.co/ASsdTy9M8U
cyentia.com
"Infosec Twitter," a vibrant community of security practitioners, known for its insight, inspiration, and entertainment, is coming to an end.
31
91
244
I deny any responsibility. The only wave I’ve brought is a wave of confusion when people mistake me for some politician.
1
0
3
We've been working hard on EPSS and the next version is going live in one week on March 7th, expect the scores to shift around a bit. Details on our process: https://t.co/uGoYR8H5gy and performance is vastly improved as we continue to expand data partners!
0
9
14
Doing anything at 11ET today? How about joining me and @wendynather for an encore presentation of our 2022 RSA Conference talk for tips on measurably improving infosec programs.
rsaconference.com
0
2
3
And I stand by it.
"It controls the randomness so it is not overly random." - @jayjacobs, explaining something I will never understand.
0
0
2
Looking forward to our Thursday panel on risk based vuln management with @allanfriedman, @jayjacobs, @mroytman & @JGamblin.
Planning your #BHUSA schedule? Here’s what you need to know 👉 https://t.co/H8MjcmBwSW
0
6
10
Tell him his mom says hi.
0
0
7
While I appreciate all constructive feedback, I imagine you meant to tag @JayJacobs28.
0
0
1
Sasha put a lot of work into making the EPSS API a reality. Current and historical EPSS scores are now available on demand!
Super happy to announce that the #EPSS API is now live! Please see https://t.co/gb8vGlopqg for examples and more documentation. For example…
0
0
1
Join us at #SiRAcon22 where @jayjacobs will discuss a different approach, the Exploit Prediction Scoring System (EPSS), that improves measurement by collecting real-world data, using modern analysis, and mixing with domain expertise. More Info here: https://t.co/G22d6htCA4
0
2
2
Best job ever.
It's our birthday! Some may wonder why we'd start a company on April Fool's. Cyentia is a portmanteau of scientia (latin for “knowledge”) & "cyber." Our goal is to counter the widespread foolishness that plagues the cybersecurity industry with data-driven research. So it fits :-)
0
0
4
This isn't another post about Log4Shell. Instead it's about what Log4Shell can teach us about the Exploit Prediction Scoring System (EPSS) https://t.co/KAIh2REkbu
0
7
11
Looking forward to this discussion tomorrow. Have questions about EPSS? the data behind it? Join us tomorrow!
0
1
2
Anytime I hear superlatives like "worst vuln in recent history" my skepticalometer goes off. Heard that a lot in ref to Log4j and this chart from Fortinet 2H 2021 report seems to back it up. Log4j is like "Aw -Keep pushing Struts; you'll make it to the Big Leagues one day..."
0
1
1
"EPSS v2 is out!" I wrote up a brief history of how the objectives of EPSS have shifted with this release:
cyentia.com
EPSS, is an open, data-driven effort for estimating the probability that software vulnerabilities will be exploited in the wild.
0
8
16
EPSS v2 is the most important work done in the vulnerability world in the past 10 years. Free and open science to replace dogma:
You better look both ways because the Exploit Prediction Scoring System v2 #model is coming in hawt: https://t.co/rco0sa9YAn
#EPSS #zoolander
2
6
11
Updated model released for the Exploit Prediction Scoring System #EPSS improved performance and 168,325 CVEs scored today. https://t.co/tVR81LhRg4
1
6
14