The mission of the CVE Program is to identify, define, and catalogue publicly disclosed cyber security vulnerabilities. This aligns with ICT’s own commitment to provide customers with the tools and the resources needed to harden systems against the latest cyber security threats.

Vulnerabilities that are discovered are assigned and published to the CVE List. CVE Records published in the catalogue enable programme stakeholders to rapidly discover and correlate vulnerability information used to protect systems against attacks.

Daniel Tolcher, IT & Cybersecurity Manager for ICT, said, “At ICT we’re dedicated to providing our customers with the information needed to protect against the latest cyber security threats, ensuring their systems are always kept up to date".

ICT joins 358 leading organisations from 40 countries that have been accepted into this programme. Sponsored by the Cybersecurity and Infrastructure Security Agency of the U.S. Department of Homeland Security, CVE is considered the gold standard for publishing vulnerabilities. ICT takes on this responsibility alongside major tech brands, Microsoft, Google, Amazon, IBM and others, who are authorised to assign CVE IDs to vulnerabilities affecting product within its scope.

Tolcher continues, “The global average cost of a data breach in 2023 was USD 4.45 million, a 15% increase over 3 years. The international, community-based effort of the CVE Program is dedicated to supporting the efforts of the Information technology and cyber security professionals who address these vulnerabilities and ICT is proud to be welcomed”.

In addition to the CVE list, ICT welcomes the identification of vulnerabilities, which can be lodged via the ICT website.