The Common Vulnerabilities and Exposures (CVE) program is the global standard for identifying and naming software vulnerabilities. Established in 1999, CVE assigns unique IDs to known cybersecurity flaws through a network of trusted organizations known as CVE Numbering Authorities (CNAs). CVE data serves as the backbone for global cyber defense collaboration. Sustained investment, transparency, and shared responsibility are essential to ensuring the continuity of this critical program and preventing fragmentation of the global vulnerability landscape.
Read Next
2025 Year in Review: Advancing Cybersecurity Through Collaboration
In 2025, the cybersecurity ecosystem became more complex and we’ve seen governments rethink critical policy frameworks. Nonetheless, the Center has remained steadfast in strengthening cybersecurity through policy, collaboration, and education.
FinCEN: Ransomware Payments Peaked in 2023
Ransomware payments peaked in 2023 at $1.1 billion with 1,512 reported incidents and dropped by a third to $734 million on 1,476 incidents in 2024, according to FinCEN.
Europe’s DMA: A Cybercriminal's Paradise?
Mobile devices serve many purposes and a single vulnerability can wreak havoc. This paper focuses on the DMA provisions around mobile OS's, identifies the key risks, and makes makes recommendations to void weakening the mobile ecosystem.
