ISACA Highlights Critical Lack of Quantum Threat Mitigation Strategies
An ISACA survey found that just 5% of organizations have a defined strategy to defend against quantum-enabled threats
Mitigation covers measures that reduce cybersecurity risk, limit damage from incidents, and help restore secure operations after an attack.
Search across headline titles and summaries.
Background for this topic.
Mitigation is the use of measures that reduce the likelihood or impact of a security threat. In information security, it commonly describes actions taken after a vulnerability, misconfiguration, or active attack is identified, as well as controls planned during system design. Mitigation may lower exposure without removing the underlying weakness; a software patch fixes a vulnerability, while disabling an affected feature or restricting access may provide temporary protection.
Effective mitigation connects vulnerability management with operational decisions: prioritize exposed, exploitable weaknesses on important assets; apply patches or configuration changes; and use compensating controls such as network segmentation, least-privilege access, multifactor authentication, or service isolation when a fix is unavailable. Threat intelligence can help assess exploitation urgency. Controls should be tested and monitored because they can fail or create new exposure. During an incident, containment actions—such as isolating a host or revoking credentials—are mitigations that limit spread while investigation and remediation proceed.
Weekly headline count for the current query.
An ISACA survey found that just 5% of organizations have a defined strategy to defend against quantum-enabled threats
EU security agency ENISA has released a new report outlining the threats and potential mitigations for the space sector
NIST has urged more research and emphasis on developing mitigations for attacks on AI and ML systems
Apple has patched a zero-day vulnerability being exploited in targeted attacks
Cloudflare warns of a surge in hyper-volumetric DDoS after revealing it stopped a massive 5.6Tbps attack
The security provider published mitigation measures to prevent exploitation
Agencies under the #Stopransomware banner publish details of RansomHub group’s tactics, indicators of compromise and essential mitigations
The advisory is associated with ten companion cybersecurity information sheets detailing how to implement each strategy
CISA’s advisory provides mitigations for vulnerabilities in ICS products used in critical infrastructure industries like energy, manufacturing and transportation
Ivanti has released mitigation steps after reports of active exploitation of Connect Secure and Policy Secure vulnerabilities
The guide outlines mitigation strategies and best practices to counteract prevalent cyber-threats
Security agency suggests mitigations and technical solutions
The guidelines highlight three key threat scenarios and recommends mitigations for each
The Agency will warn critical infrastructure entities to enable mitigation before an incident
New report outlines key mitigations for OT owners