Resilient Cyber Resilient Cyber w/ Patrick Garrity - 2025 VulnMgt Research Roundup
Dec 12, 2025
In this discussion, Patrick Garrity, a vulnerability researcher from VulnCheck, dives into the 2025 trends in vulnerability management. He reveals how attackers are evolving tactics, making security vendors prime targets due to outdated code. Patrick also discusses the fragmentation in vulnerability databases and the importance of quality data in maintaining effective defenses. His insights into coordinated disclosure processes and predictions for exploitation trends in 2026 paint a compelling picture of the future landscape in cybersecurity.
AI Snips
Chapters
Books
Transcript
Episode notes
Attackers Shift To Exploitation
- Attackers shift opportunistically when defenses like MFA reduce credential theft.
- Exploitation focus moved toward internet-facing and infrastructure components like VPNs and servers.
Security Tools Are Attack Surfaces
- Security products are high-value targets because they sit at the network edge and hold privileged access.
- Many security tools run on legacy codebases and thus remain attractive, pervasive attack surfaces.
Don't Rely Only On One KEV Source
- Use multiple exploitation data sources beyond CISA KEV to find real-world exploitation indicators.
- Validate sources and prefer vendor advisories, CERTs, research groups, and direct evidence like payloads.
