Common Malware Enumeration (CME)
News > Industry News Coverage  

Industry News Coverage

Below is a comprehensive monthly review of the news and other media's coverage of CME. A brief summary of each news item is listed with its title, author (if identified), date, and media source.

April 2007

Network World, April 30, 2007

CME was mentioned in an op-ed article entitled “How to find your security holes: Check your network for CVEs” by NetClarity, Inc. founder and CTO Gary S. Miliefsky in the April 30, 2007 issue of Network World. The main topic of the article is that hackers have caused billions of dollars in damages and that they "have a plethora of tools available in their war chests ranging from spyware, rootkits, Trojans, viruses, worms, bots, and zombies to various other blended threats" and these security holes must be fixed. CME is mentioned when the author states: "Not all exploits are created equal. Most are evolutionary improvements on existing exploits. What's very interesting is that the average exploit currently has a dozen names. With the advent of the Common Malware Enumeration (CME) standard, there will be one shared, neutral indexing capability for malware but that [is] … just starting to catch on …"

The author also mentions the Common Vulnerabilities and Exposures (CVE) project and concludes the article by stating that: "Removing critical CVEs is considered due care. Frequent and consistently scheduled security audits for CVEs and their removal is the only prudent thing to do as a proactive information security manager. Now is the time to find and fix your CVEs so you can be more productive and suffer less downtime and successful hacker attacks. If you remove all of your CVEs you'll be as close to 100% secure as possible."

CNET Reviews, April 13, 2007

CME was mentioned in an April 13, 2007 article entitled “Taking the Internet by storm” on CNET Reviews. The main topic of the article is the recurrence of CME-711, also called Storm. CME is mentioned when the author states: "Recently, Mitre.org created the Common Malware Enumeration, which seeks to classify worms and Trojan horses under a common designation. CME-711 refers to the Storm worm, and by visiting the Mitre site you can see how various antivirus vendors have labeled the previous variations of this worm: CA calls it "Peacoan," Esset calls it "Fudip," Norman calls it "Tibs," and F-Secure calls it "Zhelatin." By whatever name, CME-711 is making history." The article was written by Robert Vamosi.

Back to top