By analyzing vulnerabilities, we hope to identify and mitigate the issues before they become a significant security threat. Our vulnerability information comes from public sources and from reports sent directly to us. Once we identify a vulnerability, we work with the appropriate technology producers to resolve the issue.

• Vulnerability remediation page
• Vulnerability analysis blog

In addition to identifying current vulnerabilities, we want to prevent the introduction of new ones. We are establishing practices that vendors can use to improve the security and quality of their software.

• Secure coding project page
• Secure coding standards

Internet threats are not confined to geographic borders. To promote a global response capability, we help organizations and countries establish computer security incident response teams (CSIRTs), and we work with existing teams to coordinate communication and response during major security events.

• CSIRT development
• National CSIRTs

Our artifact analysts examine, catalog, and sometimes reverse-engineer malicious code. These activities help us to better understand how the code works and allow us to identify trends and patterns that may reveal exploitable vulnerabilities or other potential threats.