DataBee®, a Comcast Company, Introduces Novel and Automated Way to Manage Risk Posed by Asset Exposure and Vulnerabilities

Mar 05 2025 13:00 GMT

DataBee for Vulnerability and Asset Exposure Management helps security and compliance teams quickly and efficiently remediate vulnerabilities and compliance gaps

PHILADELPHIA--(BUSINESS WIRE)--Mar. 5, 2025-- DataBee^®, a Comcast Company, today announced DataBee for Vulnerability and Asset Exposure Management, which works on top of the DataBee security, risk and compliance data fabric platform. The new solution makes creation, maintenance and updates of asset and application inventory significantly simpler for IT teams. Through automated asset and application owner discovery, it also helps security and compliance teams quickly and efficiently remediate vulnerabilities and compliance gaps. DataBee suggests owners of unclaimed or unknown devices and applications using any amount of data the customer can provide, even if that data is very limited.

Application owner discovery is an important capability to have at a time when there’s a dire need to reduce the time from discovery to remediation of vulnerabilities. In 2024, over 40,000 new vulnerabilities were disclosed in public CVE records, up from approximately 29,000 in 2023¹. While vulnerabilities were exploding in number, the time taken for attackers to exploit new vulnerabilities shrank dramatically – from 32 days in 2022 to just five days in 2023, according to a study conducted by Mandiant².

“When the cybersecurity team finds a vulnerability, the next challenge is to find the right team and the right person to take action on it,” said Scott Adams, Executive Director of Information Security at Comcast, and a frequent collaborator with the DataBee engineering and product development team. “A great start to improving closure rates includes assigning findings to the right team on day one of the remediation SLA. The challenge is that until you find the right team, very little remediation work is happening to close that vulnerability. But DataBee for Vulnerability and Asset Exposure Management can help change this equation by determining those ‘day one’ team and people assignments.”

DataBee for Vulnerability and Asset Exposure Management expands on an earlier Security Hygiene product and features new Vulnerability Insights, and Asset & Application Inventory consoles in the DataBee UI which provides vulnerability and IT asset managers alike with the ability to:

Automate asset & application inventory creation and maintenance: The security data fabric weaves together the data you have to create and manage your asset and application inventory
Accelerate risk reduction through higher quality data: Vendor managed and optimized data mappings reduce complexity to accurately and quickly address exposures
Discover asset and application owners: Quickly find responsible owners
Pinpoint exposures such as:
- Past Due Vulnerabilities: Customize to your SLAs by severity
- Devices that Drop Off of Scans: Based on your organization’s defined scan frequency
- Top Offenders: Rank owners with the most vulnerabilities
Automate the remediation process: Speed up remediation efforts by creating and assigning tickets to the right owners for patching vulnerabilities using some of the most widely used IT workflow tools

With patent-pending entity resolution underpinning DataBee for Vulnerability and Asset Exposure Management, the solution also uniquely provides DataBee EntityViews™ for applications,a simple way to see all the details about an application including the users, devices, organization, application version and vulnerabilities associated with it.

“Unburdening IT asset managers and vulnerability teams from the time-consuming process of finding owners for unmanaged applications and devices means they can spend more time on the important work of promoting efficient and secure operations,” said Jill Cagliostro, Director of Product Management at DataBee. “It can also help cross-functional conversations go from combative to collaborative because data automation, not laborious guesswork, identifies the rightful owners of assets and applications that need patching or updating.”

Added Nicole Bucala, General Manager of DataBee, “Partnering with our colleagues on Comcast’s cybersecurity and information technology teams, we’ve built an excellent tool for creating and maintaining asset and application inventories, whether you have a CMDB or not. This is an incredibly helpful capability when you consider that asset data is the foundation for almost all security and risk analysis. Given how dynamic the technology landscape is, especially in a large organization, when your CMDB and application list can keep pace with change, it has an amazing ripple effect on the time within which vulnerabilities can be addressed.”

DataBee for Vulnerability and Asset Exposure Management is available now.

¹ The CVE Program, Published CVE Records, https://www.cve.org/about/Metrics

² Mandiant, Google Cloud blog, October 15, 2024, https://cloud.google.com/blog/topics/threat-intelligence/time-to-exploit-trends-2023/

About Comcast Corporation

Comcast Corporation (Nasdaq: CMCSA) is a global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, our businesses reach hundreds of millions of customers, viewers, and guests worldwide. We deliver world-class broadband, wireless, and video through Xfinity, Comcast Business, and Sky; produce, distribute, and stream leading entertainment, sports, and news through brands including NBC, Telemundo, Universal, Peacock, and Sky; and bring incredible theme parks and attractions to life through Universal Destinations & Experiences. Visit www.comcastcorporation.com for more information.

For more information on DataBee, visit databee.buzz.

View source version on businesswire.com: https://www.businesswire.com/news/home/20250305795607/en/

Media Contacts

Joel Shadle
joel_shadle@comcast.com
703.906.2645

Source: DataBee