PLUS: Firefox adds XSS protection; Leadership turnover at CISA; FTC exempts some data collection

Infosec In Brief DNS vulnerabilities are being addressed 84 percent faster in the UK public sector thanks to an automated vulnerability scanning system established as part of a program kicked off early last year.

The Department for Science, Innovation and Technology (DSIT) last week said its Vulnerability Monitoring System (VMS), introduced as part of the Blueprint for Modern Digital Government delivered in January 2025, has reduced the identification and remediation of DNS vulnerabilities in public sector sites from an average of 50 days to just eight.

According to the Department, VMS uses a combination of commercial and proprietary scanning tools to detect vulnerabilities and DNS configurations that could be compromised by attackers. The automated system constantly scans some 6,000 websites hosted by UK public sector agencies, DSIT said, and is configured to check for around 1,000 different vulnerabilities.

Along with its DNS vulnerability improvements, VMS has also reduced ...