Vulnerability information collection and management tool "SIDfm (S IDFM) of Cyber Security Cloud, Inc. (Headquarters: Shinagawa-ku, Tokyo; President and CEO: Toshihiro Koike; hereinafter referred to as "our company") was introduced to Benesse Corporation (Headquarters: Okayama City, Okayama Prefecture; President and CEO: Kobayashi Jin; hereinafter referred to as "Benesse"), which operates "Kodomo Challenge" and "Shinkenzemi", among other games.

Reason for introducing SIDfm
Benesse has been conducting vulnerability management operations as part of its security measures for itself and all Benesse Holdings Group companies.
The company checks vulnerability information on a daily basis, translates English information into Japanese, and manually collects missing information by visiting security sites. However, we felt the need to supplement these tasks with tools in order to improve efficiency and eliminate the part of the work that was being done by a single person.
To address these issues, we introduced "SIDfm" because it automatically collects the necessary vulnerability information, provides information with Japanese commentary interpreted by security analysts from a professional perspective, and streamlines the coordination of collected vulnerability information with the staff of group companies.

[Comment from Yuki Shibata, Manager of the Security Services Division, Infrastructure and Technology Department, Benesse Corporation]
Due to the recent intensification of cyber attacks, it has become increasingly important to quickly and accurately collect, analyze, and respond to vulnerability information.
Previously, multiple people visited news sites to gather information on vulnerabilities, which resulted in inconsistent time and gaps in information gathering, but by introducing "SIDfm," we were able to improve the speed and quality of information gathering. Some of the software frequently used at Benesse was not compatible, but after submitting a request, four pieces of software were made compatible. We are also very grateful for their willingness to evolve the service together with their users.
We hope that by utilizing "SIDfm" we will be able to provide our products and services to our customers safely and securely.

■About the vulnerability information collection and management tool "SIDfm"
SIDfm is a vulnerability information collection and management tool that streamlines vulnerability response operations. It automatically collects and accumulates vulnerability information for OS, applications, and network products from around the world. With a function that allows you to quickly identify only the information that is necessary for your company, you can see at a glance the vulnerabilities that need to be addressed and the details of the measures to be taken. In addition, it can even record and manage the progress of vulnerability countermeasures.

The biggest feature of "SIDfm" is the quality of its content. Security analysts interpret metadata from NVD, KEV, vendor advisory information, JVN, and other sources from an expert perspective, assess risk, and provide vulnerability information with "unique indicators" and "explanations in Japanese." With just the information from "SIDfm," you can immediately understand and grasp the affected versions and countermeasures in Japanese from the overview, allowing you to focus resources on addressing vulnerabilities that should be prioritized.

"SIDfm" service site: https://sid-fm.com/

About Cyber Security Cloud, Inc.
Address: 13th floor, JR Tokyu Meguro Building, 3-1-1 Kami-Osaki, Shinagawa-ku, Tokyo
Representative: Toshihiro Koike Representative Director, President and CEO
Established: August 2010
URL: https://www.cscloud.co.jp/
With the vision of "creating a cyberspace that people all over the world can use safely and securely," we are a Japanese security manufacturer that provides vulnerability information collection and management tools and fully managed security services for cloud environments, centered on web application security services that make full use of the world's leading cyber threat intelligence. As one of the global companies in cybersecurity, we will contribute to solving social issues related to cybersecurity and provide added value to society.