網路安全概要: Discover the Most Valuable Cyber Skills, Key Cloud Security Trends and Cyber’s Big Business Impact
January 6, 2023新年快樂!Learn all about the cybersecurity expertise that employers value most; Google Cybersecurity Action Team’s latest take on cloud security trends; a Deloitte report on cybersecurity’s growing business influence; a growth forecast for cyber spending; and more!
CVE-2022-47523: ManageEngine Password Manager Pro, PAM360 and Access Manager Plus SQL Injection Vulnerability
January 5, 2023Zoho patches a newly disclosed high-severity SQL injection flaw in several ManageEngine products; attackers have historically targeted several ManageEngine products over the last three years.
Visibility of the Unknown: Understanding EASM and How It Can Help
January 3, 2023External attack surface management (EASM) is difficult and oftentimes confusing, especially in a world of poor inventory controls and a growing attack surface. This blog discusses what's required to do EASM successfully.
Tenable 網路觀察:What Do Our Experts Predict for 2023?
January 2, 2023Banish the post-holiday blues with news you can use: this week's episode of Tenable Cyber Watch takes a look at four cybersecurity trends to watch for 2023. Learn how extortion tactics will reshape ransomware, OT security, SaaS worries and protecting the cloud are top of mind for our experts.
網路安全概要: Key 2022 Data for Cloud Security, Vulnerability Management, EASM, Web App Security and More
December 30, 2022As 2022 ends, we highlight important data points that shine a light on the trends, challenges and best practices that matter to cybersecurity leaders eager to boost their exposure management and reduce their organizations’ cyber risk.
CVE-2022-47939: Critical RCE Vulnerability in Linux Kernel
December 29, 2022A critical remote code execution vulnerability in the Linux kernel has been publicly disclosed by Trend Micro's Zero Day Initiative in its ZDI-22-1690 advisory. The vulnerability has been given a CVSSv3 of 10.0. There are no reports of active exploitation.
網路安全概要: Six Predictions from Tenable for 2023
December 23, 2022As 2022 draws to a close, we asked Tenable experts what they expect for the new year. After reading the tea leaves, they’re forecasting developments in extortion attacks, OT security, SaaS threats, metaverse risks and more!
Patch Tuesday’s Impact on Cybersecurity Over the Years
December 22, 2022Dive into the history of Patch Tuesday and learn how it continues to influence the ways security teams manage patches.
CVE-2022-37958: FAQ for Critical Microsoft SPNEGO NEGOEX Vulnerability
December 21, 2022Microsoft recently reclassified a vulnerability in SPNEGO NEGOEX, originally patched in September, after a security researcher discovered that it can lead to remote code execution. Organizations are urged to apply these patches as soon as possible.
Tenable 網路觀察:維持元宇宙的治安、保護 AI 與 ML、Daixin 對醫療機構的威脅以及改變為整合式網路平台
December 19, 2022To help you zap those Monday blahs, here’s a caffeinated shot of cyber news you can use: Police chiefs must get hip to the metaverse. CISOs are shifting to integrated cybersecurity platforms. There's new guidance for securing ML and AI systems. Hospitals face a ransomware threat from the Daixin cyber gang.
網路安全概要: 網路釣魚詐騙、薪資趨勢、元宇宙的風險以及 Log4J 問卷調查
December 16, 2022Get the latest on worrisome phishing stats; businesses’ embrace of the metaverse, come what may; a (small) improvement in CISO job stability; the compensation cost of security leaders; and more!
Microsoft 2022 年 12 月份 Patch Tuesday 解決了 48 個 CVE (CVE-2022-44698)
December 13, 2022Microsoft addresses 48 CVEs including two zero-day vulnerabilities, one that has been exploited in the wild (CVE-2022-44698) and one that was publicly disclosed prior to a patch being available (CVE-2022-44710).
