常見問答集:新的 SEC 網路安全規則對資訊安全主管意味著什麼?
On July 26, the SEC voted 3-2 to adopt new rules which would require several new cybersecurity disclosures from publicly traded companies. Here’s what cybersecurity leaders need to know....
網路安全概要: SEC 要求上市公司提高網路安全透明度
Find out what’s in the SEC’s new cybersecurity disclosure rules. 此外,CISA 也分析了影響重大基礎設施企業的網路風險。同時也歡迎查看有關影子 IT 的指引以及大幅提升資安認知方案的訣竅。And much more!...
Tenable's 2023 Capture The Flag: Are You Ready to Test Your Hacking Skills?
Tenable is bringing its annual hacking competition to Black Hat 2023 in a hybrid in-person and online experience, giving competitors around the world a chance to have fun and test their skills....
How To Obtain the Right Cybersecurity Insurance for Your Business
Cyber insurance has become a necessity, and the cost and effort to obtain it can be considerable. Still, your organization can boost its odds of landing the coverage it needs at a fair price that’s consistent with its risk profile. Check out the invaluable advice from a panel of experts from the ins...
CVE-2023-35078: Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core Unauthenticated API Access Vulnerability
Critical vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks...
AI Is About To Take Cybersecurity By Storm: Here's What You Can Expect
Generative AI will elevate the practice of successful preventive cybersecurity, but how will it manifest itself across cybersecurity products? Here are a few game-changers to look for....
Tenable 網路觀察:美國Gov Outlines Cybersecurity Investment Priorities, Study Shows Cyber Teams Are Too Confident, and more
This week’s edition of Tenable Cyber Watch unpacks CISA and the NSA’s CI/CD defense guidance and explores the White House’s cybersecurity investment priorities. Also covered: why one study says cyber teams are too confident. ...
網路安全概要: CISOs Say Breaches Are Down, but Staffing Remains Difficult
Find out what’s working well for CISOs – and what could be better. Plus, why you should pay attention to the FTC’s investigation into ChatGPT-maker OpenAI. Also, check out a primer for C-level execs on adopting generative AI. Plus, the free cloud security tools CISA recommends you use. And much more...
Oracle 2023 年 7 月重大修補程式更新中解決了 183 個 CVE
Oracle addresses 183 CVEs in its third quarterly update of 2023 with 508 patches, including 76 critical updates....
CVE-2023-3519: Critical RCE in Netscaler ADC (Citrix ADC) and Netscaler Gateway (Citrix Gateway)
Citrix has released a patch fixing a remote code execution vulnerability in several versions of Netscaler ADC and Netscaler Gateway that has been exploited. Organizations are urged to patch immediately....
Tenable 網路觀察:NAIAC Submits First Report to Biden, 80% of Employees Oppose ChatGPT Bans at Work, and more
This week’s edition of Tenable Cyber Watch unpacks the NAIAC’s first report delivered to President Biden and explores Glassdoor’s survey finding that 80% of employees oppose ChatGPT bans at their workplace. Also covered: CISA releases two new guides aimed at helping cyber teams protect cloud apps. ...
網路安全概要: CISA and NSA Dive into CI/CD Security, While MITRE Ranks Top Software Weaknesses
Learn about the guidance from the U.S. government for defending CI/CD pipelines. Plus, check out the 25 most dangerous software weaknesses. Also, what developers like about AI tools – and what they don’t. And much more!...