網路安全概要: CISA Issues Incident Response Tool for Microsoft Cloud Services
Learn about a free tool for detecting malicious activity in Microsoft cloud environments. Plus, Europol warns about ChatGPT cyber risks. Also, how business email compromise (BEC) scammers are stealing merchandise. In addition, CISA alerts orgs about early-stage ransomware breaches. And much more! ...
據稱 3CX Desktop App for Windows and macOS 在供應鏈攻擊中遭到入侵
A softphone desktop application from 3CX, makers of a popular VoIP PBX solution used by over 600,000 organizations, has reportedly been trojanized as part of a supply chain attack...
混合雲端環境安全的 5 大核心原則
How to build a hybrid-cloud security strategy that is effective, scalable and affordable. ...
曝險管理: 平台方法的七大優勢
提到預防性網路安全,長久以來爭論的問題就在於操作各式各樣同級最佳單一功能解決方案的效果較佳?還是採取更整合式的平台方式較佳? Here are seven reasons an exposure management platform can help reduce cyber risk....
EPA 針對公共用水系統頒布網路安全法規:Tenable 能够带来哪些助益
EPA released new regulations that require states to assess cybersecurity risks at drinking water systems and ensure these systems have sufficient cyber protections. Here’s what you need to know — and how Tenable can help....
Tenable 網路觀察:英國網路機構對於 ChatGPT 提出隱私疑慮、CISA 方案應對在重大基礎設施中的勒索軟體問題以及更多議題
This week’s edition of the Tenable Cyber Watch unpacks CISA’s new pilot program that detects vulnerabilities in critical infrastructure and addresses the FBI’s plea for more ransomware victims to report attacks. Also covered: Why the U.K. National Cyber Security Centre is warning ChatGPT users to tr...
Federating Kubernetes Workloads with Cloud Identities
Your K8s workloads legitimately need access to sensitive cloud resources – federated identities let you grant it easily and securely....
網路安全概要: 利用最新的 CISA/NSA 最佳做法強化身分與存取管理安全
Learn about a new guide packed with best practices recommendations to improve IAM systems security. Plus, cybersecurity ranks as top criteria for software buyers. Also, guess who’s also worried about ChatGPT? Oh, and do you know what a BISO is? And much more! ...
Navigating Cloud Security: Why Segregating Environments from Dev to Production is so Important
Segregation in cloud environments is important for security — this post explores why and offers best practice tips for acting on it....
Tenable 網路觀察:探討美國國家網路安全策略、在黃金時刻利用強大的 AI 技術做好準備等等
This week’s edition of the Tenable Cyber Watch unpacks the White House’s National Cybersecurity Strategy and explores how artificial intelligence will help cyber teams with complex attacks. Also covered: Why software vendors should prepare to submit letters of attestation to the GSA. ...
OpenAI’s ChatGPT and GPT-4 Used as Lure in Phishing Email, Twitter Scams to Promote Fake OpenAI Tokens
Hoping to cash in on the massive interest around OpenAI’s GPT-4 – ChatGPT’s new multimodal model – scammers have launched phishing campaigns via email and Twitter designed to steal cryptocurrency. Check out how they’re carrying out the scams and how you can avoid becoming a victim....
網路安全概要: CISA 指出勒索軟體可能進行刺探利用的重大基礎設施企業中的弱點
Learn about CISA’s new program to help critical infrastructure organizations stamp out vulnerabilities associated with ransomware attacks. Plus, a U.S. government advisory with the latest on LockBit 3.0. Also, find out why the U.K.’s cyber agency is warning users about ChatGPT. And much more! ...