Apache Log4j 缺陷:網路安全產業的福島核電廠等級重大事故
Organizations around the world will be dealing with the long-tail consequences of this vulnerability, known as Log4Shell, for years to come....
Apache Log4j 缺陷讓第三方軟體成為目光焦點
Even in the most mature organizations, addressing the issue, also known as Log4Shell, requires a complex mix of software development practices, vulnerability management and web application scanning....
協助將貴公司面向公眾的資產和 Web 應用程式風險降至最低的四個問題。
Ask the following four questions to help reduce cyber risk in your public-facing assets and web apps....
New Data Reveals Company Size May Be Tied To Remote-Worker Cybersecurity Practices
Employees at the largest firms are least likely to adhere to wifi and password security guidelines....
Tales Of Zero-Day Disclosure: Tenable Researchers Reveal Recommendations for a Successful Experience
Real life stories of vulnerability discovery and disclosure from Tenable’s Zero Day Research team offer guidance you can use to refine your organization's policies....
How to Choose an OT Cybersecurity Solution Vendor
Hint: choose a leader in ICS security....
CISA’s Binding Operational Directive on Managing Unacceptable Risk Vulnerabilities in Federal Enterprises Is Key to Stopping Federal Cyberattacks
Federal agencies should leverage Tenable’s vulnerability priority rating (VPR) to effectively manage the nearly 300 vulnerabilities identified....
Active Directory is Now in the Ransomware Crosshairs
A flurry of ransomware operators are now targeting Active Directory (AD) as a core step in the attack path. Understanding the details can help you ensure your AD environment is secure....
過於以 CVE 為主會使企業容易遭到攻擊
CWEs and other vulnerabilities necessitate a single dashboard for complete cyber risk assessment A growing number of cybersecurity professionals have evolved their legacy vulnerability management programs to incorporate prioritizing remediation efforts based on which vulnerabilities pose the ...
3 Qualifications Cyber Safety Review Board Members Must Have
Expertise in security forensics, technology development and aligning cybersecurity with business goals are essential to advising federal policymakers following significant cyber incidents. In May, President Joe Biden signed an executive order to address the barrage of cyber incidents and increasing...
Spotlight on Japan: Digital Transformation Initiatives Heighten Risk Levels
As Japanese organizations roll out digital transformation initiatives and expand remote workforces, security teams need to address new risks in the new world of work. The rapid transition to remote work and an intense focus on meeting customer demands through digital transformation initiatives have...
Spotlight on Brazil: Remote Work Requires New Risk Management Practices
Remote work is here to stay — along with the risks it introduces to Brazilian organizations, if not managed properly. 以下是幾點須知。The pandemic forced many Brazilian organizations to shift employees from working largely in offices to entirely remote in the blink of an eye. Technolo...
