Federating Kubernetes Workloads with Cloud Identities
Your K8s workloads legitimately need access to sensitive cloud resources – federated identities let you grant it easily and securely....
網路安全概要: 利用最新的 CISA/NSA 最佳做法強化身分與存取管理安全
Learn about a new guide packed with best practices recommendations to improve IAM systems security. Plus, cybersecurity ranks as top criteria for software buyers. Also, guess who’s also worried about ChatGPT? Oh, and do you know what a BISO is? And much more! ...
Navigating Cloud Security: Why Segregating Environments from Dev to Production is so Important
Segregation in cloud environments is important for security — this post explores why and offers best practice tips for acting on it....
Tenable 網路觀察:探討美國國家網路安全策略、在黃金時刻利用強大的 AI 技術做好準備等等
This week’s edition of the Tenable Cyber Watch unpacks the White House’s National Cybersecurity Strategy and explores how artificial intelligence will help cyber teams with complex attacks. Also covered: Why software vendors should prepare to submit letters of attestation to the GSA. ...
OpenAI’s ChatGPT and GPT-4 Used as Lure in Phishing Email, Twitter Scams to Promote Fake OpenAI Tokens
Hoping to cash in on the massive interest around OpenAI’s GPT-4 – ChatGPT’s new multimodal model – scammers have launched phishing campaigns via email and Twitter designed to steal cryptocurrency. Check out how they’re carrying out the scams and how you can avoid becoming a victim....
網路安全概要: CISA 指出勒索軟體可能進行刺探利用的重大基礎設施企業中的弱點
Learn about CISA’s new program to help critical infrastructure organizations stamp out vulnerabilities associated with ransomware attacks. Plus, a U.S. government advisory with the latest on LockBit 3.0. Also, find out why the U.K.’s cyber agency is warning users about ChatGPT. And much more! ...
Microsoft 的 2023 年 3 月 Patch Tuesday 解決了 76 個 CVE (CVE-2023-23397)
Microsoft addresses 76 CVEs including two zero-days exploited in the wild, one of which was publicly disclosed....
Tenable 網路觀察:Tenable 2022 年威脅態勢報告、2023 年最重大的網路風險以及網路架構師和工程師的薪水大幅增加
This week’s edition of Tenable Cyber Watch unpacks the top eight cybersecurity risks organizations face in 2023. Plus, we talk about the continued threat of unpatched, known vulnerabilities that are still being exploited by threat actors. Finally, we look at a new study that shows salaries are incre...
網路安全概要: Find MITRE ATT&CK Complex? Need Help Mapping to It? There’s an App for That!
Learn about a new tool that streamlines MITRE ATT&CK mapping. Plus, known vulnerabilities remain a major cyber risk – just ask LastPass. Also, discover why SaaS data protection remains difficult. Plus, a look at the U.S. National Cybersecurity Strategy. And much more!...
A New Incentive for Using AWS VPC Endpoints
If you haven’t been using VPC endpoints until now, AWS' two new condition keys should make you consider doing so....
Tenable OT 安全性中有哪些新功能:卓越的 IT/OT/IoT 資產搜尋以及進階威脅偵測等等
Tenable OT Security, formerly known as Tenable.ot, brings hybrid discovery capabilities and increased visibility for the broadest range of IT and OT devices, making it easier than ever for CISOs to manage security and risk....
多重雲端合規性的挑戰
使用 Amazon Web Services (AWS)、Microsoft Azure 和 Google Cloud Platform (GCP) 等公用雲端的企業都明白,每一款平台都有自己的一套運作方式,各平台之間的差異使得企業難以顧及所有平台的安全。In a recent episode of the Tenable Cloud Security Coffee Break we...
