Sandworm APT 利用 Active Directory 群組原則部署最新的 SwiftSlicer 資料破壞軟體
Sandworm, the Russian-backed APT responsible for NotPetya in 2017, has recently attacked an Ukrainian organization using a new wiper, SwiftSlicer....
網路安全概要: IoT Vendors Fail at Vulnerability Disclosures, While Cyber Threats Again Top Business Risks
Learn all about how most IoT product makers lack vulnerability disclosure policies. Plus, businesses again rank cyber risk as their top concern. Also, check out a new toolbox for cybersecurity awareness programs. Then scan the latest list of top malware. And much more!...
分析外部攻擊破綻資料何以能大幅改善您的安全策略
Slicing and dicing your external attack surface data can yield valuable insights to help you strengthen your overall security strategy. But you can’t effectively analyze this data manually or with a legacy tool. Learn how Tenable.asm can help you mine this data quickly and precisely....
Tenable.sc 6.0: A Major Update that Boosts Visibility and Productivity
Tenable.sc powers the risk-based vulnerability management programs (RBVM) of all types of organizations, anchoring the world’s most demanding cybersecurity environments. With the introduction of Tenable.sc 6.0, customers can now take advantage of significant new capabilities and enhancements, like a...
Tenable 網路觀察:Cybersecurity Among World Economic Forum’s Top 10 Global Risks, Cyber Concerns Still Hamper Cloud Value, and More
We've got a new, must-see episode of the Tenable Cyber Watch, the weekly video news digest that help you zero-in on the things that matter right now in cybersecurity. Happy Monday! Time to grab another cup of coffee and tune into this week's episode of the Tenable Cyber Watch newscast, t...
網路安全概要: CISOs Are Happier, but Dev Teams Still Lack Secure Coding Skills
Learn all about the spike in CISO job satisfaction. Plus, NIST mulls major makeover of its Cybersecurity Framework. Also, the struggle to develop secure apps is real. Then check out how Uncle Sam plans to use AI and ML to boost cybersecurity. And much more!...
EmojiDeploy: Smile! Your Azure web service just got RCE’d ._.
The Tenable Cloud Security research team discovered a remote code execution vulnerability affecting Microsoft Azure cloud services such as Function Apps, App Service, Logic Apps and others, as well as other cloud sovereigns....
Oracle 的 2023 年 1 月重要修補程式更新解決了 183 個 CVE
Oracle addresses 183 CVEs in its first quarterly update of quarterly with 327 patches, including 71 critical updates....
您不可能什麼弱點都修復:如何採取以風險資訊為導向的方式來修復弱點
Frameworks and standards for prioritizing vulnerability remediation continue to evolve, yet far too many organizations rely solely on CVSS as their de facto metric for exposure management. Here, we discuss other important frameworks and provide guidance on how Tenable can help....
Tenable 網路觀察:Top-In Demand Cyber Skills, Key Cloud Security Trends, Cyber Spending, and More
We've got a new, must-see episode of the Tenable Cyber Watch, the weekly video news digest that help you zero-in on the things that matter right now in cybersecurity. It's Monday! Time to grab another cup of coffee and tune into this week's episode of the Tenable Cyber Watch newscast, the w...
Microsoft Azure Virtual Machines: Public IP Configuration Is Not Always As It Seems
If you’re not familiar enough with the SKU attribute of the Azure public IP address, you may think you’re configuring your virtual machines as public to the internet … but you aren’t....
網路安全概要: 美國Gov’t Turns Up Heat on Breach Notifications, While Cyber Concerns Still Hamper Cloud Value
Learn all about the FCC’s plan to accelerate telecom breach reports. Plus, why cyber worries remain a cloud obstacle. Also, find out how to rate your cloud MSP’s cybersecurity strength. Then check out our ad-hoc poll on cloud security. And much more!...