資安主管與 DevOps 共同建立安全文化的 3 種方法
瞭解貴公司如何透過消除安全團隊與 DevOps 團隊之間的溝通不良,進而大幅提升安全工作的效率。 Establishing a strong security culture that bridges the gap between DevOps and security is one of the greatest challenges that CISOs and other security leaders face. Because ...
公布 2022 年 Tenable Assure 合作夥伴大獎得主
讓我們恭喜協助全球企業降低網路風險的防禦菁英。 網路安全一向是團隊合作才能達成的事情。Day in, day out, defenders rely on an ecosystem of teams, partners and vendors to address the evolving threat landscape and deliver holistic security. ...
Microsoft 2022 年 5 月的 Patch Tuesday 解決了 73 個 CVE (CVE-2022-26925)
Microsoft addresses 73 CVEs in its May 2022 Patch Tuesday release, including two zero-day vulnerabilities, one of which was exploited in the wild....
負責任的網路安全時代終於來臨
The SEC’s proposed rule on cybersecurity promotes transparency and encourages free market forces....
CVE-2022-1388: F5 BIG-IP 中的身分驗證迴避
CVE-2022-1388:F5 BIG-IP 中的身分驗證迴避 F5 修補了 BIG-IP 系列產品中的身分驗證迴避弱點,它會導致任意指令的執行。 This vulnerability is actively being exploited. Update May 10: The Identifying Affected Systems section now reflect...
利用 Tenable.cs 和 HashiCorp Terraform Cloud 管理與修復雲端基礎架構錯誤設定弱點
因可預防的錯誤設定而造成的雲端資安外洩事件愈來愈常發生。 Here’s how you can lower your risk with a new integration between Tenable.cs and Terraform Cloud....
如何選擇現代化 CSPM 工具來降低您的雲端基礎架構風險
Cloud Security Posture Management solutions have become a must for detecting and fixing misconfigurations in public clouds — from code to runtime....
IDC Ranks Tenable Number One in Worldwide Device Vulnerability Management Market Share for 2020
The research firm’s latest report also provides market insights security professionals can use to improve their vulnerability management strategy....
Test Your Hacking Skills: Join Tenable’s Annual CTF Competition!
Tenable launches the 2022 Capture the Flag event for the security community, running from June 9-13. Get ready to test your hacking skills, practice new ones and see how you measure up against others in the industry by joining this year’s Capture the Flag event. Each year, Tenable hosts its ...
Verizon’s Data Breach Report – Insights for Cloud Security Professionals
Select highlights from Verizon’s recent Data Breach Investigations Report that may interest cloud security professionals — and suggested actions to take....
Hot Patches for Log4Shell Introduced Multiple Vulnerabilities in Amazon Web Services
Hot Patches for Log4Shell Introduced Multiple Vulnerabilities in Amazon Web Services Amazon Web Services has addressed vulnerabilities introduced by the hot patches released in response to the Log4Shell vulnerability in December. Background On April 19, researchers with Palo Alto’s Unit...
Oracle April 2022 Critical Patch Update Addresses 221 CVEs
Oracle addresses 221 CVEs in its second quarterly update of 2022 with 520 patches, including 27 critical updates....