Tenable 部落格
網路安全概要: Global Agencies Target Criminal “Bulletproof” Hosts, as CSA Unveils Agentic AI Risk Framework
Avoiding the Security Potluck: Good Governance Helps You from Code to Cloud
What's involved in shifting cloud security responsibilities to the app development team with governance by the security team?
AA23-215A: 2022's Top Routinely Exploited Vulnerabilities
A joint Cybersecurity Advisory collaborated on by multiple international agencies highlights the top routinely exploited vulnerabilities of 2022.
CNAPPgoat:The Multicloud Open-Source Tool for Deploying Vulnerable-by-Design Cloud Resources
Here’s all you need to know about CNAPPgoat, our open-source project designed to modularly provision vulnerable-by-design components in cloud environments.
Using the Service Location Protocol (SLP) to Find Exposed Management Interfaces
Exposed management interfaces are valuable entry points for attackers. CISA Binding Operational Directive 23-02 calls for getting them off the internet. Here’s a novel approach for finding some of these elusive devices using SLP.
Unpacking the Shared Responsibility Model for Cloud Security: How To Avoid Coverage Gaps and Confusion
Confusion over the scope of customer responsibility for cloud security causes control gaps and exposes businesses to risks of attack and non-compliance. Secure configuration of customer-managed resources is the most critical factor for reducing cloud risk. However, it can only be achieved by first…
What's New in Tenable OT Security 3.16: Elevating Building Management System Security and User Experience
Tenable OT Security 3.16 introduces advanced security for building automation systems, a streamlined interface and simplified upgrade process, empowering users to be at the forefront of securing their IT, OT, BMS and IoT assets with confidence.
Tenable 網路觀察:美國政府發布網路安全建置計畫、CISA 分享雲端安全免費工具等等
This week’s edition of Tenable Cyber Watch unpacks the White House’s National Cybersecurity Strategy Implementation Plan and offers new tips and guidance for C-level executives regarding generative AI adoption. Also covered: CISA shares its factsheet offering free tools to help secure cloud…
常見問答集:新的 SEC 網路安全規則對資訊安全主管意味著什麼?
On July 26, the SEC voted 3-2 to adopt new rules which would require several new cybersecurity disclosures from publicly traded companies. Here’s what cybersecurity leaders need to know.
網路安全概要: SEC 要求上市公司提高網路安全透明度
Find out what’s in the SEC’s new cybersecurity disclosure rules. Plus, CISA analyzes the cyber risks impacting critical infrastructure organizations. Also, check out guidance for shadow IT and tips to boost your security awareness program. And much more!
聯絡我們的銷售團隊