Tenable 部落格
隆重推出 Tenable AI Exposure: 告別猜測,開始保護您的 AI 攻擊破綻
Microsoft 2022 年 12 月份 Patch Tuesday 解決了 48 個 CVE (CVE-2022-44698)
Microsoft addresses 48 CVEs including two zero-day vulnerabilities, one that has been exploited in the wild (CVE-2022-44698) and one that was publicly disclosed prior to a patch being available (CVE-2022-44710)....
CVE-2022-27518:Citrix ADC 和閘道中的未經授權 RCE
Citrix has patched a critical remote code execution vulnerability in its Gateway and ADC products. This vulnerability has reportedly been exploited as a zero day; organizations should patch urgently....
如何評估 IT 服務供應商與 MSP 的網路安全準備程度
Improperly evaluating the cybersecurity capabilities of prospective IT service providers and managed service providers (MSPs) can put your organization's data and systems at risk. A new guide from CompTIA can help you ask the right questions....
CVE-2022-42475:Fortinet 修補了 FortiOS SSL VPN 中的零時差攻擊弱點
Fortinet has patched a zero day buffer overflow in FortiOS that could lead to remote code execution. There has been a report of active exploitation and organizations should patch urgently....
當元宇宙進入您的攻擊破綻時,會發生什麼事?
Tenable polled 1,500 cybersecurity, IT and DevOps professionals about their top concerns in the nascent virtual reality worlds of the metaverse. Here's what we found out....
Tenable 網路觀察:提早納入安全性的挑戰、對抗惡意軟體的付出、大量風險以及資安長的焦慮
Beat the Monday blues with cyber news you can use | Shift-left efforts falling short. The White House’s war on ransomware. Everything you’ve ever wanted to know about CISOs. The quantum computing risk for critical infrastructure. Don’t miss the latest episode of the Tenable Cyber Watch. The weekl...
網路安全概要: Log4j 滿週年、CI/CD 風險、Infostealer 網銀大盜、電子郵件攻擊以及 OT 安全性
Get the latest on the anniversary of the Log4j crisis; OWASP’s top CI/CD risks; a surge of infostealer malware; the fund transfer fraud — business email compromise connection; and more! ...
雲端安全:5 Key Takeaways from the SANS DevSecOps Survey
A recent SANS Institute report finds that DevSecOps teams are improving their tooling, processes and techniques, but their organizations’ increasingly hybrid and multi-cloud IT environments are getting harder to secure. Check out key highlights from the “SANS 2022 DevSecOps Survey.”...
Are You Ready for the Next Log4Shell? Tenable’s CSO and CIO Offer Their Advice
Tenable CIO Patricia Grant and CSO Robert Huber share insights and best practices to help IT and cybersecurity leaders and their teams weather the next cyber crisis of Log4j proportions....