Tenable

DECEMBER 13, 2023

Tenable Research discovered security flaws in a popular transportation management app that allowed access to student location data. On December 13, 2023, Tenable Research publicly disclosed security flaws uncovered in Edulog’s Parent Portal suite of products. Edulog (Education Logistics, Inc.)

Data 126

Data Transportation Software Review Technical Review 126

Tenable

DECEMBER 29, 2023

To find out, we asked Tenable experts to read the tea leaves. Their 2024 forecasts include: A bigger security role for cloud architects; a focus by ransomware gangs on OT systems in critical industries; an intensification of IAM attacks; and much more!

Software Review 78

Software Review Development Team Review Systems Review Weak Development Team 78

Tenable

JANUARY 19, 2024

Tenable Cloud Security enriches cloud activity log data to give you the context you need to quickly respond to and remediate cloud risks. Perhaps of equal concern: 82% of breaches involved data stored in the cloud. Let’s take a real-life cloud scenario. in 2023 to $4.45

Cloud 77

Cloud Architecture DevOps Policies 77

Tenable

APRIL 19, 2024

Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. 1 - Multinational cyber agencies issue best practices for secure AI deployment Looking for best practices on how to securely deploy artificial intelligence (AI) systems? on premises, cloud, or hybrid),” reads the 11-page document.

Artificial Inteligence 65

Artificial Inteligence Trends Technical Advisors Analysis 65

Tenable

APRIL 12, 2024

And the NSA is sharing best practices for data security. Cybersecurity and Infrastructure Security Agency (CISA) in its Emergency Directive 24-02 , sent to federal civilian agencies last week and made public this week. Plus, a new survey shows cybersecurity pros are guardedly optimistic about AI. And much more!

Generative AI 118

Generative AI Malware Trends Government 118

Tenable

DECEMBER 8, 2022

A recent SANS Institute report finds that DevSecOps teams are improving their tooling, processes and techniques, but their organizations’ increasingly hybrid and multi-cloud IT environments are getting harder to secure. We also provide insights on how Tenable can help. Integrated automatic security testing. in 2021 to 18.4%

Survey 98

Survey Cloud Software Review Serverless 98

Tenable

NOVEMBER 15, 2023

The Red Hat Vulnerability Scanner Certification for Tenable Nessus represents our commitment to continue providing customers with visibility into their Red Hat Enterprise Linux systems. Tenable is proud to announce that it has received the Red Hat Vulnerability Scanner Certification. The journey can be summarized in two parts.

Linux 73

Linux Testing Meeting Study 73

Tenable

MARCH 29, 2024

Plus, how to cut cyber risk when migrating SCADA systems to the cloud. National Cyber Security Centre (NCSC) issued guidance on cloud-hosted supervisory control and data acquisition (SCADA) systems, stressing that cybersecurity must be “a key consideration” with these migrations. Meanwhile, why CISA is fed up with SQLi flaws.

Systems Review 67

Systems Review Weak Development Team Banking System 67

Tenable

JANUARY 30, 2024

With attacks becoming more sophisticated, security teams must spend more time analyzing different entry points into the organization, as well as numerous tactics, techniques and procedures. Find out how Tenable ExposureAI helps you overcome these challenges and enhances your efficiency and productivity for stronger proactive security.

Analysis 61

Analysis Generative AI Strategy Resources 61

Tenable

DECEMBER 22, 2023

Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Tenable, whose products have had AI technology for years, was very much at the center of this trend, as it integrated GenAI capabilities across the Tenable One Exposure Management Platform in 2023. “AI

Artificial Inteligence 78

Artificial Inteligence Technical Review Cloud Artificial Intelligence 78

Tenable

DECEMBER 27, 2023

This week's edition of Tenable Cyber Watch unpacks 2024 predictions for cloud security and operational technology. Also covered: the Tenable's Research team's cybersecurity predictions for 2024. Will cloud architects be more responsible for the security of their apps in 2024?

Insurance 53

Insurance Cloud Video Strategy 53

Tenable

MARCH 20, 2024

Explore how Tenable One for OT/IoT helps organizations stay ahead in today's evolving threat landscape with end-to-end visibility and cyber risk prioritization across IT, OT and IoT. Visibility serves as the cornerstone of security, offering organizations the means to monitor, analyze, and safeguard their digital infrastructure effectively.

IoT 73

IoT How To Network Tools 73

Tenable

AUGUST 30, 2023

Web applications can be an Achilles’ heel for even the most mature security organizations. For small- and medium-sized businesses, as well as the security consultants and pen testers who support them, unsecured web apps can be a pathway to a data breach that can bring an organization to its knees. Here’s how Tenable Nessus can help.

Applications 98

Applications Study Open Source Report 98

Tenable

DECEMBER 29, 2023

As we reflect on the many accomplishments Tenable OT Security achieved in 2023, one thing is clear: we couldn’t have done it without the support and collaboration of our customers and partners. I can easily say 2023 was a good year for Tenable OT Security.

Systems Review 74

Systems Review Technical Review Software Review IoT 74

TechCrunch

APRIL 4, 2023

Identity and access security issues are increasingly top of mind for companies. Looking to solve some of the challenges around authentication, Keith Graham and Stephen Cox co-founded Strivacity , a startup that allows companies to create secure business-to-business and business-to-consumer sign-in experiences.

Company 246

Company Authentication Survey Machine Learning 246

Tenable

OCTOBER 17, 2023

On-prem web app scanning is now available within Tenable Security Center, offering comprehensive exposure management with accurate analysis, OWASP Top 10 coverage and easy setup. Over the past decade, web application security has evolved and become significantly more complex. Here’s what you need to know.

Security 73

Security Applications Analysis Open Source 73

Tenable

APRIL 17, 2023

Securing the modern attack surface — with its complex mix of on-premises and cloud infrastructure, web applications, identity and privilege management tools and operational technology (OT) — is a team effort. At Tenable, our channel partners are an integral part of this effort.

Programming 98

Programming Network Cloud Trends 98

Tenable

AUGUST 9, 2023

The Tenable One Exposure Management Platform is already transforming how organizations practice preventive cybersecurity. Today, we unveiled ExposureAI in the Tenable One Exposure Management Platform, giving you new generative AI capabilities that will boost your preventive cybersecurity by elevating your cyber expertise.

Generative AI 98

Generative AI Meeting Analysis Artificial Intelligence 98

Tenable

FEBRUARY 9, 2024

critical infrastructure IT and operational technology security teams, listen up. Cybersecurity and Infrastructure Security Agency (CISA) said in a statement. Thus, IT and OT security teams at critical infrastructure organizations should urgently apply the advisory’s mitigations and use its guidance to hunt for malicious activity.

Weak Development Team 68

Weak Development Team Infrastructure Generative AI Artificial Inteligence 68

Tenable

MAY 15, 2023

Tenable is changing its products’ names to make them more descriptive, so that it’s easier for people to understand our portfolio and the capabilities we offer. Tenable customers, partners, employees and friends will notice a change in Tenable product names rolling out during 2023. Tenable Cloud Security Tenable.ot

Cloud 52

Cloud Applications Examples 52

Tenable

SEPTEMBER 15, 2023

Tasked with securing your org’s new AI systems? Plus, open source security experts huddled at a conference this week – find out what they talked about. That’s the topic of the paper “ Securing AI: Similar or Different? Check out a new Google paper with tips and best practices. And much more!

Open Source 115

Open Source Systems Review System Software Review 115

Tenable

DECEMBER 10, 2021

Additionally, it appears that cloud services such as Steam and Apple iCloud are also affected. Secure LDAP (LDAPS). Because Log4j is included in a number of web applications and used by a variety of cloud services, the full scope of this vulnerability won’t be known for some time. Related Products. Analysis. Tenable.ep.

Applications 143

Applications Research Report Games 143

Tenable

OCTOBER 6, 2023

A SANS Institute survey found that budgets for ICS/OT security have shrunk, and advises on how to do more with less. In addition, CISA’s Cybersecurity Awareness Month campaign challenges tech vendors to build safer products. For more information about ICS/OT security, check out these Tenable blogs and videos: “ Three U.S.

Budget 67

Budget Report Survey Open Source 67

Tenable

DECEMBER 13, 2022

CVE-2022-27518: Unauthenticated RCE in Citrix Gateway and Citrix ADC Citrix has patched a critical remote code execution vulnerability in its ADC and Gateway products. In addition to the blog post, an alert from the National Security Agency (NSA) has been released, providing Citrix users a threat hunting guide. Background.

Authentication 98

Authentication Analysis Organization Network 98

Tenable

JULY 12, 2022

With the introduction of Nessus Expert, you can now protect against new, emerging cyberthreats across cloud infrastructure and understand what's in your external attack surface. The reliance on the cloud and infrastructure as code (IaC) to streamline development lifecycles has become a key part of every organization’s business.

Fractional CTO 99

Fractional CTO Policies Internet Infrastructure 99

Tenable

JULY 20, 2022

This CPU contains fixes for 188 CVEs in 349 security updates across 32 Oracle product families. Out of the 349 security updates published this quarter, 66 patches were assigned a critical severity. High severity patches accounted for the bulk of security patches at 146, followed by medium severity patches at 133.

Blockchain 103

Blockchain Retail Database Administration Authentication 103

Tenable

APRIL 7, 2022

VMware cautions organizations to patch or mitigate several serious vulnerabilities across multiple products. On April 6, VMware published an advisory (VMSA-2022-0011) addressing eight vulnerabilities across a number of VMware products: CVE. Affected products include: VMware Workspace ONE Access (Access). VMware Cloud Foundation.

Authentication 98

Authentication Research Analysis Cloud 98

Tenable

SEPTEMBER 7, 2023

Background On September 7, a joint Cybersecurity Advisory (CSA) AA23-250A coauthored by the Cybersecurity and Infrastructure Security Agency (CISA) and other partners was released to highlight the tactics, techniques, and procedures (TTPs) observed by nation-state advanced persistent threat (APT) actors.

Firewall 65

Firewall Software Review Technical Review Systems Review 65

Tenable

MAY 9, 2023

We explore the impact of that gap on an organization’s cyber risk and discuss how Tenable can help. Tenable analyzes a wide array of weaknesses and misconfigurations and assesses the entire spectrum of information required to address needs in the above environments, including, but not limited to: Indicators of Exposure ( IoE ).

Organization 52

Organization Weak Development Team Research Fashion 52

Tenable

NOVEMBER 17, 2023

In addition, Google highlights a new typosquatting trend impacting cloud storage. 1 - CISA, NSA push SBOM adoption to beef up supply chain security As the Log4Shell bug and SolarWinds hack made clear, cybersecurity teams must continuously assess and mitigate risks in their organizations’ software supply chain. And much more!

Artificial Intelligence 62

Artificial Intelligence Artificial Inteligence Government Storage 62

Tenable

FEBRUARY 17, 2022

Tenable’s recent acquisitions all had the same overarching goal: helping our customers gain better security insights across their cyberattack surface. At our investor day in December 2021, Tenable CEO Amit Yoran and I outlined the vision of where we see Tenable and the vulnerability management market heading over the next few years.

Analytics 98

Analytics Infrastructure Cloud Analysis 98

Tenable

FEBRUARY 24, 2023

Also check out the long-awaited security algorithms for IoT devices. In addition to security, other selection criteria included performance and flexibility with regards to speed, size and energy use. Find out how much of a pay bump cybersecurity architects and engineers got. Plus, a powerful AI cybersecurity tech is nearing prime time.

Security 99

Security Engineering Technical Review IoT 99

Tenable

JUNE 3, 2022

It can be deployed on-prem or as part of Atlassian Cloud. We use Confluence as part of Atlassian Cloud. No, Atlassian says that if you access Confluence through an atlassian.net domain, your site is not vulnerable and there is currently no evidence that Cloud sites have been targeted. Frequently Asked Questions. Are we affected?

Data Center 98

Data Center Software Review Data Systems Review 98

Tenable

OCTOBER 4, 2023

Background On October 4, Atlassian released a security advisory for CVE-2023-22515, a critical severity zero-day privilege escalation vulnerability in Confluence Data Center and Server that Atlassian says is “a previously unknown vulnerability” that has been exploited against a limited set of customers.

Data Center 71

Data Center Data Network Analysis 71

Tenable

DECEMBER 6, 2022

Tenable CIO Patricia Grant and CSO Robert Huber share insights and best practices to help IT and cybersecurity leaders and their teams weather the next cyber crisis of Log4j proportions. They’re important questions to ponder, especially with the findings about the current state of Log4j remediation that Tenable recently disclosed.

Policies 97

Policies Software Exercises Organization 97

Tenable

JANUARY 5, 2024

Plus, new granular configuration recommendations for securing Microsoft 365 are out. 1 - NIST categorizes cyberattacks against AI systems Are you involved with securing the artificial intelligence (AI) tools and systems your organization uses? In addition, the cost of cyber incidents is rising. And much more!

Artificial Inteligence 73

Artificial Inteligence Systems Review System Generative AI 73

Tenable

NOVEMBER 20, 2023

Background The Tenable Security Response Team has put together this blog to answer frequently Asked Questions (FAQ) regarding a critical vulnerability known as CitrixBleed. A logo for CitrixBleed was created by security researcher Kevin Beaumont. Has Tenable released any product coverage for CitrixBleed?

Technical Advisors 81

Technical Advisors Groups Research Network 81