Clik here to view.
CVE-2020-0796: "Wormable" Remote Code Execution Vulnerability in Microsoft...
Critical unpatched “wormable” remote code execution (RCE) vulnerability in Microsoft Server Message Block 3.1.1 (SMBv3), dubbed EternalDarkness, disclosed by Microsoft.BackgroundOn March 10, Microsoft...
View ArticleClik here to view.
COVID-19: Coronavirus Fears Seized by Cybercriminals
Malware and phishing campaigns use global interest in the novel coronavirus to capitalize on fear and uncertainty around the pandemic.BackgroundIn December 2019, reports of an outbreak of a new virus...
View ArticleClik here to view.
COVID-19 Update from Tenable
For more than two decades, customers have been at the very heart of everything we do at Tenable. We take the trust you place in us very seriously, and we understand that the work we do matters to you...
View ArticleClik here to view.
CVE-2020-8467, CVE-2020-8468: Vulnerabilities in Trend Micro Apex One and...
Attempts to exploit multiple vulnerabilities in Trend Micro Apex One and OfficeScan observed in the wild.BackgroundOn March 16, Trend Micro published a security bulletin to address five vulnerabilities...
View ArticleClik here to view.
COVID-19: Novel Coronavirus Becomes Hotbed for Misinformation, Scams and Fake...
The worldwide fear and uncertainty surrounding the novel coronavirus isn’t just being leveraged in malware and phishing attacks, as it has also enabled the spread of misinformation, fake cures and a...
View ArticleClik here to view.
We’re Here to Help: Securing Your Remote Workforce
Many of us around the globe are now experiencing the new reality of a large remote workforce virtually overnight. We're here to help our customers manage the new risks.We are suddenly facing new cyber...
View ArticleClik here to view.
How to Secure Your Remote Workforce Using Nessus Agents
Looking to secure a sudden influx of remote workers? Here are five steps to get started using Tenable agents. As organizations worldwide respond to the COVID-19 pandemic, cybersecurity professionals...
View ArticleClik here to view.
Adobe Type Manager Library Font Parsing Remote Code Execution Vulnerabilities...
Microsoft releases an out-of-band advisory for remote code execution vulnerabilities being actively exploited in the wild.BackgroundOn March 23, Microsoft released an advisory for two vulnerabilities...
View ArticleClik here to view.
Tenable Customers Weigh in on the Vulnerability Assessment Market
Over the last year, Gartner Peer Insights received reviews from 176 Tenable customers representing various roles, organizations and industries. Here’s a look at what they had to say about how Tenable...
View ArticleClik here to view.
Security Advice for Government Agencies in the Age of COVID-19
As COVID-19 drives many government agencies to quickly migrate from a centralized to remote workforce, new cybersecurity questions arise. Here are steps government agencies can take to manage these new...
View ArticleClik here to view.
COVID-19: Instagram Advertisements Selling Masks, Sanitizer and Other...
Opportunists pushing the sales of masks, hand sanitizer and other essentials are circumventing an advertising ban on Instagram to capitalize on fears spurred by the novel coronavirus.Cybercriminals...
View ArticleClik here to view.
How COVID-19 Response Is Expanding the Cyberattack Surface
As organizations rapidly move to a remote-work model in response to COVID-19, cybersecurity professionals are facing a sudden expansion of the attack surface. Here’s what you need to consider from a...
View ArticleClik here to view.
How to Secure a Work-from-Home Organization: Insights from a CSO
Over the last few days, a slew of people have texted or called me for practical guidance on how to secure a global, work-from-home organization. So, I crafted this short-ish blog post, mostly as a...
View ArticleClik here to view.
When Remote Work Isn't an Option: Industrial Security in the COVID-19 Era
For utilities and manufacturers tasked with keeping their lights on during the COVID-19 response, scaled-down workforces can pose increased security risks. Here's how to protect your teams and...
View ArticleClik here to view.
Zoom Patches Multiple Flaws and Responds to Security and Privacy Concerns
Facing growing security concerns, Zoom patches multiple vulnerabilities and vows to focus on top safety and privacy issues.BackgroundAs more companies shift to remote work, their use of tools to...
View ArticleClik here to view.
CVE-2020-6819, CVE-2020-6820: Critical Mozilla Firefox Zero-Day...
Researchers report multiple zero-day vulnerabilities in Mozilla Firefox and note that other browsers are also affected.BackgroundOn April 3, Mozilla Foundationpublished advisory 2020-11 for Mozilla...
View ArticleClik here to view.
Vulnerabilities in Cybersecurity: How to Reduce Your Risk
Configuration transparency is the key to dealing with vulnerabilities.Vulnerabilities are unavoidable. In contemporary IT configurations, attackers have access to a wide range of entry points they can...
View ArticleClik here to view.
CVE-2020-3952: Sensitive Information Disclosure in VMware vCenter Server...
VMware patches a critical information disclosure flaw in vCenter Server with a CVSSv3 score of 10.0.BackgroundOn April 9, VMware published VMSA-2020-0006, a security advisory for a critical...
View ArticleClik here to view.
Critical Vulnerabilities You Need to Find and Fix to Protect the Remote...
As uncertain times lead to a shift in how we work, identifying, prioritizing and addressing critical flaws that have been exploited in the wild is paramount.We recently shared some insights into how...
View ArticleClik here to view.
Microsoft’s April 2020 Patch Tuesday Addresses 113 CVEs Including Adobe Type...
Microsoft's April 2020 Patch Tuesday includes 113 CVEs, including a patch for two zero-day flaws (CVE-2020-0938 and CVE-2020-1020) in Adobe Type Manager Library disclosed on March 23.Microsoft...
View Article