CVE-2022-27510: Critical Citrix ADC and Gateway Authentication Bypass...
CVE-2022-27510: Critical Citrix ADC and Gateway Authentication Bypass VulnerabilityCitrix publishes an advisory to address multiple flaws in its ADC and Gateway products, including a critical...
View ArticleClik here to view.
Cybersecurity Snapshot: Insights on Supply Chain Security, Hiring, Budgets,...
Get the latest on staffing challenges; nation-state assaults on critical infrastructure; supply chain security tips; ransomware weak links; Kubernetes security; and more! Dive into 6 things that are...
View ArticleTranslating OT Security Recommendations into U.S. Policy Outcomes
The recent NSTAC report to the president outlined additional strategies to secure the convergence of information technology and operational technology.The cyberthreats of the past year offer a preview...
View ArticleClik here to view.
Cybersecurity Snapshot: Insights on Log4j, Memory Attacks, Cloud Security,...
Get the latest on an APT’s Log4Shell exploit; tips to prevent memory attacks; cloud security trends; metaverse security; and more! Dive into 6 things that are top of mind for the week ending Nov. 18.1...
View ArticleClik here to view.
A Recipe for Success: CISOs Share Top Tips for Successful Board Presentations
With the right ingredients, you can nail your board presentation every time. Check out these recommendations from seasoned Fortune 1000 CISOS.Presenting to the board can seem like the most daunting...
View ArticleClik here to view.
Cybersecurity Snapshot: Insights on Hive Ransomware, Supply Chain Security,...
Get the latest on the Hive RaaS threat; the importance of metrics and risk analysis; cloud security’s top threats; supply chain security advice for software buyers; and more! Dive into six things that...
View ArticleClik here to view.
Cloud Security Basics: Protecting Your Web Applications
While cloud computing providers such as Amazon Web Services (AWS), Google Cloud Platform (GCP) and Microsoft Azure offer robust and scalable services, securing your cloud environment brings its own...
View ArticleClik here to view.
GivingTuesday: See How Tenable Employees Are Giving Back in 2022
Looking for ideas on how to participate in GivingTuesday? We highlight seven nonprofit organizations around the world and share how Tenable employees are giving back. We hope these stories offer...
View ArticleClik here to view.
Active Directory Vulnerabilities: How Threat Actors Leverage AD Flaws in...
Adopting a proactive stance will give enterprises the head start to shut down new threats to Active Directory whenever they are uncovered.Did you know that Active Directory (AD) is the primary method...
View ArticleClik here to view.
Cybersecurity Snapshot: Insights on Log4Shell, the Metaverse, IoT, Pig...
Get the latest on Log4Shell’s global remediation status; the need for metaverse security rules; a shutdown of “pig butchering” domains; tips for secure IoT products; an informal poll about AD security;...
View ArticleClik here to view.
Introducing the Tenable Cyber Watch, Your Weekly Cyber Newscast
Cybersecurity professionals are inundated with too much information. Separating the signal from the noise is hard. The Tenable Cyber Watch is here to help.Today, Tenable launches Cyber Watch, a weekly...
View ArticleClik here to view.
NETGEAR Router Misconfiguration Opens The Door For Remote Attacks
Tenable Research has discovered a configuration issue impacting NETGEAR Nighthawk WiFi6 Routers commonly used in small offices and large homes. Organizations need to manually apply firmware...
View ArticleClik here to view.
Are You Ready for the Next Log4Shell? Tenable’s CSO and CIO Offer Their Advice
Tenable CIO Patricia Grant and CSO Robert Huber share insights and best practices to help IT and cybersecurity leaders and their teams weather the next cyber crisis of Log4j proportions.A year ago, the...
View ArticleClik here to view.
Cloud Security: 5 Key Takeaways from the SANS DevSecOps Survey
A recent SANS Institute report finds that DevSecOps teams are improving their tooling, processes and techniques, but their organizations’ increasingly hybrid and multi-cloud IT environments are getting...
View ArticleClik here to view.
Cybersecurity Snapshot: Log4j Anniversary, CI/CD Risks, Infostealers, Email...
Get the latest on the anniversary of the Log4j crisis; OWASP’s top CI/CD risks; a surge of infostealer malware; the fund transfer fraud — business email compromise connection; and more! Dive into six...
View ArticleClik here to view.
Tenable Cyber Watch: Shift Left Challenges, Anti-Ransomware Efforts, Quantum...
Beat the Monday blues with cyber news you can use | Shift-left efforts falling short. The White House’s war on ransomware. Everything you’ve ever wanted to know about CISOs. The quantum computing risk...
View ArticleClik here to view.
What Happens When the Metaverse Enters Your Attack Surface?
Tenable polled 1,500 cybersecurity, IT and DevOps professionals about their top concerns in the nascent virtual reality worlds of the metaverse. Here's what we found out.Here at Tenable, we often...
View ArticleClik here to view.
CVE-2022-42475: Fortinet Patches Zero Day in FortiOS SSL VPNs
CVE-2022-42475: Fortinet Patches Zero Day in FortiOS SSL VPNsFortinet has patched a zero day buffer overflow in FortiOS that could lead to remote code execution. There has been a report of active...
View ArticleClik here to view.
How To Assess the Cybersecurity Preparedness of IT Service Providers and MSPs
Improperly evaluating the cybersecurity capabilities of prospective IT service providers and managed service providers (MSPs) can put your organization's data and systems at risk. A new guide from...
View ArticleClik here to view.
CVE-2022-27518: Unauthenticated RCE in Citrix ADC and Gateway
CVE-2022-27518: Unauthenticated RCE in Citrix Gateway and Citrix ADCCitrix has patched a critical remote code execution vulnerability in its ADC and Gateway products. This vulnerability has reportedly...
View Article