Service Location Protocol(SLP)를 사용하여 위험에 노출된 관리 인터페이스 찾기
Exposed management interfaces are valuable entry points for attackers. CISA Binding Operational Directive 23-02 calls for getting them off the internet. Here’s a novel approach for finding some of these elusive devices using SLP....
클라우드 보안의 공유 책임 모델 언패킹: 보안 범위 공백 및 혼란을 피하는 방법
Confusion over the scope of customer responsibility for cloud security causes control gaps and exposes businesses to risks of attack and non-compliance. Secure configuration of customer-managed resources is the most critical factor for reducing cloud risk. However, it can only be achieved by first u...
Tenable OT Security 3.16의 새로운 소식: 건물 관리 시스템 보안 및 사용 경험 향상
Tenable OT Security 3.16 introduces advanced security for building automation systems, a streamlined interface and simplified upgrade process, empowering users to be at the forefront of securing their IT, OT, BMS and IoT assets with confidence....
Tenable Cyber Watch: U.S. 정부에서 사이버 보안 구현 계획을 배포, CISA에서 클라우드 보안용 무료 도구를 공유 등
This week’s edition of Tenable Cyber Watch unpacks the White House’s National Cybersecurity Strategy Implementation Plan and offers new tips and guidance for C-level executives regarding generative AI adoption. Also covered: CISA shares its factsheet offering free tools to help secure cloud environm...
FAQ: 새 SEC 사이버 보안 규칙의 정보 보안 리더들에게 영향
On July 26, the SEC voted 3-2 to adopt new rules which would require several new cybersecurity disclosures from publicly traded companies. Here’s what cybersecurity leaders need to know....
사이버 보안 스냅샷: SEC에 상장 회사의 사이버 보안 투명성을 요구
Find out what’s in the SEC’s new cybersecurity disclosure rules. Plus, CISA analyzes the cyber risks impacting critical infrastructure organizations. Also, check out guidance for shadow IT and tips to boost your security awareness program. And much more!...
Tenable의 2023 Capture The Flag: 자신의 해킹 기술을 테스트할 준비가 되었습니까?
Tenable is bringing its annual hacking competition to Black Hat 2023 in a hybrid in-person and online experience, giving competitors around the world a chance to have fun and test their skills....
사업체에 적합한 사이버 보안 보험 정책을 구입하는 방법
Cyber insurance has become a necessity, and the cost and effort to obtain it can be considerable. Still, your organization can boost its odds of landing the coverage it needs at a fair price that’s consistent with its risk profile. Check out the invaluable advice from a panel of experts from the ins...
CVE-2023-35078: Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core 승인되지 않은 API 액세스 취약성
Critical vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks...
AI가 사이버 보안에 큰 영향을 줄 것임: 예상되는 사항
Generative AI will elevate the practice of successful preventive cybersecurity, but how will it manifest itself across cybersecurity products? Here are a few game-changers to look for....
Tenable Cyber Watch: 미국 정부에서 사이버 보안 투자 우선 순위를 설명, 연구에 의하면 사이비 팀은 과도하게 자신감이 있음 등
This week’s edition of Tenable Cyber Watch unpacks CISA and the NSA’s CI/CD defense guidance and explores the White House’s cybersecurity investment priorities. Also covered: why one study says cyber teams are too confident. ...
사이버 보안 스냅샷: CISO는 침해는 줄었지만 인력 충원은 여진히 어렵다고
Find out what’s working well for CISOs – and what could be better. Plus, why you should pay attention to the FTC’s investigation into ChatGPT-maker OpenAI. Also, check out a primer for C-level execs on adopting generative AI. Plus, the free cloud security tools CISA recommends you use. And much more...