Microsoft의 January 2023 Patch Tuesday에서 98개 CVE를(CVE-2023-21674) 처리
Microsoft addresses 98 CVEs including a zero-day vulnerability that was exploited in the wild....
Tenable Cyber Watch: 클라우드 보안, 취약성 관리, EASM, 웹 앱 보안 등에 대한 2022년 주요 데이터
It's that time again! Time to grab another cup of coffee and tune into this week's episode of the Tenable Cyber Watch newscast, the weekly video news digest that helps you zero-in on the things that matter right now in cybersecurity. As she does every Monday, Tenable Cyber Watch host Jirah Mickle...
Why JIT Access is an Essential Part of Cloud Security
Automating JIT in the cloud is win-win for improving security and business productivity -- and cracks a nut that PAM can’t....
사이버 보안 스냅샷: 가장 중요한 사이버 기술, 중요 클라우드 보안 트렌드 및 사이버의 중대한 비즈니스 영향을 발견
Happy New Year! Learn all about the cybersecurity expertise that employers value most; Google Cybersecurity Action Team’s latest take on cloud security trends; a Deloitte report on cybersecurity’s growing business influence; a growth forecast for cyber spending; and more!...
CVE-2022-47523: ManageEngine Password Manager Pro, PAM360 및 Access Manager Plus SQL Injection 취약성
Zoho patches a newly disclosed high-severity SQL injection flaw in several ManageEngine products; attackers have historically targeted several ManageEngine products over the last three years....
알 수 없음의 가시성: EASM과 도움이 될 수 있는 방식 이해하기
External attack surface management (EASM) is difficult and oftentimes confusing, especially in a world of poor inventory controls and a growing attack surface. This blog discusses what's required to do EASM successfully....
Tenable Cyber Watch: 전문가는 2023년에 대해 무엇을 예측합니?
Banish the post-holiday blues with news you can use: this week's episode of Tenable Cyber Watch takes a look at four cybersecurity trends to watch for 2023. Learn how extortion tactics will reshape ransomware, OT security, SaaS worries and protecting the cloud are top of mind for our experts....
사이버 보안 스냅샷: 클라우드 보안, 취약성 관리, EASM, 웹 앱 보안 등에 대한 2022년 주요 데이터
As 2022 ends, we highlight important data points that shine a light on the trends, challenges and best practices that matter to cybersecurity leaders eager to boost their exposure management and reduce their organizations’ cyber risk. ...
CVE-2022-47939: 리눅스 커널에 중요 RCE 취약성
A critical remote code execution vulnerability in the Linux kernel has been publicly disclosed by Trend Micro's Zero Day Initiative in its ZDI-22-1690 advisory. The vulnerability has been given a CVSSv3 of 10.0. There are no reports of active exploitation....
사이버 보안 스냅샷: Tenable의 2023년에 대한 6개 예측
As 2022 draws to a close, we asked Tenable experts what they expect for the new year. After reading the tea leaves, they’re forecasting developments in extortion attacks, OT security, SaaS threats, metaverse risks and more!...
Patch Tuesday’s Impact on Cybersecurity Over the Years
Dive into the history of Patch Tuesday and learn how it continues to influence the ways security teams manage patches....
CVE-2022-37958: FAQ for Critical Microsoft SPNEGO NEGOEX Vulnerability
Microsoft recently reclassified a vulnerability in SPNEGO NEGOEX, originally patched in September, after a security researcher discovered that it can lead to remote code execution. Organizations are urged to apply these patches as soon as possible....