ETHOS: Bringing the OT Security Community Together for Threat Information Sharing
Tenable participates in a first-of-its-kind initiative that will aggregate information from several operational technology (OT) security vendors to share emerging threat intelligence with critical infrastructure service providers....
CVE-2023-20864: 로그 역직렬화 취약성에 대한 VMware Aria 작동
VMware issues advisory to address two flaws in its VMware Aria Operations for Logs solution, including a critical deserialization flaw assigned a CVSSv3 score of 9.8....
사이버 보안 스냅샷: 최신 공급망 보안 – SBOM 배포, 오프소스 결함 및 새 보안 프레임워크
Check out what CISA says about the sharing of software bills of materials. Plus, why you should tread carefully with open source components. Also, the SLSA supply chain security framework is ready. In addition, security worries hold back enterprise IoT adoption. And much more!...
Oracle April 2023 중요 패치 업데이트에서 231개 CVE에 대응
Oracle addresses 231 CVEs in its second quarterly update of 2023 with 433 patches, including 74 critical updates....
7 Regulatory and Compliance Frameworks with Broad Cloud Security Implications
Security teams responsible for enforcing regulatory and compliance mandates in a scalable and consistent way are often challenged to translate general legislative guidelines and controls into specific policies, tools and processes....
2023 Tenable Assure Partner 어워드 수상자 발표
Celebrating the elite defenders who are helping organizations around the world reduce their cyber risk....
Tenable Cyber Watch: FBI에서 정교한 BEC 사기에 대해 경고, NIST에서 새 AI 리소스 센터 공개 등
This week’s edition of the Tenable Cyber Watch unpacks the business email compromise scams (BEC) that are targeting vendors and explores NIST’s new AI Resource Center. Also covered: The most in-demand cybersecurity jobs for this year according to COMPTIA’s “State of the Tech Workforce Report” for 20...
사이버 보안 스냅샷: As ChatGPT Concerns Mount, U.S. Govt Ponders Artificial Intelligence Regulations
As ChatGPT security worries rise, the Biden administration looks at crafting AI policy controls. Plus, Samsung reportedly limits ChatGPT use after employees fed it proprietary data. Also, how password mis-management lets ex-staffers access employer accounts. In addition, the top identity and access ...
Agents vs. Agentless: 퍼블릭 클라우드 환경에 어떤 솔루션이 적합합니까?
You can scan cloud systems for security problems in multiple ways depending on what your instances are running, how long they’re up and whether or not they can run an agent or be accessed with administrative credentials. Network scanning, installed agents, or public cloud APIs can all report finding...
97개 CVE를 다루는 Microsoft의 April 2023 Patch Tuesday (CVE-2023-28252)
Microsoft addresses 97 CVEs, including one that was exploited in the wild as a zero day....
TSA, FAA 요구 사항이 공항 및 공항 운영자 및 공항 터미널 프로젝트에 대한 사이버 보안을 강조: Tenable이 도움되는 방법
The TSA and FAA are making cybersecurity a priority for airport and aircraft operators and for airport terminal projects to prevent disruption and degradation to their infrastructure. Here's what you need to know — and how Tenable can help....
Tenable Cyber Watch: 미국 Government Mulls TikTok Ban, Europol Warns About ChatGPT Cyber Risks, and more
This week’s edition of the Tenable Cyber Watch unpacks the U.S. government’s efforts to ban TikTok and addresses Europol’s concerns about ChatGPT cyber risks. Also covered: How CISA’s new pre-ransomware alert initiative could be a gamechanger for would-be ransomware victims. ...