Tenable 블로그
CVE-2025-53786: Frequently Asked Questions About Microsoft Exchange Server Hybrid Deployment Elevation of Privilege Vulnerability
사이버 보안 스냅샷: 연방 기관에서 CL0P Gang을 헌팅 중이며 랜섬웨어 대응, 보안 클라우드 관리 및 클라우드 앱 데이터 개인정보보호에 대한 팁을 확인하십시오
Learn all about the U.S. government’s reward for CL0P ransomware leads. Plus, check out ransomware incident response recommendations. Also, review concrete guidance on cloud system administration and on designing cloud apps with privacy by default. And much more!...
Shared Responsibility Model in the Cloud
CSPs have embraced a shared responsibility model to define the security responsibilities for different components of the architecture....
Tenable Cyber Watch: 미국 정부에서 랜섬웨어 가이드 업데이트, Lineaje의 조사에서 OSS에 공급망 위험을 조망 등
This week’s edition of the Tenable Cyber Watch unpacks the most recent updates to the U.S. government’s #StopRansomware Guide and addresses the steps organizations can take to boost digital trust. Also covered: why companies must be careful when using open source software. ...
MOVEit 전송 취약성 CL0P 랜섬웨어 갱에 대한 FAQ
Frequently asked questions relating to vulnerabilities in MOVEit Transfer, including one that was exploited by the prolific CL0P ransomware gang....
사이버 보안 스냅샷: 강력한 클라우드 보안을 위해 구성에 집중
Check out the NCSC’s advice about proper configuration in cloud security. Plus, a detailed guide about LockBit ransomware. Also, don’t miss OWASP’s revised list of top API security risks. Plus, CISA’s warning about remote network management tools. And much more!...
CVE-2023-20887: 네트워크 명령 인젝션에 대한 VMware Aria 작동
VMware issues advisory to address three flaws in its VMware Aria Operations for Networks solution, including a critical command injection flaw assigned a CVSSv3 score of 9.8....
Microsoft의 June 2023 Patch Tuesday에서 70개 CVE에 대응 (CVE-2023-29357)
Microsoft addresses 70 CVEs in its June 2023 Patch Tuesday update including six rated as critical....
CVE-2023-27997: Fortinet FortiOS 및 FortiProxy SSL-VPN에 힙 기반 버퍼 오버플로우 (XORtigate)
Fortinet says a critical flaw in its SSL-VPN product may have been exploited in the wild in a limited number of cases. Organizations are strongly encouraged to apply these patches immediately....
Tenable Cyber Watch: 6개의 사이버 보안 관한 중요하지만 일반적인 오해, IAM 보안을 향상하는 모범 사례 등
This week’s edition of the Tenable Cyber Watch unpacks the six most critical and common cyber misconceptions and shares tips on how to better distribute software bills of materials. Also covered: the best practices to boost IAM security from CISA and the NSA. ...