網路安全快照: Insights on Log4j, Memory Attacks, Cloud Security, Ransomware
Get the latest on an APT’s Log4Shell exploit; tips to prevent memory attacks; cloud security trends; metaverse security; and more! ...
6 Cloud Security Tips For 3rd-Party Risk
It's critical to understand the security risk that third parties pose to your cloud infrastructure and how managing third-party access using secure practices can help....
Translating OT Security Recommendations into U.S. Policy Outcomes
A recent NSTAC report to the president outlined additional strategies to secure the convergence of information technology and operational technology....
網路安全快照: Insights on Supply Chain Security, Hiring, Budgets, K8s, Ransomware
Get the latest on staffing challenges; nation-state assaults on critical infrastructure; supply chain security tips; ransomware weak links; Kubernetes security; and more! ...
CVE-2022-27510: Critical Citrix ADC and Gateway Authentication Bypass Vulnerability
Citrix publishes an advisory to address multiple flaws in its ADC and Gateway products, including a critical vulnerability....
Microsoft’s November 2022 Patch Tuesday Addresses 62 CVEs (CVE-2022-41073)
Microsoft addresses 62 CVEs including four zero-day vulnerabilities that were exploited in the wild....
Shift left: Still a Work in Progress
Experts say “shift left” practices are falling short. Here’s what you need to know and what you can do about it. Researchers are calling on companies to do a better job of educating developers about security after a study shows shift left practices have fallen short. Shifting left is an a...
網路安全快照: Salary Trends, Ransomware Summit, Next-gen MFA
Get the latest on salary trends for CISOs and cybersecurity pros; CISA’s call for adopting phishing-resistant MFA; the White House’s ransomware summit; and more!...
How to Improve Your Incident Response in the Cloud
A look at the security best practices and mindset to adopt to better detect and recover from malicious activity in your cloud infrastructure....
Tenable One 风险暴露管理平台:释放数据的力量
当我们的数据工程团队参与到 Tenable One 项目时,我们意识到我们需要一个强大的合作伙伴。Here’s how we selected Snowflake to help us deliver on the promise of exposure management....
CVE-2022-3786 和 CVE-2022-3602:OpenSSL 修补了两个高危型漏洞
OpenSSL has patched two vulnerabilities, pivoting from its earlier announcement, in version 3.0.7....
What You Should Know about the New OpenSSL Vulnerability
How to detect which OpenSSL version you’re running and if your organization is exposed to the critical OpenSSL vulnerabilities - CVE-2022-3602 (Remote Code Execution) and CVE-2022-3786 (Denial of Service) - and what to do about it....
