Tenable 博客
CVE-2026-35616: Fortinet FortiClientEMS improper access control vulnerability exploited in the wild
CVE-2023-2868:Barracuda and FBI Recommend Replacing Email Security Gateway (ESG) Devices Immediately
Since October 2022, attackers have been exploiting a zero-day vulnerability in Barracuda Email Security Gateway devices, and both the vendor and the FBI urge customers to replace these devices immediately.
The Benefits of Cloud Entitlement Management
Cloud identities and entitlements pose grave challenges - learn about the benefits of CIEM solutions and KPIs for measuring them.
Tenable Nessus 使用 Web Application Scanning 扩大了攻击面覆盖范围
Web applications can be an Achilles' heel for even the most mature security organizations. For small- and medium-sized businesses, as well as the security consultants and pen testers who support them, unsecured web apps can be a pathway to a data breach that can bring an organization to its knees…
Tenable 网络观察:Biden Administration Aims To Limit U.S. Investments in Chinese AI, CISA Issues Cybersecurity Strategic Plan, and more
This week’s edition of Tenable Cyber Watch unpacks the White House’s new executive order seeking to limit U.S. investments in Chinese AI and addresses the cause behind most cloud breaches. Also covered: CISA’s new cybersecurity strategic plan.
網路安全快照: CISOs Value Prevention Over Response, While CISA Urges Cyber Teams To Prep for Quantum Attacks
Time to start prepping for the quantum computing threat? CISA thinks so. Plus, why security leaders are prioritizing security prevention tools. Also, find out why ransomware attacks surged in July. Oh, and the White House wants your input on open source security. 更多内容不一一列举!
CVE-2023-38035:身份验证绕过在现实中遭利用的零日漏洞
For the third time in a month, Ivanti discloses a zero-day vulnerability in one of its products that has been exploited in the wild
Tenable 网络观察:White House Tackles Cyber Skills Shortage, Cost of Data Breaches Keeps Rising, and more
This week’s edition of Tenable Cyber Watch unpacks the White House’s new initiative to tackle the cyber skills shortage and addresses the surge data breach costs. Also covered: NSA and CISA’s security guidance for 5G network slicing.
網路安全快照: CIS Guide Outlines How To Attain an Affordable Cyber Hygiene Foundation
The Center for Internet Security unpacks how to establish foundational cyber hygiene at a reasonable cost. Plus, the Cyber Safety Review Board issues urgent security recommendations on its Lapsus$ report – and announces it’ll next delve into cloud security. Moreover, are humans or AI better at…
The Next Step in the IMDSv1 Redemption Journey
Learn about AWS’s new open source library for enforcing IMDSv2 and Tenable Cloud Security’s new lab for trying it out.
