Blog da Tenable
Inscrever-seHow to Strengthen Active Directory and Prevent Ransomware Attacks
How Risk-based VM Can Help Address the Most Commonly Exploited Vulnerabilities Today
Tenable's analysis of the 29 vulnerabilities highlighted in a recent CISA alert reveals key differences between CVSS and our Vulnerability Priority Rating. Attackers continue to exploit known and prev...
New In Nessus: Find and Fix These 10 Active Directory Misconfigurations
Let's face it: Active Directory is a feeding frenzy for hackers. Here's how our updated Nessus scan engine can help you disrupt attack paths. Active Directory (AD) has been the leading identity and ac...
How to Improve Your Cybersecurity Decision-Making to Reduce Business Risk
Increase your program efficacy by identifying the metrics that offer the right context to aid decision making across the executive, strategic and tactical levels of your organization. The challenges f...
Oracle July 2021 Critical Patch Update Addresses 231 CVEs
Oracle addresses 231 CVEs in its third quarterly update of 2021 with 342 patches, including 49 critical updates. Background On July 20, Oracle released its Critical Patch Update (CPU) for July 2021,...
Focus on the Fundamentals: 6 Steps to Defend Against Ransomware
Ransomware is the monetization of poor cyber hygiene. Here are 6 steps you can take to improve your security defenses. Ransomware attacks have become a boardroom issue for nearly every organization. I...
Como calcular a eficácia do seu programa de segurança cibernética: 5 perguntas a serem feitas
Na hora de calcular a eficácia da sua segurança, compreender como seu programa se sai quando comparado com outros pares pode revelar onde melhorias ou investimentos importantes se fazem necessários. Proving success i...
You Can't Modernize Critical Infrastructure Without Cybersecurity
Will bipartisan legislation in the U.S. make securing IT and operational technology a priority? U.S. lawmakers have an unprecedented opportunity to vastly improve the cybersecurity posture of the nati...
CVE-2021-35211: SolarWinds Serv-U Managed File Transfer Zero-Day Vulnerability Exploited in Targeted Attacks
Following a patch for a zero-day vulnerability in SolarWinds’ Serv-U Managed File Transfer, researchers share new details about the attacks, as over 8,000 systems remain publicly accessible and potent...
Cut Through the Marketing Hype: Determine Which Vulnerability Assessment Tool Is Right for Your Organization
Not all scanning solutions are created equal… The vulnerability assessment market has changed dramatically over the past several years. A growing number of vendors who once provided scan tools that me...
Microsoft’s July 2021 Patch Tuesday Includes 116 CVEs (CVE-2021-31979, CVE-2021-33771)
Microsoft highlights 116 CVEs including two which were addressed by April patches. 12Critical 103Important 1Moderate 0Low Microsoft patched 116 CVEs in the July 2021 Patch Tuesday release,...
Zero Day Vulnerabilities in Industrial Control Systems Highlight the Challenges of Securing Critical Infrastructure
The disclosure of zero day vulnerabilities in several Schneider Electric industrial control systems highlights the need to revamp cybersecurity practices in operational technology environments. A zer...
Dealing with the Attack Surface Beyond Vulnerabilities
A good understanding of the attack surface is of prime importance in measuring and prioritizing risk. Here's how Tenable's data can allow security professionals to have a more realistic view of their...
