ワークロードのコンテナ化への取り組み: セキュリティの落とし穴と Tenable Cloud Security でそれを回避する方法
Tenable Cloud Security now includes built-in container security functionality, so you can detect and prevent insecure containers from being deployed to production. In this blog, you’ll learn how Tenable can help you avoid critical container security mistakes. ...
Tenable サイバーウォッチ: CISA、サイバーチームに量子攻撃やランサムウェア攻撃の急増などに備えるよう要請
This week’s edition of Tenable Cyber Watch unpacks the emerging threat of quantum computers and the recommended steps security teams should take, and addresses the surge in ransomware attacks. また、 The White House and other cyber agencies seek public input on how to best secure open source...
サイバーセキュリティニュース: 英国国家サイバーセキュリティセンター (NCSC) 、職場での ChatGPT タイプのツールの活用に伴うリスクを警告
As OpenAI released ChatGPT Enterprise, the U.K.’s cyber agency warned about the risks of workplace use of AI chatbots. Plus, the QakBot botnet got torn down, but the malware threat remains – what CISA suggests you do. Moreover, new quantum-resistant algorithms are due next year. And much more!...
CVE-2023-2868: Barracuda と FBI は E メールゲートウェイ (ESG) デバイスを直ちに交換することを推奨
Since October 2022, attackers have been exploiting a zero-day vulnerability in Barracuda Email Security Gateway devices, and both the vendor and the FBI urge customers to replace these devices immediately....
The Benefits of Cloud Entitlement Management
Cloud identities and entitlements pose grave challenges - learn about the benefits of CIEM solutions and KPIs for measuring them....
Tenable Nessus、ウェブアプリのスキャン機能でアタックサーフェスの保護範囲を拡張
Web applications can be an Achilles' heel for even the most mature security organizations. For small- and medium-sized businesses, as well as the security consultants and pen testers who support them, unsecured web apps can be a pathway to a data breach that can bring an organization to its knees. H...
Tenable サイバーウォッチ: バイデン米大統領、AI 分野の対中投資を規制; CISA、サイバーセキュリティ戦略計画を発行、その他
This week’s edition of Tenable Cyber Watch unpacks the White House’s new executive order seeking to limit U.S. investments in Chinese AI and addresses the cause behind most cloud breaches. また、 CISA’s new cybersecurity strategic plan. ...
サイバーセキュリティニュース: CISO は事後的な対応よりも予防を重視、CISA はサイバーチームに量子ベースのサイバー攻撃への備えを促す
Time to start prepping for the quantum computing threat? CISA thinks so. Plus, why security leaders are prioritizing security prevention tools. Also, find out why ransomware attacks surged in July. Oh, and the White House wants your input on open source security. And much more!...
CVE-2023-38035: Ivanti Sentry API における認証バイパスの脆弱性の悪用が確認される
For the third time in a month, Ivanti discloses a zero-day vulnerability in one of its products that has been exploited in the wild...
Tenable サイバーウォッチ: ホワイトハウスがサイバースキル不足に対する取り組みを発表、データ漏えいのコスト上昇、その他
This week’s edition of Tenable Cyber Watch unpacks the White House’s new initiative to tackle the cyber skills shortage and addresses the surge data breach costs. また、 NSA and CISA’s security guidance for 5G network slicing. ...
サイバーセキュリティニュース: CIS ガイド、手頃な価格でサイバーハイジーンの基盤を構築する方法を概説
The Center for Internet Security unpacks how to establish foundational cyber hygiene at a reasonable cost. Plus, the Cyber Safety Review Board issues urgent security recommendations on its Lapsus$ report – and announces it’ll next delve into cloud security. Moreover, are humans or AI better at craft...
The Next Step in the IMDSv1 Redemption Journey
Learn about AWS’s new open source library for enforcing IMDSv2 and Tenable Cloud Security’s new lab for trying it out....
