クラウドセキュリティにおけるオープンソースの役割:Tenable の Terrascan のケーススタディ
Open source software and cloud-native infrastructure are inextricably linked and can play a key role in helping to manage security. Open source security tools like Terrascan by Tenable are easy to scale, cost-effective and benefit from an agile community of contributors. Let’s take a look at how you...
マイクロソフトの 2023 年 5 月月例セキュリティ更新プログラム、38 件の CVE を修正 (CVE-2023-29336)
Microsoft addresses 38 CVEs including three zero-day vulnerabilities, two of which were exploited in the wild....
Tenable Security Center が Tenable One に統合: オンプレミスの顧客に完全なエクスポージャー管理を提供
Tenable Security Center の Tenable One への統合により、Tenable はオンプレミス環境とハイブリッド環境の導入モデルの両方のサイバーエクスポージャー管理を提供する唯一のベンダーになります。Here’s what you need to know. ...
落とし穴に注意! NVD を待っていると組織は危険にさらされる
This is the first of a four-part series examining the period of time between when a vulnerability is first discovered and when it is fully disclosed on the National Vulnerability Database. We explore the impact of that gap on an organization’s cyber risk and discuss how Tenable can help....
落とし穴に注意! 既存の脆弱性フレームワークが組織を危険にさらす
This is the second of a four-part series examining the period of time between when a vulnerability is first discovered and when it is fully disclosed on the National Vulnerability Database. In this installment, we explore how common industry frameworks leave security teams with blind spots — and dis...
落とし穴に注意! 2022 年に公開された脆弱性の詳細
This is the third of a four-part series examining the period of time between when a vulnerability is first discovered and when it is fully disclosed on the National Vulnerability Database. In this installment, we take a closer look at the vulnerabilities disclosed in 2022 —and discuss how Tenable ca...
落とし穴に注意! 2022 年の注目すべき 8 件の CVE
This is the last of a four-part series examining the period of time between when a vulnerability is first discovered and when it is fully disclosed on the National Vulnerability Database. In this installment, we examine eight notable CVEs with significant gaps in disclosure timelines and discuss how...
Tenable サイバーウォッチ: 従業員の約 50% が以前の雇用主のアカウントにアクセスしたことがある、米政権、AI の説明責任について一般から意見を募る
This week’s edition of the Tenable Cyber Watch unpacks why organizations are looking to consolidate cyber vendors and addresses the White House’s efforts to make sure AI products are safe. また、 Businesses must improve password management: a new study reveals nearly 50% of ex-employees have ...
サイバーセキュリティニュース: CSA、組織で ChatGPT を安全に活用する方法に関するガイダンスを提供
Check out the Cloud Security Alliance’s white paper on ChatGPT for cyber pros. Plus, the White House’s latest efforts to promote responsible AI. Also, have you thought about vulnerability management for AI systems? In addition, the “godfather of AI” sounds the alarm on AI dangers. And much more! ...
Uncovering 3 Azure API Management Vulnerabilities – When Good APIs Go Bad
Learn how now-patched Azure API Management service vulnerabilities revealed by our research team enabled malicious actions....
Tenable Cloud Security Agentless Assessment for Microsoft Azure のご紹介
Tenable Cloud Security のユーザーは、Azure クラウドアカウントにすばやく接続して、セキュリティの脆弱性、設定ミス、コンプライアンスのスキャンなどのクラウドセキュリティ態勢管理を実行できるようになりました。Here’s how....
州全体サイバーセキュリティアプローチによる地方自治体機関の保護
Facing frequent and aggressive cyberattacks, local governments often struggle to defend themselves due to a lack of tools and resources. But it doesn’t have to be this way. With a whole-of-state approach, local governments can pool resources and boost their defenses, reducing cyber risk via improved...
