クラウド環境の AI セキュリティリスクなんて怖くない!?
The Tenable Cloud AI Risk Report 2025 reveals that 70% of AI cloud workloads have at least one unremediated critical vulnerability — and that AI developer services are plagued by risky permissions defaults. Find out what to know as your organization ramps up its AI game....
サイバーセキュリティニュース: Tenable がクラウドでの AI の使用に伴うセキュリティリスクを強調、英国の NCSC がポスト量子暗号の導入に関するガイドラインを提供
Check out key findings and insights from the “Tenable Cloud AI Risk Report 2025.” Plus, get fresh guidance on how to transition to quantum-resistant cryptography. In addition, find out how AI is radically transforming cyber crime. And get the latest on open source software security; cyber scams; and...
DeepSeek Deep Dive: キーロガーやランサムウェアなどのマルウェアの作成
Tenable Research examines DeepSeek R1 and its capability to develop malware, such as a keylogger and ransomware. We found it provides a useful starting point, but requires additional prompting and debugging....
Frequently Asked Questions About DeepSeek Large Language Model (LLM)
The open-source LLM known as DeepSeek has attracted much attention in recent weeks with the release of DeepSeek V3 and DeepSeek R1, and in this blog, The Tenable Security Response Team answers some of the frequently asked questions (FAQ) about it....
Tenable Announces Integration with OpenAI’s ChatGPT Enterprise Compliance API
From understanding and governing how your employees are using AI to continuously maintaining its right configurations and detecting security incidents — you need to protect your Enterprise AI. Here’s how Tenable can help....
What You Must Know About the OWASP Top 10 for LLM Applications 2025 update
As GenAI becomes a vital part of business operations, the risks it brings are evolving just as fast. Here are four key takeaways from the latest OWASP LLM guidance....
サイバーセキュリティニュース: AI セキュリティのベストプラクティス、調査、洞察
In this special edition, we’ve selected the most-read Cybersecurity Snapshot items about AI security this year. ICYMI the first time around, check out this roundup of data points, tips and trends about secure AI deployment; shadow AI; AI threat detection; AI risks; AI governance; AI cybersecurity us...
サイバーセキュリティニュース: プロンプトインジェクションとデータ開示が、OWASP の GenAI LLM アプリのサイバーリスクリストのトップにランクイン
OWASP による最新版の「LLM に関するリスクのトップ 10」リストを必ず確認しましょう。 また、最も有害なソフトウェアの弱点のランキングも発表されました。 一方、重要インフラ組織は、AI を安全に利用するための新たなフレームワークを手に入れました。 And get the latest on the BianLian ransomware gang and on the challenges of protecting ...
クラウドデータと AI リソースの保護が決め手になるクラウドセキュリティ態勢の要塞化
Learn how data security posture management (DSPM) and AI security posture management (AI-SPM) can help you address key cloud security challenges....
サイバーセキュリティニュース: AI を活用してサイバーセキュリティ対策強化
More security teams are incorporating AI to uplevel their defense strategies and boost productivity. With so much AI buzz, it may be overwhelming to decipher which tools to acquire and how they fit in a modern security strategy. Read on to explore how AI-enabled tools can help enhance your security ...
Amazon Rufus AI: “While Coca-Cola is a Popular Brand, I Would Suggest Healthier Alternatives Like Pepsi”
Our research shows how the Rufus AI assistant in Amazon’s shopping platform can be manipulated to promote one brand over another. We also found it can be used “shop” for potentially dangerous, sensitive and unauthorized content....
Microsoft Copilot Studio におけるサーバーサイドリクエストフォージェリ (SSRF) の脆弱性
Tenable Research discovered a critical information-disclosure vulnerability in Microsoft’s Copilot Studio via a server-side request forgery (SSRF), which allowed researchers access to potentially sensitive information regarding service internals with potential cross-tenant impact....