Old Malware Threats Re-emerge
November 7, 2014This week, the industry press is reporting a resurgence of older malware threats with new capabilities. And as usual, the press is making the threats sound like the end of the Internet as we know it. ...
Addressing the New Threat Landscape with Continuous Network Monitoring
October 24, 2014Since the creation of tools like Nessus, the pioneering technology written by Renaud Deraison back in 1996, vulnerability management tools have helped users gain an incredible amount of insight into t...
Aftershocks
September 30, 2014It has been less than a week since news of the Shellshock vulnerability emerged, and the dust hasn’t settled yet. Our Tenable security experts share their reflections on the situation and their recomm...
IT-Harvest Interviews Ron Gula
September 15, 2014Tenable Network Security CEO Ron Gula got the opportunity to sit down with IT Harvest’s Richard Stiennon while they were at Black Hat USA 2014. Stiennon is the Chief Research Analyst and founder of th...
Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"
February 13, 2014<p></p>
The Big Red Button and the Kill Switch
April 25, 2013I have no idea if I had a role in the "Internet Kill Switch" debacle, but it's possible that I was one of the pushes that got that particularly horrible ball rolling. Back in 2002, when I was between ...
Recap: Geeking Out II with Marcus
April 15, 2013Ron and I spent most of the webcast rotating around the theme of detection algorithms: how do you determine what is normal and what is not? We started off with one of my favorite questions, "Are there...
Tenable Network Security Podcast Episode 163 - "Bind Vulnerability, Windows Hardening"
April 2, 2013Announcements We're hiring! - Visit the Tenable website for more information about open positions. Check out our video channel on YouTube which contains new Nessus and SecurityCenter tutorials. ...
Tenable Network Security Podcast Episode 145 - "Source Code Leaks, Problems with Computer Security"
November 8, 2012<h3>Announcements</h3> <ul> <li><a href="http://www.tenable.com/careers/">We're hiring</a>! - Visit the Tenable website for more information about open positions.</li> <li>Check out <a href="http://www.youtube.com/tenablesecurity">our video channel on YouTube</a> which contains new Nessus and SecurityCenter 4 tutorials.</li> <li>Tenable Tweets - You can find us on Twitter at <a href="http://twitter.com/tenablesecurity">http://twitter.com/tenablesecurity</a> where we make product and company announcements, provide Nessus plugin statistics, and more!</li> <li>Want to ask questions about Nessus, SecurityCenter, LCE, and PVS and get answers from the experts at Tenable? Join <a href="https://discussions.nessus.org">Tenable's Discussion Forum</a> for custom scripts, announcements, and more!</li> <li>You can subscribe to the <a href="http://itunes.apple.com/us/podcast/tenable-network-security-podcast/id361250581">Tenable Network Security Podcast on iTunes</a>!</li></ul> <h3>New & Notable Plugins</h3> <h4>Nessus</h4> <ul> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62757">ZABBIX Web Interface popup_bitem.php itemid Parameter SQL Injection</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62776">Temenos T24 Detection</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62783">ManageEngine OpStor Default Administrator Credentials</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62784">ManageEngine OpStor availability730.do days Parameter XSS</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62785">ManageEngine SupportCenter Plus HomePage.do fromCustomer Parameter XSS</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62795">CoDeSys PLC Runtime Service Detection</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62796">CoDeSys Authentication Bypass Directory Traversal</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62797">CoDeSys Unauthenticated Command-line Access</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62798">Oracle VM VirtualBox 3.x / 4.0.x < 4.0.10 Local Integer Overflows</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62800">Kaspersky Password Manager 5.x < 5.0.0.169 HTML Injection</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62801">Mac OS X : OS X Server < 2.1.1 Multiple Vulnerabilities</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62802">Mac OS X : Safari < 6.0.2 Multiple Vulnerabilities</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62803">Apple iOS < 6.0.1 Multiple Vulnerabilities</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62812">CA ARCserve Backup Multiple Vulnerabilities (CA20121018) (credentialed check)</a></li> <li><a href="http://www.tenable.com/plugins/index.php?view=single&id=62813">Symphony CMS Password Retrieval Script XSS</a></li> </ul>
Tenable Network Security Podcast Episode 119 - "Macs Don't Get Viruses, Detecting OS X Malware"
April 9, 2012<h3>Announcements</h3> <ul> <p><li><a href="http://www.nessus.org/news-events/press-releases/2012-tenable-network-security-certified-as-approved-scanning-vendor-asv-b">Tenable Network Security Certified as Approved Scanning Vendor (ASV) by PCI Security Standards Council</a>.</li></p> <p><li>Check out <a href="http://www.youtube.com/tenablesecurity">our video channel on YouTube</a> that contains the latest Nessus and SecurityCenter 4 tutorials. The <a href="http://www.youtube.com/playlist?list=PL339F3E44CA4D523D&feature=plcp">"Top Ten Things You Didn't Know About Nessus" videos</a> have been posted from #10 through #2, so check them out!</li></p> <p><li><a href="http://www.tenable.com/careers/">We're hiring</a>! - Visit the Tenable website for more information about open positions.</li></p> <p><li>You can subscribe to the <a href="http://itunes.apple.com/us/podcast/tenable-network-security-podcast/id361250581">Tenable Network Security Podcast on iTunes</a>!</li></p> <p><li>Tenable Tweets - You can find us on Twitter at <a href="http://twitter.com/tenablesecurity">http://twitter.com/tenablesecurity</a> where we make product and company announcements, provide Nessus plugin statistics, and more!</li></p> <p><li>Want to ask questions about Nessus, SecurityCenter, LCE, and PVS and get answers from the experts at Tenable? Join <a href="https://discussions.nessus.org">Tenable's Discussion Forum</a> for custom scripts, announcements, and more!</li></p> <p><li><a href="http://blog.tenablesecurity.com/2012/03/nessus-5-on-demand-training-now-available.html">Nessus 5 OnDemand Training Now Available</a></li></p></ul> <h3>New & Notable Plugins</h3> <p><strong>Nessus:</strong></p> <ul><p><li><a href="http://www.nessus.org/plugins/index.php?view=single&id=58604">OS Identification : NativeLanManager</a> - </li></p> <p><li><a href="http://www.nessus.org/plugins/index.php?view=single&id=58603">at32 Reverse Proxy Admin Portal No Password</a> -</li></p> <p><li><a href="http://www.nessus.org/plugins/index.php?view=single&id=58601">Microsoft ASP.NET ValidateRequest Filters Bypass</a> - </li></p> <p><li><a href="http://www.nessus.org/plugins/index.php?view=single&id=58621">Cisco WebEx WRF Player Multiple Buffer Overflows (cisco-sa-20120404-webex)</a> - </li></p></ul> <p><br /> </p>