米国防総省の OT システムにおけるサイバーセキュリティの強化
Operational technology plays a major role in many aspects of the U.S. Department of Defense — including in military operations, in the infrastructure on bases and throughout the supply chain. Strengthening the cyber defenses of these systems is imperative. Here’s what you need to know. ...
CVE-2024-0204: Fortra GoAnywhere MFT における認証バイパスの脆弱性
Proof-of-concept exploit details are available for a newly disclosed critical vulnerability in Fortra GoAnywhere Managed File Transfer (MFT), a product historically targeted by ransomware...
CVE-2023-22527: Atlassian Confluence Data Center と Server におけるテンプレートインジェクションの脆弱性の悪用が確認される
In the wild exploitation has begun for a recently disclosed, critical severity flaw in Atlassian Confluence Data Center and Server...
クラウドセキュリティ戦略をレベルアップ
Learn how to better your cloud security program with these ten security resolutions. ...
サイバーセキュリティニュース: 米政府、中国製ドローンを使用する重要インフラ組織に警戒を促し、水道施設に事故対応を強化するよう勧告
Find out why Uncle Sam is warning critical infrastructure facilities about drones made in China, while urging water treatment plants to beef up incident response plans. Plus, the challenges stressing out CISOs are also opening new doors for them. In addition, the latest on the Androxgh0st malware. A...
強化されたログデータを活用して異常検出とインシデント対応を改善
Tenable Cloud Security enriches cloud activity log data to give you the context you need to quickly respond to and remediate cloud risks....
Tenable Cloud Security、修復提案のプルリクエストの生成をサポート
The new capability is designed to make it more efficient for security teams to pass remediation recommendations on to the infrastructure team to implement. Here’s how it works....
オラクル、2024 年 1 月クリティカルパッチアップデートで 191 件の脆弱性を修正
Oracle addresses 191 CVEs in its first quarterly update of 2024 with 389 patches, including 37 critical updates....
CVE-2023-6548、CVE-2023-6549: Citrix NetScaler ADC および NetScaler Gateway におけるゼロデイ脆弱性の悪用が確認される
Two zero-day vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway have been exploited in the wild. Urgent patching is required to address these flaws....
2024 年に注目すべきクラウドセキュリティ動向トップ 5
生成 AI が組織のサイバーセキュリティ能力を向上させることは間違いありません。 しかし、最初にしっかりしたクラウドセキュリティの原則を適用しておかなければ、サイバーセキュリティ部門は生成 AI による成果をほとんど得られないでしょう。 In this blog, we explain the top cloud security trends that organizations must track – an...
サイバーセキュリティニュース: リスクを最小限に抑えながら AI システムのサイバーセキュリティを強化する
Check out expert recommendations for deploying AI tools securely. Plus, the World Economic Forum ranks cyberattacks and AI misinformation among today’s top global risks. In addition, cyber insurance demand is forecast to grow robustly. And a warning about adversary-in-the-middle (AiTM) attacks and h...
CVE-2023-46805、CVE-2024-21887: Ivanti Connect Secure と Policy Secure Gateway で悪用されたゼロデイ脆弱性
Two zero-day vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure have been exploited in the wild, with at least one attack attributed to nation-state actors....