ランサムウェア対策: 事業は自然災害同様の備えをしておく必要がある
2022/8/16現在のサイバーセキュリティ対策における 6 つの重要事項
2022/8/22Topics that are top of mind for the week ending Aug. 12 (Black Hat Special Edition) | The Black Hat USA conference returned to Las Vegas this week to celebrate its 25th anniversary, as thousands of security pros gathered in the desert to get wiser about critical challenges, including cloud security, software supply chain risks, ransomware and the rampant burnout and stress among their ranks. Here’s what caught our attention at the event.
Tenable Cloud Security Agentless Assessment で迅速に AWS における脆弱性を検出して対応する
2022/8/10Learn how to leverage our latest cloud security discovery feature, Tenable.cs Agentless Assessment, to enhance the way you can scan for software vulnerabilities and misconfigurations in the cloud.
Agentless Assessment と Live Results を備えた Tenable Cloud Security のリリースのお知らせ
2022/8/10Tenable は、最新のクラウドセキュリティ機能強化によってクラウドセキュリティ態勢と脆弱性管理を統合し、新しい、 100% API 化されたスキャンおよびゼロデイ検出機能を提供します。
マイクロソフトの 2022 年 8 月月例更新プログラム、118 件の脆弱性に対処 (CVE-2022-34713)
2022/8/9Microsoft addresses 118 CVEs in its August 2022 Patch Tuesday release, including 17 critical flaws.
現在のサイバーセキュリティ対策における 6 つの重要事項
2022/8/5Topics that are top of mind for the week ending Aug. 5 | Don’t take your eye off the Log4j ball. The dangers of unsupported software. Why low MFA adoption is everyone’s problem. Preventing ransomware attacks. その他。
2021 年マルウェア上位リストに関連する脆弱性の分析
2022/8/4International cybersecurity agencies issue a joint alert outlining the top malware strains of 2021. We identified vulnerabilities associated with these strains.
CVE-2022-31656: VMware、複数の製品における複数の脆弱性にパッチを適用 (VMSA-2022-0021)
2022/8/2VMware has patched another set of serious vulnerabilities across multiple products including VMware Workspace ONE Access. Organizations should patch urgently given past activity targeting vulnerabilities in VMware products.
現在のサイバーセキュリティ対策における 6 つの重要事項
2022/7/29Topics that are top of mind for the week ending July 29 | Boost your security awareness program. Why fire drills hurt security teams. A quick temperature check on attack surface management. Protecting smart factories from cyberattacks. And much more!
ランサムウェアのエコシステム: 名声と富を求める
2022/7/28The key players within the ransomware ecosystem, including affiliates and initial access brokers, work together cohesively like a band of musicians, playing their respective parts as they strive for fame and fortune.
国家安全保障電気通信諮問委員会(NSTAC)、米国連邦政府機関によるゼロトラスト導入を奨励
2022/7/22Kudos to the National Security Telecommunications Advisory Committee for its report on boosting zero trust and ID management. As the Biden administration looks to implement its recommendations, a strong focus on vulnerability management would optimize opportunities for success.
オラクル、2022 年 7月 「Critical Patch Update」で 188 件の CVE を修正
2022/7/20Oracle addresses 188 CVEs in its third quarterly update of 2022 with 349 patches, including 66 critical updates.
図々しく荒削りで非論理的: 恐喝グループ「LAPSUS$」を理解する
2022/7/202022 年の最初の数か月で業界の注目を集めた後、恐喝グループ「LAPSUS$」は息をひそめていますが、 この恐喝グループの経緯や手口から何が学べるでしょうか?