Tenable ブログ
サイバーセキュリティニュース: AI Security Trails AI Usage, Putting Data at Risk, IBM Warns, as OWASP Tackles Agentic AI App Security
CVE-2024-24919: チェックポイントのセキュリティゲートウェイの情報漏えいのゼロデイ脆弱性の悪用が確認される
Amid warnings of threat actors targeting VPN devices, Check Point has identified a zero-day information disclosure vulnerability impacting Check Point Network Security gateways which has been exploited by malicious actors....
Tenable、パートナー重視の市場開拓戦略への取り組みとして Assure MSSP プログラムと MSSP ポータルに革新的な拡張機能を提供
The enhancements include a new self-provisioning capability in the MSSP Portal that’ll drastically shorten customer onboarding and a quarterly billing option for MSSP Program partners...
サイバーセキュリティニュース: EPA が上下水道処理処理施設にサイバーセキュリティの強化を要請、OpenSSF がオープンソースソフトウェア向けの脅威情報プラットフォームを開始
Check out the EPA’s call for water plants to beef up their cyber defenses. Plus, open source developers have a new platform to share threat intelligence. Moreover, business email compromise attacks prompt alert from U.K.’s cyber agency. And CISA tackles DNS encryption best practices. And much more!...
CNAPP の 10 ステップ がクラウドセキュリティの初心者を熟練者に変える
クラウドセキュリティでは文脈が重要です。 In a recent RSA presentation, Tenable's Shai Morag offered ten tips for end-to-end cloud infrastructure security....
Kubernetes Persistent Volumes を保護する際に留意すべき点
To many, Kubernetes is a black box that’s difficult to understand, manage and secure. If you’re using stateful persistent volumes – cloud resources that live and manage data outside the scope of your pods – it can be even darker. ...
リングイスティックランバージャック:ログエンドポイントを介したクラウドサービスの攻撃(Fluent Bit-CVE-2024-4323)
Tenable Research has discovered a critical memory corruption vulnerability dubbed Linguistic Lumberjack in Fluent Bit, a core component in the monitoring infrastructure of many cloud services....
サイバーセキュリティニュース: CISA が医療機関にブラックバスタについて警告、Tenable の調査によりクラウド環境の侵害が蔓延していることが判明
Find out why healthcare organizations must beware of the Black Basta ransomware group. Meanwhile, a Tenable study found that 95% of surveyed organizations suffered a cloud-related breach, and offers insights for boosting cloud security. Plus, a Cloud Security Alliance report delves into how AI syste...
Kinsing マルウェアはマニュアルページとして侵入し、クラウドサーバーを標的にする
Tenable Cloud Security Research Team has recently discovered that Kinsing malware, known for targeting Linux-based cloud infrastructures, exploits Apache Tomcat servers with new advanced stealth techniques. Explore our analysis and the indicators of compromise in this report....
マイクロソフトの 2024 年 5 月月例セキュリティ更新プログラム: 59 件の CVE に対処 (CVE-2024-30051、CVE-2024-30040)
Microsoft addresses 59 CVEs in its May 2024 Patch Tuesday release with one critical vulnerability and three zero-day vulnerabilities, two of which were exploited in the wild....
