Tenable ブログ
北朝鮮の脅威アクター「UNC1069」による Axios npm サプライチェーン攻撃に関するよくある質問
Tenable Nessus、ウェブアプリのスキャン機能でアタックサーフェスの保護範囲を拡張
Web applications can be an Achilles' heel for even the most mature security organizations. For small- and medium-sized businesses, as well as the security consultants and pen testers who support them, unsecured web apps can be a pathway to a data breach that can bring an organization to its knees…
Tenable サイバーウォッチ: バイデン米大統領、AI 分野の対中投資を規制; CISA、サイバーセキュリティ戦略計画を発行、その他
This week’s edition of Tenable Cyber Watch unpacks the White House’s new executive order seeking to limit U.S. investments in Chinese AI and addresses the cause behind most cloud breaches. また、 CISA’s new cybersecurity strategic plan.
サイバーセキュリティニュース: CISO は事後的な対応よりも予防を重視、CISA はサイバーチームに量子ベースのサイバー攻撃への備えを促す
Time to start prepping for the quantum computing threat? CISA thinks so. Plus, why security leaders are prioritizing security prevention tools. Also, find out why ransomware attacks surged in July. Oh, and the White House wants your input on open source security. その他、関連トピックについても触れます。
CVE-2023-38035: Ivanti Sentry API における認証バイパスの脆弱性の悪用が確認される
For the third time in a month, Ivanti discloses a zero-day vulnerability in one of its products that has been exploited in the wild
Tenable サイバーウォッチ: ホワイトハウスがサイバースキル不足に対する取り組みを発表、データ漏えいのコスト上昇、その他
This week’s edition of Tenable Cyber Watch unpacks the White House’s new initiative to tackle the cyber skills shortage and addresses the surge data breach costs. また、 NSA and CISA’s security guidance for 5G network slicing.
サイバーセキュリティニュース: CIS ガイド、手頃な価格でサイバーハイジーンの基盤を構築する方法を概説
The Center for Internet Security unpacks how to establish foundational cyber hygiene at a reasonable cost. Plus, the Cyber Safety Review Board issues urgent security recommendations on its Lapsus$ report – and announces it’ll next delve into cloud security. Moreover, are humans or AI better at…
The Next Step in the IMDSv1 Redemption Journey
Learn about AWS’s new open source library for enforcing IMDSv2 and Tenable Cloud Security’s new lab for trying it out.
Tenable 主催の Capture the Flag 2023: 結果報告!
It's time to crown the winners of this year's Capture the Flag Event!
Tenable サイバーウォッチ: Black Hat USA の最新情報、SANS がセキュリティ意識に関する 2023 年レポートをリリース、その他
This week’s edition of Tenable Cyber Watch dishes out five hot takes from Black Hat USA and provides guidance on how to better mitigate shadow IT risks. また、 How you can boost your security awareness program.