Tenable ブログ
The Keys to Implementing Exposure Management
CVE-2021-38647 (OMIGOD): Azure Linux 仮想マシンにおける「緊急」なリモートコード実行の脆弱性
Agents installed by default on Azure Linux virtual machines are vulnerable to a remote code execution flaw that can be exploited with a single request. Background On September 14, researchers at Wiz disclosed a set of four vulnerabilities in Microsoft’s Open Management Infrastructure (OMI), an ope...
Tenable、セキュリティをコードとして定義するためにAccuricsを買収する契約を締結
Tenable has entered into an agreement to acquire Accurics. Learn more....
取締役会にゼロトラストを理解してもらうには
Framing zero trust as a cybersecurity strategy for reducing business risk is a surefire way to get your executive leadership to take notice. It's no secret that CISOs and other cybersecurity leaders struggle to communicate with executive management and boards of directors in a language they can und...
ポリシーのコード化によってサイバーレジリエンスを確立する方法
When it comes to cloud native architecture, the one constant we can count on is change. Complex systems need a comprehensive, proactive security approach, and that is where Policy as Code (PaC) comes into play. Policy as Code takes the policies that are most important to your organization, codifi...
Access Keys: An Unintended Backdoor-by-Design to Azure Storage Accounts Data
Learn the importance of understanding the assignments of Azure resource roles when giving permissions....
米国重要インフラの サイバーセキュリティに関する覚書の概説
Recent activity from the Biden Administration represents a watershed moment in the establishment of baseline standards for preparing, mitigating and responding to attacks that impact the critical infrastructure we all rely on. On July 28, the Biden Administration issued the National Security Memora...
The AWS Shared Responsibility Model: Everything You Need to Know
What the shared responsibility model means, its many challenges & how to protect your cloud infrastructure....
How Risk-based Vulnerability Management Can Help Address the Most Commonly Exploited Vulnerabilities Today
Tenable's analysis of the 29 vulnerabilities highlighted in a recent CISA alert reveals key differences between CVSS and our Vulnerability Priority Rating.Attackers continue to exploit known and prevalent vulnerabilities. 昨年、米国の Cybersecurity and Infrastructure Security Agency (CISA) an...
基礎に焦点を当てる: ランサムウェアから身を守るための 6 つのステップ
ランサムウェアはサイバー衛生の不備を収益化する犯罪です。対抗できるセキュリティ構築のための 6 つのステップをご紹介します。ランサムウェアは、どの企業でも役員会で取り上げられる問題となっています。In 2020 alone, there were more than 300 million ransomware attacks recorded, an increase of more t...
