Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Tenable Blog

Subscribe

Tenable Network Security Podcast - Episode 16

Welcome to the Tenable Network Security Podcast - Episode 16

Announcements

programmer1.jpg
George Theall heads up Tenable's Research group and shares with us some interesting thoughts about vulnerabilities, Nessus plugins, and more!


Stories

  • Metasploit Project New Releases: Airpwn added - I wanted to use this story as a talking point to underscore a type of attack that not too many people know about. It debuted at Defcon years ago and is still a perfectly valid attack vector on open wireless networks. It allows an attacker to insert content into data streams using raw 802.11 frames. I've demonstrated this attack at conferences in the past, and had HTML code running on 50 people's browsers within a few minutes. The fix, use WPA!
  • Adobe Flash Security Perspectives -Adobe, like Microsoft and other popular technologies, gets hit hard by attackers and many vulnerabilities are exposed as a result. This article covers both sides of the story, and offers some hope for Adobe as they realize that the popularity of their software has grown, and so should their security program and software development lifecycle.
  • Be careful what you post online! - Employees, potential employees, and employers really need to take a hard look at what's being exposed through social networking sites. I'm not suggesting that companies "spy" on employees or potential employees, but to monitor what is available publicly.
  • Cloud Security Public Announcement From Chris Hoff - If your security practices suck in the physical realm, you’ll be delighted by the surprising lack of change when you move to Cloud.
  • Thunderbird 3.0 Released - While I'm not an earlier adopter of new software versions, it appears that version 3.0 of Thunderbird also fixes some newly discovered vulnerabilities. I'm still adjusting to the new features, but did perform the upgrade so that I could take advantage of any security fixes as well.

Related Articles

Cybersecurity News You Can Use

Enter your email and never miss timely alerts and security guidance from the experts at Tenable.