Blog di Tenable
How Tenable One Helps Canadian Orgs Set Up Exposure Management Programs and Meet Compliance Demands
CVE-2022-37958: FAQ sulla vulnerabilità critica di Microsoft SPNEGO NEGOEX
Microsoft recently reclassified a vulnerability in SPNEGO NEGOEX, originally patched in September, after a security researcher discovered that it can lead to remote code execution. Organizations are urged to apply these patches as soon as possible....
Cloud Native Application Protection Platform (CNAPP): An Evolving Approach to Cloud Security
A look at how IAM works and how CIEM enhances IAM security in the cloud....
Your Guide to IAM – and IAM Security in the Cloud
A look at how IAM works and how CIEM enhances IAM security in the cloud....
Tenable Cyber Watch: Controllo del metaverso, protezione di AI e ML, minaccia di Daixin per gli ospedali e passaggio a piattaforme informatiche integrate
To help you zap those Monday blahs, here’s a caffeinated shot of cyber news you can use: Police chiefs must get hip to the metaverse. CISOs are shifting to integrated cybersecurity platforms. There's new guidance for securing ML and AI systems. Hospitals face a ransomware threat from the Daixin cybe...
Cybersecurity Snapshot: Truffe di phishing, dinamiche evolutive di mercato, rischi del metaverso, sondaggio Log4J
Get the latest on worrisome phishing stats; businesses’ embrace of the metaverse, come what may; a (small) improvement in CISO job stability; the compensation cost of security leaders; and more!...
Il Patch Tuesday di Microsoft di dicembre 2022 risolve 48 CVE (CVE-2022-44698)
Microsoft addresses 48 CVEs including two zero-day vulnerabilities, one that has been exploited in the wild (CVE-2022-44698) and one that was publicly disclosed prior to a patch being available (CVE-2022-44710)....
CVE-2022-27518: RCE non autenticato in Citrix ADC e Gateway
Citrix has patched a critical remote code execution vulnerability in its Gateway and ADC products. This vulnerability has reportedly been exploited as a zero day; organizations should patch urgently....
Come valutare la preparazione alla sicurezza informatica dei fornitori di servizi IT e dei fornitori dei servizi gestiti (MSP)
Improperly evaluating the cybersecurity capabilities of prospective IT service providers and managed service providers (MSPs) can put your organization's data and systems at risk. A new guide from CompTIA can help you ask the right questions....
CVE-2022-42475: Fortinet patch Zero Day in FortiOS SSL VPN
Fortinet has patched a zero day buffer overflow in FortiOS that could lead to remote code execution. There has been a report of active exploitation and organizations should patch urgently....
