Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Tenable Blog

Subscribe

Cybersecurity Snapshot: Key 2022 Data for Cloud Security, Vulnerability Management, EASM, Web App Security and More

December 30, 2022

As 2022 ends, we highlight important data points that shine a light on the trends, challenges and best practices that matter to cybersecurity leaders eager to boost their exposure management and reduce their organizations’ cyber risk. 

CVE-2022-47939: Critical RCE Vulnerability in Linux Kernel

December 29, 2022

A critical remote code execution vulnerability in the Linux kernel has been publicly disclosed by Trend Micro's Zero Day Initiative in its ZDI-22-1690 advisory. The vulnerability has been given a CVSSv3 of 10.0. There are no reports of active exploitation.

Cybersecurity Snapshot: Six Predictions from Tenable for 2023

December 23, 2022

As 2022 draws to a close, we asked Tenable experts what they expect for the new year. After reading the tea leaves, they’re forecasting developments in extortion attacks, OT security, SaaS threats, metaverse risks and more!

Patch Tuesday’s Impact on Cybersecurity Over the Years

December 22, 2022

Dive into the history of Patch Tuesday and learn how it continues to influence the ways security teams manage patches.

CVE-2022-37958: FAQ for Critical Microsoft SPNEGO NEGOEX Vulnerability

December 21, 2022

Microsoft recently reclassified a vulnerability in SPNEGO NEGOEX, originally patched in September, after a security researcher discovered that it can lead to remote code execution. Organizations are urged to apply these patches as soon as possible.

Cloud Native Application Protection Platform (CNAPP): An Evolving Approach to Cloud Security

December 20, 2022

A look at how IAM works and how CIEM enhances IAM security in the cloud.

Your Guide to IAM – and IAM Security in the Cloud

December 20, 2022

A look at how IAM works and how CIEM enhances IAM security in the cloud.

Tenable Cyber Watch: Policing the Metaverse, Securing AI and ML, Daixin's Threat to Hospitals, and Shifting to Integrated Cyber Platforms

December 19, 2022

To help you zap those Monday blahs, here’s a caffeinated shot of cyber news you can use: Police chiefs must get hip to the metaverse. CISOs are shifting to integrated cybersecurity platforms. There's new guidance for securing ML and AI systems. Hospitals face a ransomware threat from the Daixin cyber gang.

Cybersecurity Snapshot: Phishing Scams, Salary Trends, Metaverse Risks, Log4J Poll

December 16, 2022

Get the latest on worrisome phishing stats; businesses’ embrace of the metaverse, come what may; a (small) improvement in CISO job stability; the compensation cost of security leaders; and more!

Microsoft’s December 2022 Patch Tuesday Addresses 48 CVEs (CVE-2022-44698)

December 13, 2022

Microsoft addresses 48 CVEs including two zero-day vulnerabilities, one that has been exploited in the wild (CVE-2022-44698) and one that was publicly disclosed prior to a patch being available (CVE-2022-44710).

CVE-2022-27518: Unauthenticated RCE in Citrix ADC and Gateway

December 13, 2022

Citrix has patched a critical remote code execution vulnerability in its Gateway and ADC products. This vulnerability has reportedly been exploited as a zero day; organizations should patch urgently.

How To Assess the Cybersecurity Preparedness of IT Service Providers and MSPs

December 13, 2022

Improperly evaluating the cybersecurity capabilities of prospective IT service providers and managed service providers (MSPs) can put your organization's data and systems at risk. A new guide from CompTIA can help you ask the right questions.

Apache Log4j Flaw Puts Third-Party Software in the Spotlight

Get the Details >

Cybersecurity News You Can Use

Enter your email and never miss timely alerts and security guidance from the experts at Tenable.