Tenable Blog

Colonial Pipeline Ransomware Attack: How to Reduce Risk in OT Environments

by Michael Rothschild on May 8, 2021

It's time for Operational Technology (OT) environments to pursue a more proactive approach to cybersecurity by making cyber maintenance as much of a routine practice as the mechanical maintenance of systems and equipment.

Open Banking Is the Future: 5 Ways to Secure Your Network

by Team Tenable on May 6, 2021

The sharing of financial data across applications is changing how consumers save, manage and spend their money. Here's how financial institutions can secure the next generation of banking.

Do Not Take an IP-centric Approach to Attack Surface Mapping

by Robert Hansen on May 5, 2021

Relying on IP data to identify assets means you're likely missing critical information needed to map your attack surface.

Disrupting the Pervasive Attacks Against Active Directory and Identities

by Amit Yoran on April 27, 2021

Securing Active Directory and the identity infrastructure is critical for preventing privilege escalation, lateral movement and attacker persistence.

As we look deeper into recent high-profile breaches, one thing becomes crystal clear: an attacker's ability to impact the identity infrastructure (read: Active Directory) is central to cybersecurity.

Disrupting Attack Paths: Why Tenable's Acquisition of Alsid Matters

by Renaud Deraison on April 27, 2021

This acquisition allows us to combine Tenable's ability to assess the state of the digital infrastructure with Alsid's ability to assess the state of Active Directory, helping security professionals answer the question: how secure are we?

How to Migrate to Office 365 the Secure Way

by Team Tenable on April 27, 2021

Looking to extend your Active Directory to the cloud? This guide explores options for securely migrating your on-prem identities and access controls to Office 365.

Cloud computing offers lower costs, better flexibility and greater capacity beyond the limited resources most organizations have in their data centers.

But migrating data and extending user identities to the cloud is not risk-free. Compromising user identities in the cloud can lead to very immediate exposure of sensitive files that are de facto accessible directly on the internet.

The Top 10 Active Directory Security Questions CISOs Must Ask

by Team Tenable on April 27, 2021

Active Directory has become the primary target for advanced cyberattacks and ransomware groups. Here's what you should consider when evaluating security vendors.

For more than 20 years, Active Directory has formed the backbone of digital infrastructure for organizations worldwide. When fully operational, its purpose goes beyond just governing authentication and passwords to managing the crucial access control rights for almost every organizational asset.

Insider Threats in Active Directory: How to Safeguard Privileged and Non-Privileged User Accounts

by Derek Melber on April 27, 2021

In this post, we define privileges related to Active Directory and highlight the key security risks of internal privileged and non-privileged user groups.

Primary Group ID Attack in Active Directory: How to Defend Against Related Threats

by Derek Melber on April 27, 2021

The Primary Group ID in Active Directory, created to help manage access to sensitive resources, has become a critical vulnerability that attackers can exploit to escalate privileges without leaving a trace.

How to Stop the Kerberos Pre-Authentication Attack in Active Directory

by Derek Melber on April 27, 2021

Here’s a look at how to safeguard your Active Directory from the known roasting attack on Kerberos Pre-Authentication.

As part of the Kerberos authentication process in Active Directory, there is an initial request to authenticate without a password. This is an artifact left over from Kerberos versions earlier than Kerberos 5. In these earlier versions, Kerberos would allow authentication without a password.

Tenable One Exposure Management Platform

Platform categories

Platform capabilities

Cloud Exposure

Vulnerability Exposure

OT/IoT Exposure

Identity Exposure

Business needs

Industries

Compliance

Public Sector

The Tenable difference

Compare Tenable to:

Resources

Research

Tenable Assure partners

Other partner opportunities

Support

Services

Tenable Trust

About us

Media

Connect

Join us

Tenable Blog

Colonial Pipeline Ransomware Attack: How to Reduce Risk in OT Environments

Open Banking Is the Future: 5 Ways to Secure Your Network

Do Not Take an IP-centric Approach to Attack Surface Mapping

Disrupting the Pervasive Attacks Against Active Directory and Identities

Disrupting Attack Paths: Why Tenable's Acquisition of Alsid Matters

How to Migrate to Office 365 the Secure Way

The Top 10 Active Directory Security Questions CISOs Must Ask

Insider Threats in Active Directory: How to Safeguard Privileged and Non-Privileged User Accounts

Primary Group ID Attack in Active Directory: How to Defend Against Related Threats

How to Stop the Kerberos Pre-Authentication Attack in Active Directory

Tenable Blog

Tenable Vulnerability Management

Tenable Vulnerability Management

Thank You

Tenable Vulnerability Management

Tenable Vulnerability Management

Thank you

Tenable Vulnerability Management

Tenable Vulnerability Management

Thank you

Try Tenable Web App Scanning

Buy Tenable Web App Scanning

Thank you

Request a demo of Tenable Security Center

Request a demo of Tenable OT Security

Request a demo

Request a demo of Tenable Cloud Security

See Tenable One in action

See Tenable Attack Surface Management in action

Get a demo of Tenable Enclave Security

Thank You

Try Tenable Nessus Professional free

NEW - Tenable Nessus Expert now available

Buy Tenable Nessus Professional

Try Tenable Nessus Expert free

Buy Tenable Nessus Expert

Learn How Tenable Helps Achieve SLCGP Cybersecurity Plan Requirements

Get a demo of Tenable Patch Management

See
Tenable One
in action

NEW - Tenable Nessus Expert
now available