Cr8escape: How Tenable Can Help (CVE-2022-0811)
Mars 29, 2022CrowdStrike discloses container escape vulnerability affecting CRI-O for Kubernetes. Here’s how Tenable.cs can help you detect vulnerable pods. Background On March 15, CrowdStrike published tech...
ContiLeaks: Les discussions révèlent plus de 30 vulnérabilités utilisées par Conti Ransomware – Ce que peut faire Tenable (en anglais)
Mars 24, 2022Private messages between Conti members uncover invaluable information about how the infamous ransomware group hijacks victims’ systems. Leaked internal chats between Conti ransomware group members ...
Behind the Scenes: How We Picked 2021’s Top Vulnerabilities – and What We Left Out
Mars 11, 2022The 2021 Threat Landscape Retrospective explored the top five vulnerabilities of the year. Learn about other high-impact vulnerabilities that nearly made our list. When putting together the Threat ...
Microsoft’s March 2022 Patch Tuesday Addresses 71 CVEs (CVE-2022-23277, CVE-2022-24508)
Mars 8, 2022<p>Microsoft addresses 71 CVEs in its March 2022 Patch Tuesday release, including three vulnerabilities that were publicly disclosed as zero-days.</p>
CNAPP: What Is It and Why Is It Important for Security Leaders?
Mars 3, 2022A Cloud-Native Application Protection Platform (CNAPP) offers four key benefits to reduce risk and improve visibility. Here’s what you need to know.
Government Advisories Warn of APT Activity Resulting from Russian Invasion of Ukraine
24, 2022 févrierGovernment agencies publish warnings and guidance for organizations to defend themselves against advanced persistent threat groups. As governments around the world call for heightened cyber vigil...
Tenable’s Acquisition Of Cymptom: An “Attack Path-Informed” Approach to Cybersecurity
17, 2022 févrierTenable’s recent acquisitions all had the same overarching goal: helping our customers gain better security insights across their cyberattack surface.
Log4Shell : A Tale of Two Detection Techniques
15, 2022 févrierEndpoint detection and response (EDR) can only take you so far in identifying Log4j exploit attempts. Here’s why dynamic checks are needed to uncover vulnerable versions of Log4j.
CVE-2022-22536 : SAP Patches Internet Communication Manager Advanced Desync (ICMAD) Vulnerabilities
9, 2022 févrierSAP and Onapsis Research Labs collaborate to disclose three critical vulnerabilities impacting SAP NetWeaver Application Servers. The most severe of the three could lead to full system takeover. Ba...
Microsoft’s February 2022 Patch Tuesday Addresses 48 CVEs (CVE-2022-21989)
8, 2022 févrierMicrosoft addresses 48 CVEs in its February 2022 Patch Tuesday release, including one zero-day vulnerability that was publicly disclosed, but not exploited in the wild.
CVE-2022-20699, CVE-2022-20700, CVE-2022-20708 : Critical Flaws in Cisco Small Business RV Series Routers
3, 2022 févrierCisco patches 15 flaws in Cisco Small Business RV Series Routers, including three with critical 10.0 CVSSv3 scores. Update February 4: Cisco has updated their advisory to announce partial patch...
Tenable Lance une suite de nouvelles fonctions produit pour offrir une sécurité cloud-native complète tout au long du cycle de vie
2, 2022 févrierOur newest Tenable.cs product features are designed to enable organizations to stay agile while reducing risk. A suite of upgrades to Tenable.cs, our cloud-native application protection platform, a...