How to Discover and Continuously Assess Your Entire Attack Surface
To eliminate network blind spots and fully understand your entire attack surface, it's essential to determine which discovery and assessment tools are required for each asset type. If you've been in...
Microsoft Teams: Vulnerability in Microsoft Power Apps Service Allows Theft of Emails, Files and More
A flaw in Microsoft Power Apps could allow attackers to steal emails, Teams messages and OneDrive files. Background Microsoft recently patched a vulnerability in Microsoft Teams, a business...
How to Protect Active Directory Against Ransomware Attacks
Ransomware attacks every type of organization from every angle and Active Directory remains the common target. Stop privilege escalation by fixing these key AD and group policy misconfigurations....
Microsoft’s June 2021 Patch Tuesday Addresses 49 CVEs (CVE-2021-31955, CVE-2021-31956 and CVE-2021-33742)
Microsoft addresses 49 CVEs with six having been observed as exploited in the wild 5Critical 44Important 0Moderate 0Low Microsoft patched 49 CVEs in its June 2021 Patch Tuesday release,...
The Implications of DHS-TSA Directive Pipeline 2021-1
The Department of Homeland Security has issued key guidance for oil and gas operations in the wake of recent cyberthreats. Here are three practical ways to disrupt attack paths in your OT...
CVE-2021-21985: Critical VMware vCenter Server Remote Code Execution
VMware has issued patches for a critical remote code execution vulnerability in vCenter Server. Organizations are strongly encouraged to apply patches as soon as possible. Update June 2: The...
Identifying Prototype Pollution Vulnerabilities: How Tenable.io Web Application Scanning Can Help
Prototype pollution vulnerabilities are complex issues which can put your web applications and users at serious risk. Learn how these flaws arise and how Tenable.io Web Application Scanning can help...
The Top 5 Active Directory Misconfigurations Putting Your Organization at Risk
Tenable's Security Response Team examines some of the most common Active Directory misconfigurations targeted by attackers and offers proactive measures to help cyber defenders disrupt attack paths....
Elon Musk and SNL: Scammers Steal Over $10 Million in Fake Bitcoin, Ethereum and Dogecoin Crypto Giveaways
In the run up to Elon Musk hosting NBC’s Saturday Night Live and the potential mention of Dogecoin on the show, scammers quickly capitalized on his appearance by promoting fake giveaways on Twitter...
These Are the Building Blocks of Effective Vulnerability Management
High-performing cybersecurity teams base their actions and investments on actual risk to the business — not theoretical scores or news headlines. If you're like most cybersecurity...
The Path to Zero Trust: Is it Time to Rethink What We're Calling a Vulnerability?
Reconsidering how we define "vulnerability" is more than a thought exercise. It could represent a sea change in how organizations manage risk. For most of us in cybersecurity, the definition of "...
Microsoft’s May 2021 Patch Tuesday Addresses 55 CVEs (CVE-2021-31166)
After crossing the 100 CVEs patched mark for the first time in April, Microsoft patched just 55 CVEs in May, the lowest number of CVEs patched this year. 4Critical 50Important 1Moderate 0Low...
Pages
Stay Informed
By subscribing, Tenable may send you email communications regarding its products and services. You may opt out of receiving these communications at any time by using the unsubscribe link located in the footer of the emails delivered to you. You can also manage your Tenable email preferences by visiting the Subscription Management Page.
Tenable will only process your personal data in accordance with its Privacy Policy.