Tenable Network Security Podcast Episode 163 - "Bind Vulnerability, Windows Hardening"
Announcements
- We're hiring! - Visit the Tenable website for more information about open positions.
- Check out our video channel on YouTube which contains new Nessus and SecurityCenter tutorials.
- Tenable Tweets - You can find us on Twitter at http://twitter.com/tenablesecurity where we make product and company announcements, provide Nessus plugin statistics, and more!
- Want to ask questions about Nessus, SecurityCenter, LCE, and PVS and get answers from the experts at Tenable? Join Tenable's Discussion Forum for custom scripts, announcements, and more!
- You can subscribe to the Tenable Network Security Podcast on iTunes!
New & Notable Plugins
Nessus
General
- Novell Messenger Client Detection (Mac OS X)
- Novell Messenger Client Import Command Remote Code Execution
- Apple OS X Profile Manager Device Management Private Interface Managed Device Enumeration
- Eye-Fi Helper < 3.4.23 Directory Traversal
- Stunnel 4.21 - 4.54 Multiple Vulnerabilities
- Google Chrome < 26.0.1410.43 Multiple Vulnerabilities
- MS KB2819682: Security Updates for Microsoft Windows Store Applications
- Viscosity ViscosityHelper Symlink Attack Local Privilege Escalation
- Git Repository Served by Web Server
- Patch Management: Tivoli Endpoint Manager Get Installed Packages
- GD Star Rating Plugin for WordPress export.php Authentication Bypass Information Disclosure
- VMSA-2013-0004 : VMware ESXi security update for third party library
- ISC BIND 9 libdns Regular Expression Handling DoS
- McAfee Vulnerability Manager cert_cn Parameter XSS
Application Detection
Java
Databases
Passive Vulnerability Scanner
SecurityCenter Report Templates
Stories
- Many Amazon S3 cloud storage users are exposing sensitive company secrets
- Windows Hardening Guide
- Digital cameras easily turned into spying devices
- Three reasons you shouldn't neglect your application security
- Got Attitude?
- Thousands of paroled CA sex offenders, felons easily disable GPS monitors
- Brace for more mega-DDoS attacks
Related Articles
Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"
February 13, 2014<p></p>
Cybersecurity Snapshot: Apply Zero Trust to Critical Infrastructure’s OT/ICS, CSA Advises, as Five Eyes Spotlight Tech Startups’ Security
November 1, 2024Should critical infrastructure orgs boost OT/ICS systems’ security with zero trust? Absolutely, the CSA says. Meanwhile, the Five Eyes countries offer cyber advice to tech startups. Plus, a survey finds “shadow AI” weakening data governance. And get the latest on MFA methods, CISO trends and Uncle Sam’s AI strategy.
FY 2024 State and Local Cybersecurity Grant Program Adds CISA KEV as a Performance Measure
October 31, 2024The CISA Known Exploited Vulnerabilities (KEV) catalog and enhanced logging guidelines are among the new measurement tools added for the 2024 State and Local Cybersecurity Grant Program.
Cybersecurity Snapshot: New Guides Offer Best Practices for Preventing Shadow AI and for Deploying Secure Software Updates
October 25, 2024Looking for help with shadow AI? Want to boost your software updates’ safety? New publications offer valuable tips. Plus, learn why GenAI and data security have become top drivers of cyber strategies. And get the latest on the top “no-nos” for software security; the EU’s new cyber law; and CISOs’ communications with boards.
- Podcast