Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Blogs Tenable

July 16, 2025

OCI, Oh My: Remote Code Execution on Oracle Cloud Shell and Code Editor Integrated Services

Tenable Research discovered a Remote Code Execution (RCE) vulnerability (now remediated) in Oracle Cloud Infrastructure (OCI) Code Editor. We demonstrated how an attacker could silently 1-click hijack a victim’s Cloud Shell environment and potentially pivot across OCI services. The vulnerability also affected Code Editor’s integrated services such as Resource Manager, Functions and Data Science.

December 9, 2022

Instantané de cyber-sécurité : Anniversaire Log4j, risques CI/CD, infostealers, attaques de messagerie, sécurité OT (en anglais)

Get the latest on the anniversary of the Log4j crisis; OWASP’s top CI/CD risks; a surge of infostealer malware; the fund transfer fraud — business email compromise connection; and more! ...


December 8, 2022

Sécurité du cloud : 5 points clés à retenir de l'étude SANS DevSecOps

Un rapport récent du SANS Institute révèle que les équipes DevSecOps améliorent leurs outils, processus et techniques, même si les environnements IT multi-cloud deviennent de plus en plus complexes à sécuriser. Check out key highlights from the “SANS 2022 DevSecOps Survey.”...


December 6, 2022

Are You Ready for the Next Log4Shell? Tenable’s CSO and CIO Offer Their Advice

Tenable CIO Patricia Grant and CSO Robert Huber share insights and best practices to help IT and cybersecurity leaders and their teams weather the next cyber crisis of Log4j proportions....


December 5, 2022

NETGEAR Router Misconfiguration Opens The Door For Remote Attacks

Tenable Research has discovered a configuration issue impacting NETGEAR Nighthawk WiFi6 Routers commonly used in small offices and large homes. Organizations need to manually apply firmware updates....


December 5, 2022

Introducing the Tenable Cyber Watch, Your Weekly Cyber Newscast

Cybersecurity professionals are inundated with too much information. Separating the signal from the noise is hard. The Tenable Cyber Watch is here to help. Today, Tenable launches Cyber Watch, a weekly video news program highlighting topics that are top-of-mind for cybersecurity professionals aro...


December 2, 2022

Cybersecurity Snapshot: Insights on Log4Shell, the Metaverse, IoT, Pig Butchering, Active Directory

Get the latest on Log4Shell’s global remediation status; the need for metaverse security rules; a shutdown of “pig butchering” domains; tips for secure IoT products; an informal poll about AD security; and more! ...


November 30, 2022

Active Directory Vulnerabilities: How Threat Actors Leverage AD Flaws in Ransomware Attacks

Adopting a proactive stance will give enterprises the head start to shut down new threats to Active Directory whenever they are uncovered....


November 29, 2022

GivingTuesday: See How Tenable Employees Are Giving Back in 2022

Looking for ideas on how to participate in GivingTuesday? We highlight seven nonprofit organizations around the world and share how Tenable employees are giving back....


November 29, 2022

Cloud Security Basics: Protecting Your Web Applications

While cloud computing providers such as Amazon Web Services (AWS), Google Cloud Platform (GCP) and Microsoft Azure offer robust and scalable services, securing your cloud environment brings its own unique challenges. You can reduce risk by addressing these eight common cloud security vulnerabilities...


Des actualités utiles sur la cyber-sécurité

Saisissez votre adresse e-mail et ne manquez plus aucune alerte ni aucun conseil en matière de sécurité de la part de nos experts Tenable.

Coup d’œil sur l'écosystème des ransomwares

Téléchargez le rapport >