Blogs Tenable
As the NVD scales back CVE enrichment, here’s what Tenable customers need to know
To Boost Software Supply Chain Security, Stop the Finger-Pointing
Google’s annual DevOps report finds that organizations with a low-blame, collaborative approach have stronger app dev security practices.
CVE-2021-39144: VMware Patches Critical Cloud Foundation Vulnerability in XStream Open Source Library
VMware issues patches for end-of-life versions of Cloud Foundation Network Security Virtualization for vSphere (NSX-V) to address a critical vulnerability in an open source library. Background On October 25, VMware published VMSA-2022-0027, an advisory for multiple vulnerabilities in its…
Cybersecurity Snapshot: 6 Things That Matter Right Now
Topics that are top of mind for the week ending Oct. 21 | The problem with Gen Zers and Millennials | Global shortage of cybersecurity pros worsens | An informal poll about attack surface growth | Password usage drops a bit | And much more!
Gestion de l'exposition : notre vision pour sécuriser la surface d'attaque moderne
La sécurisation des environnements IT actuels, à la fois complexes et dynamiques, nécessite de réunir la gestion des vulnérabilités, la sécurité des applications web, la sécurité du cloud, la sécurité de l'identité, l'analyse du chemin d'attaque et la gestion de la surface d'attaque externe, pour comprendre l'étendue et la profondeur des expositions.
Oracle October 2022 Critical Patch Update Addresses 179 CVEs
Oracle addresses 179 CVEs in its fourth and final quarterly update of 2022 with 370 patches, including 56 critical updates.
Three U.S. Policy Recommendations to Strengthen OT Cybersecurity
A presidential advisory committee report outlined strategies to improve government asset visibility, procurement and information sharing to enhance operational technology (OT) cybersecurity practices.
IAM Role Trust Update – What You Need to Know
When it comes to assuming roles, AWS is changing an aspect of how trust policy is evaluated; here is a quick digest of what this change may mean to you.
How Tenable Helps Federal Agencies Meet CISA’s Binding Operational Directive 23-01
Here’s how to leverage Tenable solutions to achieve compliance with BOD 23-01 from the Cybersecurity and Infrastructure Security Agency (CISA).
Cybersecurity Snapshot: 6 Things That Matter Right Now
Topics that are top of mind for the week ending Oct. 14 | DevOps team culture is key for supply chain security | SecOps gets more challenging as attack surface expands | Weak credentials hurt cloud security | Incident responders grapple with stress | Security spending grows | And much more!