Tenable Network Security Podcast - Episode 2
Welcome to the Tenable Network Security Podcast - Episode 2
Announcements
- New videos on finding Rogue access points and discovering the latest IIS 5 FTP vulnerability uploaded http://tenablesecurity.blip.tv
- The Tenable appliance was announced, featuring immediate support for Nessus & Security Center, and future support for PVS and LCE
- As always be sure to check out our blog at http://blog.tenablesecurity.com
Interview: Marcus Ranum on Zero Day Exploits: Defending Your Network
- If you are speaking to the security professionals responsible for network security, what can you tell them about "0day" exploits that is helpful?
- Does the media over-hype so-called "0Day" exploits?
- Why is that remote exploits garner so much attention, I mean XSS vulnerabilities are found everyday and no one seems to notice, yet find a juicy exploit in a commonly exposed network service and everyone goes bonkers?
- Many people are asking, "Who still uses FTP?". This is a common theme that I see even today, large organizations with mature security architecture using clear-text protocols such as Telnet, FTP, and TFTP, why? What can they do to expedite the usage of secure protocols, or does this even matter?
- What is missing from most organization's security architecture, in your opinion, that would work to thwart "0day" or even the most common exploits?
- How do economics work against us when it comes to 0day exploits? For example, there are companies that will hold on to, and sell, "0day" exploits, and there are others that will buy "0day" exploits and work with the vendors to fix them.
We also interview Dan Philpott from FISMApedia!
Stories
- New Version of the popular Subseven trojan released
- Microsoft Warns Of IIS FTp Flaw - Offers workarounds and cookies (okay, just workarounds)
- Upgraded to Snow Leopard? Time to upgrade Adobe Flash too!
Tenable Events
- Ron Gula will be speaking at the Hacker Halted conference in Miami on September 23, 2009
- Marcus Ranum is speaking at Forrester's Security Forum on September 10, 2009
- Paul Asadoorian and others from Tenable Network Security will be attending Cyber Dawn Cyber Exercise on October 3-4, 2009
Related Articles
NIST Cybersecurity Framework Adopted by Thirty Percent of US Organizations
February 18, 2016In the February 18, 2016 Risky Business podcast, Cris Thomas speaks with Patrick Gray about the NIST Cybersecurity Framework. Gartner recently announced that 30% of all US organizations - both public...
Tenable Network Security Podcast Episode 206 - "PCI, Breaches and more!"
September 15, 2014
Tenable and Thales Collaborate to Provide Cyber Defense Simulations to Better Secure Operational Technology Environments
April 18, 2024The heart of the Welsh Valleys is home to the Thales Ebbw Vale campus, a world-class facility jointly funded by the Welsh government as part of its regeneration program for the region. At the core of the facility is the Cyber Range, a simulation and virtualization platform for training, testing, exercising and R&D. Tenable has joined the lineup of solutions used to run real world simulations in this controlled environment.
Oracle April 2024 Critical Patch Update Addresses 239 CVEs
April 17, 2024Oracle addresses 239 CVEs in its second quarterly update of 2024 with 441 patches, including 38 critical updates.
Strengthening the Nessus Software Supply Chain with SLSA
April 16, 2024You know Tenable as a cybersecurity industry leader whose world-class exposure management products are trusted by our approximately 43,000 customers, including about 60% of the Fortune 500. But sometimes we like to give you a peek behind the curtain to share how we protect our own house against cyberattacks – and that’s what this blog is about. Today we’re sharing our experience adopting the supply-chain security framework SLSA, with the hopes that the lessons we learned will be helpful to you.
- Podcast