Tenable Blog
SubscribeNarrow Focus on CVEs Leaves Organizations Vulnerable to Attacks
Oracle October 2021 Critical Patch Update Addresses 231 CVEs
Oracle addresses 231 CVEs in its final quarterly update of 2021 with 419 patches, including 36 critical updates. Background On October 19, Oracle released its Critical Patch Update (CPU) for October 2...
Five Professionals Explain Why You Should Start a Career in the Vital and Growing Cybersecurity Industry
Don't assume you need programming expertise. Don't be intimidated and don’t place limits on yourself. You have an interest in tech. You want to make the world a better place. You’re intrigued by the i...
3 Qualifications Cyber Safety Review Board Members Must Have
Expertise in security forensics, technology development and aligning cybersecurity with business goals are essential to advising federal policymakers following significant cyber incidents. In May, Pre...
Spotlight on Japan: Digital Transformation Initiatives Heighten Risk Levels
As Japanese organizations roll out digital transformation initiatives and expand remote workforces, security teams need to address new risks in the new world of work. The rapid transition to remote wo...
As a Busy 2021 Draws to a Close, What is Capitol Hill Focusing on Next?
Cybersecurity priorities like zero trust, infrastructure security and more must remain top of mind for Congress in 2022 2021 has proven to be a big year for cybersecurity. Zero trust, a concept intro...
Spotlight on Brazil: Remote Work Requires New Risk Management Practices
Remote work is here to stay — along with the risks it introduces to Brazilian organizations, if not managed properly. Here's what you need to know. The pandemic forced many Brazilian organizations to...
Microsoft’s October 2021 Patch Tuesday Addresses 74 CVEs (CVE-2021-40449)
Microsoft addresses 74 CVEs in its October 2021 Patch Tuesday release, including another Print Spooler flaw and a zero-day vulnerability in Win32k that was exploited in the wild.
Cybersecurity Awareness: Six Tips to Help Your Employees Be Cybersmart
We believe it's time for a new approach to cyber awareness, one that borrows on the concept of the shared responsibility model common in cloud computing. Here's how we get there. How much consideratio...
Tenable.io and Tenable.io WAS Achieve FedRAMP Authorization
Six reasons why FedRAMP authorization for Tenable.io and Tenable.io Web App Scanning (WAS) is important for our customers and partners. After lengthy and rigorous testing under the U.S. Federal Risk a...
CVE-2021-41773: Path Traversal Zero-Day in Apache HTTP Server Exploited
The Apache HTTP Server Project patched a path traversal vulnerability introduced less than a month ago that has been exploited in the wild. Update October 7: The Solution section has been...
Web Application Security: 3 Lessons We Learned From Formula 1™ Racing
Web application security is more than a best practice — it's a critical part of your security program. Find out how discovering and testing your web applications can help you gain an edge over attacke...
How to Use Tenable.io WAS to Find and Fix Sensitive Information Exposure in Microsoft Power Apps
Researchers identified a configuration issue in Microsoft Power Apps portals that exposed millions of records for nearly 50 organizations. Learn how you can use Tenable.io Web App Scanning to identify...
