From Vulnerability Discovery to Remediation: How Tenable and HCL BigFix Can Help
Reducing the time required to move from vulnerability assessment to remediation is a never ending challenge for most organizations. Here's how the integration between Tenable and HCL BigFix can help...
CVE-2021-1675: Proof-of-Concept Leaked for Critical Windows Print Spooler Vulnerability
Researchers published and deleted proof-of-concept code for a remote code execution vulnerability in Windows Print Spooler, called PrintNightmare, though the PoC is likely still available. Update...
Find Your Fit on Team Tenable
Engineering, human resources, product management and billing: Here's how four employees with a wide range of skills are making their mark in cybersecurity. At Tenable, we're united in a common...
CVE-2020-3580: Proof of Concept Published for Cisco ASA Flaw Patched in October
Researchers at Positive Technologies have published a proof-of-concept exploit for CVE-2020-3580. There are reports of researchers pursuing bug bounties using this exploit. Update June 28: The...
Elon Musk and YouTube Advertising Scams: Fake SpaceX “Coin” Promoted in Ads During Cryptocurrency Videos
Scammers are on pace to steal nearly $1 million USD from unsuspecting users through a popular decentralized finance protocol, Uniswap, by abusing YouTube to promote a fake SpaceX coin as part of ads...
CVE-2021-20019: SonicWall Fixes Incomplete Patch for CVE-2020-5135
SonicWall issues a new advisory and CVE identifier to address an incomplete fix for CVE-2020-5135. Background On June 22, SonicWall published an advisory (SNWLID-2021-0006) to address an incomplete...
Configuring The Ports That Nessus Scans
When only select ports require scanning, use these easy steps to define them When assessing targets with a network scanner like Nessus, a common question is "How do I control the ports that Nessus...
8 Active Directory Best Practices to Minimize Cybersecurity Risk
Follow these best practices to harden your Active Directory security against cyberattacks and stop attack paths. Active Directory (AD) equips businesses using Windows devices to organize IT...
How to Discover and Continuously Assess Your Entire Attack Surface
To eliminate network blind spots and fully understand your entire attack surface, it's essential to determine which discovery and assessment tools are required for each asset type. If you've been in...
Microsoft Teams: Vulnerability in Microsoft Power Apps Service Allows Theft of Emails, Files and More
A flaw in Microsoft Power Apps could allow attackers to steal emails, Teams messages and OneDrive files. Background Microsoft recently patched a vulnerability in Microsoft Teams, a business...
How to Protect Active Directory Against Ransomware Attacks
Ransomware attacks every type of organization from every angle and Active Directory remains the common target. Stop privilege escalation by fixing these key AD and group policy misconfigurations....
Microsoft’s June 2021 Patch Tuesday Addresses 49 CVEs (CVE-2021-31955, CVE-2021-31956 and CVE-2021-33742)
Microsoft addresses 49 CVEs with six having been observed as exploited in the wild 5Critical 44Important 0Moderate 0Low Microsoft patched 49 CVEs in its June 2021 Patch Tuesday release,...
Pages
Stay Informed
By subscribing, Tenable may send you email communications regarding its products and services. You may opt out of receiving these communications at any time by using the unsubscribe link located in the footer of the emails delivered to you. You can also manage your Tenable email preferences by visiting the Subscription Management Page.
Tenable will only process your personal data in accordance with its Privacy Policy.