Tenable Blog
SubscribeHow to Strengthen Active Directory and Prevent Ransomware Attacks
How Risk-based VM Can Help Address the Most Commonly Exploited Vulnerabilities Today
Tenable's analysis of the 29 vulnerabilities highlighted in a recent CISA alert reveals key differences between CVSS and our Vulnerability Priority Rating. Attackers continue to exploit known and prev...
How to Improve Your Cybersecurity Decision-Making to Reduce Business Risk
Increase your program efficacy by identifying the metrics that offer the right context to aid decision making across the executive, strategic and tactical levels of your organization. The challenges f...
Focus on the Fundamentals: 6 Steps to Defend Against Ransomware
Ransomware is the monetization of poor cyber hygiene. Here are 6 steps you can take to improve your security defenses. Ransomware attacks have become a boardroom issue for nearly every organization. I...
How to Measure the Efficacy of Your Cybersecurity Program: 5 Questions to Ask
When it comes to measuring the efficacy of your security efforts, understanding how your program stacks up against peers can reveal where key improvements or investments are needed. Proving success i...
You Can't Modernize Critical Infrastructure Without Cybersecurity
Will bipartisan legislation in the U.S. make securing IT and operational technology a priority? U.S. lawmakers have an unprecedented opportunity to vastly improve the cybersecurity posture of the nati...
Cut Through the Marketing Hype: Determine Which Vulnerability Assessment Tool Is Right for Your Organization
Not all scanning solutions are created equal… The vulnerability assessment market has changed dramatically over the past several years. A growing number of vendors who once provided scan tools that me...
Zero Day Vulnerabilities in Industrial Control Systems Highlight the Challenges of Securing Critical Infrastructure
The disclosure of zero day vulnerabilities in several Schneider Electric industrial control systems highlights the need to revamp cybersecurity practices in operational technology environments. A zer...
From Vulnerability Discovery to Remediation: How Tenable and HCL BigFix Can Help
Reducing the time required to move from vulnerability assessment to remediation is a never ending challenge for most organizations. Here's how the integration between Tenable and HCL BigFix can help y...
The Implications of DHS-TSA Directive Pipeline 2021-1
The Department of Homeland Security has issued key guidance for oil and gas operations in the wake of recent cyberthreats. Here are three practical ways to disrupt attack paths in your OT infrastructu...
These Are the Building Blocks of Effective Vulnerability Management
High-performing cybersecurity teams base their actions and investments on actual risk to the business — not theoretical scores or news headlines. If you're like most cybersecurity professionals I tal...
The Path to Zero Trust: Is it Time to Rethink What We're Calling a Vulnerability?
Reconsidering how we define "vulnerability" is more than a thought exercise. It could represent a sea change in how organizations manage risk. For most of us in cybersecurity, the definition of "vulne...
GitHub’s Role in, and Responsibility to, the Security Community
GitHub's decision to remove the ProxyLogon exploit proof-of-concept from its platform put security researchers at a disadvantage even as attackers continued to exploit the vulnerabilities en masse. Gi...