How to Improve Kubernetes Security: Four Best Practices to Implement Today
April 25, 2023How to ensure the right configurations and policies are in place to keep your cloud environments secure.
What Security Leaders Need to Know About Security End of Life: How Tenable is Leading the Way
April 25, 2023Handling end-of-life conditions for software and hardware products is complicated by different stages and definitions. Tenable is leading the way on defining these disparate vulnerabilities under a comprehensive Security End of Life framework that addresses the common risk exposure to our customers.
‘K’ is for ‘Komplex’: Key Kubernetes Considerations for Security Teams
April 24, 2023The use of Kubernetes introduces complexity to the modern attack surface and requires a different approach to security than traditional IT infrastructure. Security teams need a base understanding of Kubernetes architecture, configurations and deployment processes to effectively manage risk. Here’s what you need to know.
Cloud Workload Protection (CWP) Best Practice – Focus on Impact, Not Volume
April 24, 2023How to do CWP right to prepare your organization and protect it from the next widespread vulnerability.
Tenable Cyber Watch: Dark Web Marketplace Genesis Market Shut Down, How Using ChatGPT Can Breach Data Privacy Rules, and more
April 24, 2023This week’s edition of the Tenable Cyber Watch unpacks the international sting operation that successfully shut down notorious cybercrime marketplace Genesis Market and explores how using ChatGPT can breach data privacy rules. Also covered: Why the cybersecurity term “BISO” is getting all the buzz.
ETHOS: Bringing the OT Security Community Together for Threat Information Sharing
April 24, 2023Tenable participates in a first-of-its-kind initiative that will aggregate information from several operational technology (OT) security vendors to share emerging threat intelligence with critical infrastructure service providers.
CVE-2023-20864: VMware Aria Operations for Logs Deserialization Vulnerability
April 21, 2023VMware issues advisory to address two flaws in its VMware Aria Operations for Logs solution, including a critical deserialization flaw assigned a CVSSv3 score of 9.8.
Cybersecurity Snapshot: The Latest on Supply Chain Security – SBOM Distribution, Open Source Flaws and a New Security Framework
April 21, 2023Check out what CISA says about the sharing of software bills of materials. Plus, why you should tread carefully with open source components. Also, the SLSA supply chain security framework is ready. In addition, security worries hold back enterprise IoT adoption. And much more!
Oracle April 2023 Critical Patch Update Addresses 231 CVEs
April 19, 2023Oracle addresses 231 CVEs in its second quarterly update of 2023 with 433 patches, including 74 critical updates.
7 Regulatory and Compliance Frameworks with Broad Cloud Security Implications
April 19, 2023Security teams responsible for enforcing regulatory and compliance mandates in a scalable and consistent way are often challenged to translate general legislative guidelines and controls into specific policies, tools and processes.
Announcing the 2023 Tenable Assure Partner Award Winners
April 17, 2023Celebrating the elite defenders who are helping organizations around the world reduce their cyber risk.
Tenable Cyber Watch: FBI Warns of Sophisticated BEC Scam, NIST Unveils Its New AI Resource Center, and more
April 17, 2023This week’s edition of the Tenable Cyber Watch unpacks the business email compromise scams (BEC) that are targeting vendors and explores NIST’s new AI Resource Center. Also covered: The most in-demand cybersecurity jobs for this year according to COMPTIA’s “State of the Tech Workforce Report” for 2023.