Frequently Asked Questions for CitrixBleed (CVE-2023-4966)
November 20, 2023Frequently asked questions relating to a critical vulnerability in Citrix NetScaler that has been under active exploitation for over a month, including by ransomware groups.
Tenable Cyber Watch: November Declared Critical Infrastructure Security and Resilience Month, and more
November 20, 2023This week’s edition of Tenable Cyber Watch unpacks Critical Infrastructure Security and Resilience month and addresses the “Shields Ready” campaign aimed at promoting critical infrastructure security and resilience. Also covered: Do most organizations need a generative AI policy? What one poll shows.
Cybersecurity Snapshot: Are SBOMs on Your Supply Chain Security Radar Screen? Check Out New Recommendations from CISA and NSA
November 17, 2023The SBOM concept is still half-baked, but CISA and NSA want to help change that with new best practices for software vendors, developers and buyers. Plus, there’s new guidance about the Royal ransomware gang – as ransomware attacks grow. In addition, Google highlights a new typosquatting trend impacting cloud storage. And much more!
Tenable Nessus Scanner Capabilities Receive Red Hat Recognition
November 15, 2023The Red Hat Vulnerability Scanner Certification for Tenable Nessus represents our commitment to continue providing customers with visibility into their Red Hat Enterprise Linux systems. Read about what this means and how it benefits our customers.
Microsoft’s November 2023 Patch Tuesday Addresses 57 CVEs (CVE-2023-36025)
November 14, 2023Microsoft addresses 57 CVEs, including three zero-day vulnerabilities that were exploited in the wild.
Tenable Cyber Watch: Average Org Fails to Prevent 43% of Attacks, AI Models Lack Transparency, and more
November 13, 2023This week’s edition of Tenable Cyber Watch unpacks why organizations fail to prevent more than 40% of cyberattacks and addresses how the White House plans to tackle AI. Also covered: Study shows AI models lack transparency.
Cybersecurity Snapshot: Critical Infrastructure Security in the Spotlight in November
November 10, 2023It’s “Critical Infrastructure Security and Resilience Month” – check out new resources from the U.S. government to better protect these essential organizations. Plus, the U.K.’s cyber agency is offering fresh guidance for mitigating the quantum computing threat. In addition, do you need a generative AI policy in your company? An ISACA guide could be helpful. And much more!
Navigating the Roadblocks: Overcoming People, Process, and Technology Challenges for Preventive Security in Japan
November 8, 2023Uncover the obstacles hindering preventive cybersecurity and ways to build cyber resilience for your Japanese organisation in a commissioned study conducted in 2023 by Forrester Consulting on behalf of Tenable.
Tenable Cyber Watch: GenAI Drives AI Adoption for Cybersecurity, Ransomware Attacks Double in Q3, and more
November 6, 2023This week’s edition of Tenable Cyber Watch unpacks how generative AI is driving AI adoption for cybersecurity and addresses why board directors are becoming more confident in their organization’s cybersecurity. Also covered: Ransomware attacks almost doubled in Q3.
CVE-2023-22518: Critical Atlassian Confluence Data Center and Server Improper Authorization Vulnerability
November 3, 2023Atlassian warns of public vulnerability details for a critical flaw in Confluence Data Center and Server, as its CISO urges organizations to apply patches immediately.
Cybersecurity Snapshot: Why Organizations Struggle to Prevent Attacks and How They Can Do Better
November 3, 2023Find out the top people, process and technology challenges hurting cybersecurity teams identified in a commissioned study by Forrester Consulting on behalf of Tenable.
ApatchMe - Authenticated Stored XSS Vulnerability in AWS and GCP Apache Airflow Services
November 2, 2023Unpatched Apache Airflow instances used in Amazon Web Services (AWS) and Google Cloud Platform (GCP) allow an exploitable stored XSS through the task instance details page.