مدونة Tenable
Meet Tenable Hexa AI: Agentic AI for exposure management
كيف تؤدي الهوية دورًا في خمس مراحل من الهجوم الإلكتروني
While credential abuse is a primary initial access vector, identity compromise plays a key role in most stages of a cyber attack. Here’s what you need to know — and how Tenable can help.
أمان سحابي أقوى في خمسة دقائق: How DSPM Helps You Discover, Classify and Secure All Your Data Assets
In this fourth installment of Tenable’s “Stronger Cloud Security in Five” blog series, we turn our attention to securing cloud data, a complex endeavor as data grows exponentially and threats become more sophisticated. Check out five DSPM best practices to sharpen your cloud data security and…
How Exposure Management Can Efficiently and Effectively Improve Cyber Resilience for State and Local Governments
State and local governments must grapple with resource constraints even as they face increased demand for cybersecurity vigilance to protect critical infrastructure and essential services. Here’s how exposure management can help.
We’re Answering Your Exposure Management Questions
Each Monday, the Tenable Exposure Management Academy provides the practical, real-world guidance you need to shift from vulnerability management to exposure management. In this Exposure Management Academy FAQ, we help CISOs understand exposure management, look at how advanced you might be and…
Cybersecurity Snapshot: Reports Highlight Promise and Peril of Open Source AI and of Emerging Cryptography Methods
Check out a study that outlines the risks and benefits of open-source AI tools. Meanwhile, the NCSC unpacks use cases for new, alternative encryption technologies. Plus, ISACA urges orgs to begin their post-quantum cryptography migration. And get the latest on assessing software products’ security;…
نهج موحد لإدارة التعرض للمخاطر: تقديم أدوات الربط مع Tenable One ولوحات معلومات مخصصة للمخاطر
تُعد الرؤية الموحدة والسياق الموحد مفتاح البرنامج الفعال لإدارة التعرض للمخاطر. Learn how the new Tenable One connectors and unified dashboards give you a comprehensive view of your attack surface, help you streamline decision-making and empower your teams to uncover hidden risks,…
CVE-2025-32756: ثغرة يوم الصفر في العديد من منتجات Fortinet تم استغلالها أثناء استخدام المنتج
Fortinet has observed threat actors exploiting CVE-2025-32756, a critical zero-day arbitrary code execution vulnerability which affects multiple Fortinet products including FortiVoice, FortiMail, FortiNDR, FortiRecorder and FortiCamera.
CVE-2025-4427, CVE-2025-4428: تنفيذ التعليمات البرمجية عن بُعد لبرنامج Ivanti Endpoint Manager Mobile (EPMM)
Remote code execution vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks
تحديث الثلاثاء لشهر مايو 2025 من مايكروسوفت يعالج 71 ثغرة أمنية شائعة (CVE-2025-32701, CVE-2025-32706, CVE-2025-30400)
Microsoft addresses 71 CVEs including seven zero-days, five of which were exploited in the wild.
