Search Results: tenable.

June 2023 Patch Tuesday: Exchange Server, SharePoint, PGM

The June 2023 Patch Tuesday release includes no active threats, but critical vulnerabilities still need to be patched, experts say.

June 13, 2023 Zachary Comeau Leave a Comment

Microsoft has released fixes for about 70 vulnerabilities for its June 2023 Patch Tuesday release, and while none are listed as being actively exploited of publicly known, there are still a handful of critical-rated vulnerabilities that IT admins should prioritize this month. That list of bugs that should be prioritized includes two remote code execution […]

Patch FortiGate SSL-VPN Devices Immediately

Fortinet is urging organizations to apply a patch to fix a critical vulnerability in its FortiGate SSL-VPN devices.

June 13, 2023 Zachary Comeau Leave a Comment

Cybersecurity firm Fortinet is warning organizations of a critical vulnerability in its FortiGate SSL-VPN devices, continuing a string of recent exploitations of vulnerabilities in similar devices due to their internet-facing nature and access to a victim’s network. The vulnerability–tracked as CVE-2023-27997–is a heap-based overflow flaw that could allow a remote attacker to execute arbitrary code […]

Tenable Developing Four Generative AI Tools for Security Research

Tenable's generative AI-assisted tools help with reverse code engineering, debugging, web app security and visibility into cloud-based tools.

April 27, 2023 Zachary Comeau Leave a Comment

Tenable is developing four new tools designed to create efficiencies in processes such as reverse code engineering, code debugging, web app security and visibility into cloud-based tools. The Columbia, Md.-based vulnerability management software provider’s research team is conducting ongoing experimentation with generative AI applications such as ChatGPT, and researchers have made them publicly available to […]

Tenable Launches Integration Between Tenable One Platform, Security Center 6.1

Integration between the Tenable One platform and Tenable Security Center 6.1 solution enables support for on-prem and hybrid deployments.

April 25, 2023 Zachary Comeau Leave a Comment

Security vulnerability management software provider Tenable is launching an integration between its Tenable One Exposure Management Platform with its Security Center 6.1 solution, thus adding support for on-premises and hybrid deployments. According to the company, this integration is designed to streamline exposure management for hybrid vulnerability management deployments and can help on-premises organizations transition to […]

3CX Compromised in Supply Chain Attack

A flaw in the desktop app from VoIP provider 3CX is being exploited in supply chain attacks, leading to possible hands-on-keyboard activity.

March 31, 2023 Zachary Comeau Leave a Comment

Cybersecurity researchers say a vulnerability in the desktop app from VoIP provider 3CX is being actively exploited in supply chain attacks, leading to possible hands-on-keyboard activity by advanced threat actors, including nation-state actors. According to researchers, malicious activity was observed coming from a legitimate signed binary, 3CXDesktopApp — a softphone application from 3CX. Cybersecurity firm […]

My TechDecisions Podcast Episode 191: Learnings From the LastPass Breach

Scott Caveza, senior research manager at Tenable, joins the podcast to discuss security lessons we've learned from the LastPass breach.

March 23, 2023 Zachary Comeau Leave a Comment

On this episode of the My TechDecisions Podcast, we discuss the LastPass breach and what IT security teams can learn from it with Scott Caveza, senior research manager at Tenable. Late last month, LastPass revealed that the same threat actor that accessed portions of the LastPass development environment and source code that has forced the company […]

My TechDecisions Podcast Episode 190: March 2023 Patch Tuesday

Satnam Narang, senior staff research engineer at Tenable, joins the podcast to discuss Microsoft's March 2023 Patch Tuesday.

March 16, 2023 Zachary Comeau Leave a Comment

Satnam Narang, senior staff research engineer at Tenable, joins the podcast to discuss Microsoft’s March 2023 Patch Tuesday.

March 2023 Patch Tuesday: Two Actively Exploited Bugs in Outlook, SmartScreen

Microsoft's March 2023 Patch Tuesday includes fixes for 76 vulnerabilities, two of which are being exploited in the wild.

March 14, 2023 Zachary Comeau Leave a Comment

Microsoft’s March 2023 Patch Tuesday release includes fixes for 76 vulnerabilities in the company’s products, with two listed as being actively exploited, one of which also being listed as publicly known. The amount of bugs fixed by Microsoft this month is on par with the tech giant’s February security update when it patched 75 vulnerabilities, […]

Older, Unpatched Vulnerabilities Are Still Wreaking Havoc

Older vulnerabilities that remain unpatched are still the primary vehicle for cyberattacks, Tenable report finds.

February 28, 2023 Zachary Comeau Leave a Comment

Older vulnerabilities for which patches have already been made available by the vendor are still the primary vehicle for cyberattacks, suggesting that organizations are still behind in practicing good cyber hygiene, according to new data from Tenable. The Columbia, M.D.-based provider of vulnerability management software finds in its 2022 Threat Landscape Report that the number […]

Tenable Launches Cyber Insurance Report, Partners With Insurance Provider

Tenable's new Cyber Insurance Report is designed to help summarize information relevant to cyber insurance providers.

February 16, 2023 Zachary Comeau Leave a Comment

Vulnerability management software provider Tenable is adding a new Cyber Insurance Report within its Tenable Vulnerability Management solution designed to summarize exposure information relevant to cyber insurance providers to help streamline the policy underwriting process for insurers and customers. According to Tenable, the Cyber Insurance Report will enable insurers, for the first time, to measure […]