Tenable Archives - Help Net Security

Tenable

Tenable acquires Indegy to create unified, risk-based platform for IT and OT security

December 5, 2019

Tenable, the Cyber Exposure company, announced that it has acquired Indegy, a leader in industrial cybersecurity which provides visibility, security and control across …

Apache Solr RCEs with public PoCs could soon be exploited

November 25, 2019

Two remote code execution (RCE) vulnerabilities in Apache Solr could be exploited by attackers to compromise the underlying server. One – CVE-2019-12409 – has …

PHP RCE flaw actively exploited to pop NGINX servers

October 28, 2019

A recently patched vulnerability (CVE-2019-11043) in PHP is being actively exploited by attackers to compromise NGINX web servers, threat intelligence firm Bad Packets has …

August 2019 Patch Tuesday: Microsoft plugs critical wormable RDP holes

August 14, 2019

It’s that time of the month again: Microsoft, Adobe and Intel have pushed out fixes for a bucketload of security issues in their various software. Microsoft’s …

Tenable unveils new product innovations in Tenable.sc and Tenable.io

August 8, 2019

Tenable, the Cyber Exposure company, announced at Black Hat USA 2019 new product innovations in Tenable.sc (formerly SecurityCenter) and Tenable.io to continuously discover …

Citrix plugs critical Citrix SD-WAN flaws, patch ASAP!

July 12, 2019

Researchers have found critical vulnerabilities in Citrix SD-WAN, one of the most widely used SD-WAN solutions out there, and are urging administrators to patch them as soon …

July 2019 Patch Tuesday: Microsoft plugs two actively exploited zero-days

July 10, 2019

For July 2019 Patch Tuesday, Microsoft has pushed out patches for 78 CVE-numbered vulnerabilities (15 of them critical) and Adobe for three, but none of them in its most …

Critical Exim flaw exploitable locally and remotely, patch ASAP!

June 7, 2019

A critical vulnerability in Exim, the mail transfer agent (MTA) deployed on over half of all Internet-facing mail servers, may allow attackers to run commands as the …

How mainstream media coverage affects vulnerability management

May 24, 2019

For better or for worse, mainstream media is increasingly covering particularly dangerous, widespread or otherwise notable security vulnerabilities. The growing coverage has …

ML-driven Predictive Prioritization tool now available in Tenable.io

April 18, 2019

Tenable, the Cyber Exposure company, announced Predictive Prioritization is now generally available within Tenable.io — its cloud-based vulnerability management platform and a …

90% of OT organizations are cyberattack victims, yet visibility into OT systems is still limited

April 9, 2019

90% of OT organizations stated their environments had been damaged by at least one cyberattack over the past two years, with 62% experiencing two or more attacks. These are …

Photo gallery: RSA Conference 2019 Expo, part four

March 7, 2019

RSA Conference 2019 is underway at the Moscone Center in San Francisco. Check out our microsite for the conference for all the most important news. Here are a few photos from …

Tenable

Tenable acquires Indegy to create unified, risk-based platform for IT and OT security

Apache Solr RCEs with public PoCs could soon be exploited

PHP RCE flaw actively exploited to pop NGINX servers

August 2019 Patch Tuesday: Microsoft plugs critical wormable RDP holes

Tenable unveils new product innovations in Tenable.sc and Tenable.io

Citrix plugs critical Citrix SD-WAN flaws, patch ASAP!

July 2019 Patch Tuesday: Microsoft plugs two actively exploited zero-days

Critical Exim flaw exploitable locally and remotely, patch ASAP!

How mainstream media coverage affects vulnerability management

ML-driven Predictive Prioritization tool now available in Tenable.io

90% of OT organizations are cyberattack victims, yet visibility into OT systems is still limited

Photo gallery: RSA Conference 2019 Expo, part four

Don't miss

Mitsubishi Electric discloses data breach, possible data leak

Data-driven vehicles: The next security challenge

Review: Enzoic for Active Directory

Techniques and strategies to overcome Kubernetes security challenges

A look at cybersecurity for rail systems, building automation and the future of critical infrastructure