Tenable Archives - Help Net Security

Tenable

Critical flaw in SonicWall’s firewalls patched, update quickly! (CVE-2020-5135)

October 16, 2020

Earlier this week SonicWall patched 11 vulnerabilities affecting its Network Security Appliance (NSA). Among those is CVE-2020-5135, a critical stack-based buffer overflow …

Tenable Lumin updates enable orgs to predict which vulnerabilities pose the greatest business risk

October 6, 2020

Tenable announced new Tenable Lumin innovations that empower customers to align business objectives with cybersecurity initiatives. The latest enhancements to the Cyber …

September 2020 Patch Tuesday: Microsoft fixes over 110 CVEs again

September 8, 2020

On this September 2020 Patch Tuesday: Microsoft has plugged 129 security holes, including a critical RCE flaw that could be triggered by sending a specially crafted email to …

Potential Apache Struts 2 RCE flaw fixed, PoCs released

August 17, 2020

Have you already updated your Apache Struts 2 to version 2.5.22, released in November 2019? You might want to, and quickly, as information about a potential RCE vulnerability …

Exploits for vBulletin zero-day released, attacks are ongoing

August 11, 2020

The fix for CVE-2019-16759, a remote code execution vulnerability in vBulletin that was patched in September 2019, is incomplete, security researcher Amir Etemadieh has …

High-profile Twitter accounts hijacked to push Bitcoin scam. How did it happen?

July 16, 2020

The Twittersphere went into overdrive on Wednesday as a bunch of prominent, verified Twitter accounts were hijacked and started promoting a COVID-19 cryptocurrency giveaway …

Critical flaw opens Palo Alto Networks firewalls and VPN appliances to attack, patch ASAP!

June 30, 2020

Palo Alto Networks has patched a critical and easily exploitable vulnerability (CVE-2020-2021) affecting PAN-OS, the custom operating system running on its next generation …

The importance of effective vulnerability remediation prioritization

June 9, 2020

Too many organizations have yet to find a good formula for prioritizing which vulnerabilities should be remediated immediately and which can wait. According to the results of …

Using Cisco IP phones? Fix these critical vulnerabilities

April 16, 2020

Cisco has released another batch of fixes for a number of its products. Among the vulnerabilities fixed are critical flaws affecting a variety of Cisco IP phones and Cisco UCS …

PPP Daemon flaw opens Linux distros, networking devices to takeover attacks

March 10, 2020

A vulnerability (CVE-2020-8597) in the Point-to-Point Protocol Daemon (pppd) software, which comes installed on many Linux-based and Unix-like operating systems and networking …

Photos: RSA Conference 2020, part 2

February 26, 2020

RSA Conference 2020 is underway at the Moscone Center in San Francisco. Check out our microsite for the conference for all the most important news. Part one of the photos is …

Tenable acquires Indegy to create unified, risk-based platform for IT and OT security

December 5, 2019

Tenable, the Cyber Exposure company, announced that it has acquired Indegy, a leader in industrial cybersecurity which provides visibility, security and control across …