How To Secure All of Your Assets - IT, OT and IoT - With an Exposure Management Platform: The Importance of Contextual Prioritization
March 11, 2024Discover how contextual prioritization of exposure is revolutionizing OT/IoT security, enabling organizations to shift from reactive to proactive breach prevention.
Instantánea de ciberseguridad: Cyber Pros Say How AI Is Changing Their Work, While the FBI Reports Ransomware Hit Critical Infrastructure Hard in 2023
March 8, 2024More than 40% of ransomware attacks last year impacted critical infrastructure. Plus, a survey shows how artificial intelligence is impacting cybersecurity jobs. Meanwhile, MITRE updated a database about insider threats. And why you need a custom compensation strategy to recruit cyber pros. ¡Y mucho más!
CVE-2024-27198, CVE-2024-27199: Dos vulnerabilidades de evasión de autenticación en JetBrains TeamCity
March 6, 2024Two vulnerabilities with publicly available exploit code in JetBrains TeamCity on-premises software could result in attackers bypassing authentication and achieving code execution.
Instantánea de ciberseguridad: NIST’s Cybersecurity Framework Gets Major Update, as Advisories on APT29 and ALPHV Blackcat Get Rolled Out
March 1, 2024Check out what’s new in NIST’s makeover of its Cybersecurity Framework. Plus, the latest guidance on cyberattack groups APT29 and ALPHV Blackcat. Also, how to assess the cybersecurity capabilities of a generative AI LLM. And the most prevalent malware in Q4. ¡Y mucho más!
Cómo proteger todos sus activos de TI, OT e IoT con una plataforma de gestión de exposición
February 29, 2024Los equipos de seguridad empresarial enfrentan graves obstáculos para proteger su infraestructura crítica de OT/IoT: visibilidad fragmentada, riesgos imprevistos y silos de datos. Descubra cómo las soluciones diseñadas para la gestión de exposición de OT/IoT pueden ayudar a las organizaciones a mejorar la visibilidad, priorizar los esfuerzos de ciberseguridad y comunicar el riesgo cibernético de manera eficaz en todos los silos organizacionales.
Instantánea de ciberseguridad: La banda de LockBit es neutralizada, mientras CISA hace hincapié en la seguridad de las plantas de agua
February 23, 2024Check out how cyber agencies from multiple countries hit the LockBit ransomware group. Meanwhile, CISA wants water treatment plants to button up their cyber defenses. Plus, there’s a new generative AI governance checklist for tech and business leaders. And the White House seeks to boost ports' cybersecurity. ¡Y mucho más!
IDC posiciona a Tenable como n.° 1 en participación en el mercado mundial de gestión de vulnerabilidades de dispositivos por quinto año consecutivo
February 22, 2024El último informe de la firma de investigación también proporciona información de mercado que los profesionales de seguridad pueden emplear para mejorar su estrategia de gestión de vulnerabilidades.
Protección de sistemas de gestión de edificios DoD con Advanced OT Security
February 21, 2024The cyberthreats to the U.S. Department of Defense’s building management systems (BMS) have grown exponentially due to the DoD's adoption of smart technologies such as IoT. These smart technologies are designed to improve the monitoring and maintenance of these systems, but they also create new attack surfaces. Here's how the DoD can use operational technology (OT) security to mitigate BMS cyberthreats through enhanced visibility, threat detections and automated risk prioritization.
Preguntas frecuentes acerca de vulnerabilidades de ScreenConnect
February 20, 2024Frequently asked questions about two vulnerabilities affecting ConnectWise ScreenConnect
Managed Kubernetes: Is It Right for My Organization?
February 20, 2024As an organization grows its usage of containers, managing them becomes more complex. A common response is to adopt Kubernetes for container orchestration. But how do you properly secure your Kubernetes clusters? And should your organization host its Kubernetes deployments or instead choose a managed option? Esto es lo que debe saber.
Instantánea de ciberseguridad: ChatGPT Gets So-So Grade in Code Analysis Test, while JCDC Pledges To Focus on Protecting Critical Infrastructure
February 16, 2024Check out why ChatGPT’s code analysis skills left Carnegie Mellon researchers unimpressed. Plus, JCDC will put special focus on critical infrastructure security in 2024. Meanwhile, CISA and OpenSSF shine a spotlight on the security of software package repositories. And scammers leveraged tech tools to steal $10 billion from U.S. consumers last year. ¡Y mucho más!
Pig Butchering Scam: From Tinder and TikTok to WhatsApp and Telegram, How Scammers Are Stealing Millions in a Long Con
February 14, 2024In part one of a two-part series on Pig butchering, we detail the pervasive scam that has impacted thousands of victims around the world, resulting in the loss of hundreds of millions of dollars. This blog highlights the who and the how of Pig butchering scams, and details the Pig butchering playbook.