Blog de Tenable
Don’t Let Your Cloud Security Catch a Bad Case of Permission Creep
How Risk-based Vulnerability Management Can Help Address the Most Commonly Exploited Vulnerabilities Today
Tenable's analysis of the 29 vulnerabilities highlighted in a recent CISA alert reveals key differences between CVSS and our Vulnerability Priority Rating.Attackers continue to exploit known and prevalent vulnerabilities. Last year, the U.S. Cybersecurity and Infrastructure Security Agency (CISA)…
Enfóquese en los fundamentos: seis pasos para defenderse contra el ransomware
El ransomware es la monetización de una mala higiene cibernética. Aquí le presentamos seis pasos que puede seguir para mejorar sus defensas de seguridad.Los ataques de ransomware se han convertido en un problema serio para casi todas las organizaciones. In 2020 alone, there were more than 300 million ransomware attacks recorded, an increase of more…
AWS Resource Provisioning with Attribute Based Access Control (ABAC): lo que debe saber
ABAC offers highly dynamic control of the actions that principals can perform on resources, however there are some things you need to pay attention to when using ABAC in order to avoid unnecessary security gaps.
CVE-2021-34527:Microsoft Releases Out-of-Band Patch for PrintNightmare Vulnerability in Windows Print Spooler
Microsoft issues an out-of-band patch for critical ‘PrintNightmare’ vulnerability following reports of in-the-wild exploitation and publication of multiple proof-of-concept exploit scripts Update July 9, 2021: The Solution section has been updated to clarify the vulnerable configurations as well…
The Importance of Identity and Access Management (IAM) in Cloud Infrastructure
How to manage human and service identities, and their entitlements, to secure your cloud infrastructure.
Estafas de publicidad digital sobre Elon Musk en YouTube: una "moneda" falsa de SpaceX se promociona en anuncios de videos de criptomonedas
Scammers are on pace to steal nearly $1 million USD from unsuspecting users through a popular decentralized finance protocol, Uniswap, by abusing YouTube to promote a fake SpaceX coin as part of ads appearing before and during cryptocurrency videos.BackgroundIn early May, scammers compromised…
10 Reasons Why Websites STILL Get Hacked
Even with all of the cybersecurity solutions on the market today, websites are still getting hacked by attackers. Find out how your organization could be exposed to hackers
Configuring The Ports That Nessus Scans
When only select ports require scanning, use these easy steps to define themWhen assessing targets with a network scanner like Nessus, a common question is "How do I control the ports that Nessus tests during a scan?" This blog covers a number of options, including:How to limit the port scan…
Why Privileged Access Management (PAM) Fails Cloud Infrastructure…and What to do About it
PAM, its challenges for AWS, GCP and Azure environments — and CIEM as a solution.
Póngase en contacto con nuestro equipo de ventas