Blog de Tenable
CVE-2026-35616: Fortinet FortiClientEMS improper access control vulnerability exploited in the wild
We’re Answering Your Exposure Management Questions
Todos los lunes, la Exposure Management Academy de Tenable ofrece la orientación práctica y del mundo real que necesita para pasar de la gestión de vulnerabilidades a la gestión de exposición. In this Exposure Management Academy FAQ, we help CISOs understand exposure management, look at how advanced you might be and…
Instantánea de ciberseguridad: Reports Highlight Promise and Peril of Open Source AI and of Emerging Cryptography Methods
Check out a study that outlines the risks and benefits of open-source AI tools. Meanwhile, the NCSC unpacks use cases for new, alternative encryption technologies. Plus, ISACA urges orgs to begin their post-quantum cryptography migration. And get the latest on assessing software products’ security;…
Un abordaje unificado hacia la gestión de exposición: presentamos conectores y tableros de control personalizados de Tenable One
La visibilidad y el contexto unificados son las claves para un programa de gestión de exposición eficaz. Learn how the new Tenable One connectors and unified dashboards give you a comprehensive view of your attack surface, help you streamline decision-making and empower your teams to uncover hidden risks,…
CVE-2025-32756: vulnerabilidad de día cero en múltiples productos de Fortinet explotada en la realidad
Fortinet has observed threat actors exploiting CVE-2025-32756, a critical zero-day arbitrary code execution vulnerability which affects multiple Fortinet products including FortiVoice, FortiMail, FortiNDR, FortiRecorder and FortiCamera.
CVE-2025-4427, CVE-2025-4428: Ejecución remota de código de Ivanti Endpoint Manager Mobile (EPMM)
Remote code execution vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks
El Martes de parches de Microsoft de mayo de 2025 aborda 71 CVE (CVE-2025-32701, CVE-2025-32706, CVE-2025-30400)
Microsoft addresses 71 CVEs including seven zero-days, five of which were exploited in the wild.
Detección de herramientas de supervisión y gestión remotas utilizadas por los atacantes
Following up on last year’s LOLDriver plugin, Tenable Research is releasing detection plugins for the top Remote Monitoring and Management (RMM) tools that attackers have been more frequently leveraging in victim environments.
Seis maneras en que la gestión de exposición le ayuda a controlar sus herramientas de seguridad
Each Monday, the Tenable Exposure Management Academy provides the practical, real-world guidance you need to shift from vulnerability management to exposure management. In this post, the second of two parts, we look closely at six ways exposure management can help you tame security tool sprawl.
Instantánea de ciberseguridad: Agencia cibernética NCSC’s Best Cyber Advice on AI Security, the Quantum Threat, API Risks, Mobile Malware and More
In this special edition of the Cybersecurity Snapshot, we bring you some of the most valuable guidance offered by the U.K. National Cyber Security Centre (NCSC) in the past 18 months. Check out best practices, recommendations and insights on protecting your AI systems, APIs and mobile devices, as…