Tenable Blog

CVE-2020-1472: Microsoft Finalizes Patch for Zerologon to Enable Enforcement Mode by Default

by Satnam Narang on February 9, 2021

Zerologon has quickly become valuable to nation-state threat actors and ransomware gangs, making it imperative for organizations to apply these patches immediately if they have not yet done so.

Background

On February 9, as part of its February 2021 Patch Tuesday release, Microsoft released an additional patch for Zerologon to enable a security setting by default to protect vulnerable systems.

When It Comes to Your Drinking Water, How Safe Is Your Operational Technology?

by Barak Perelman on February 9, 2021

The recent intrusion of a Florida water-treatment plant highlights the need for strong protection of industrial control systems. Here's what you should consider.

Reducing Blind Spots in Cybersecurity: 3 Ways Machine Learning Can Help

by Team Tenable on February 8, 2021

Faced with an expanding attack surface and limited resources, security teams can apply machine learning to prioritize business risks and help predict what attackers will do next.

CVE-2021-21148: Google Chrome Heap Buffer Overflow Vulnerability Exploited in the Wild

by Satnam Narang on February 5, 2021

Following reports of in-the-wild exploitation, Google released a patch for the third browser-based zero-day vulnerability of 2021.

Background

On February 4, Google published a stable channel update for Chrome for Desktop. This release contained a single security fix to address a critical zero-day vulnerability that had been exploited in the wild.

CVE-2021-20016: Zero-Day Vulnerability in SonicWall Secure Mobile Access (SMA) Exploited in the Wild

by Satnam Narang on February 4, 2021

SonicWall releases a patch after researchers confirm exploitation of a zero-day vulnerability in SonicWall Secure Mobile Access

Protecting Your Cloud Assets: Where Do You Start?

by Cindy Chen on February 4, 2021

When securing dynamic cloud environments, the ability to continuously discover and assess cloud assets allows you to quickly detect issues as new vulnerabilities are disclosed and as your environment changes. Here's what you need to know to get started.

NERC CIP-008-6: How Power Grid Operators Can Improve Their Incident Reporting

by Ben Abigadol on February 3, 2021

The new NERC CIP-008-6 regulation challenges power grid operators to differentiate attempts to compromise their environment from other non-malicious cyber incidents. Here’s how Tenable can help.

Securing Classified Telework: 3 Principles for Protecting Sensitive Data

by Chris Jensen on February 1, 2021

As pandemic restrictions linger, federal agencies are preparing for a rise in classified telework. Here’s why a continued focus on cybersecurity fundamentals is imperative.

Keep Your IAM Users Close, Keep Your Third Parties Even Closer

by Team Tenable on January 28, 2021

Technical and legal controls that you take for granted when managing cybersecurity policy within your organization are usually out of reach when a third party is compromised.

Cloud Security: Improve Cyber Hygiene with Resource Tagging

by Stephanie Dunn on January 28, 2021

Adopting consistent tagging practices can help to quickly identity resources, ensure change control efforts, and reduce security risks within your cloud environments.

Many organizations use the cloud to quickly deliver and scale applications across multiple cloud platforms. While engineering teams often work in parallel to build, test and deploy code across production and development environments, security teams are also working to continuously monitor and assess their cloud security posture.

Tenable One Exposure Management Platform

Platform categories

Platform capabilities

Cloud Exposure

Vulnerability Exposure

OT/IoT Exposure

Identity Exposure

Business needs

Industries

Compliance

Public Sector

The Tenable difference

Compare Tenable to:

Resources

Research

Tenable Assure partners

Other partner opportunities

Support

Services

Tenable Trust

About us

Media

Connect

Join us

Tenable Blog

CVE-2020-1472: Microsoft Finalizes Patch for Zerologon to Enable Enforcement Mode by Default

Background

When It Comes to Your Drinking Water, How Safe Is Your Operational Technology?

Reducing Blind Spots in Cybersecurity: 3 Ways Machine Learning Can Help

CVE-2021-21148: Google Chrome Heap Buffer Overflow Vulnerability Exploited in the Wild

Background

CVE-2021-20016: Zero-Day Vulnerability in SonicWall Secure Mobile Access (SMA) Exploited in the Wild

Protecting Your Cloud Assets: Where Do You Start?

NERC CIP-008-6: How Power Grid Operators Can Improve Their Incident Reporting

Securing Classified Telework: 3 Principles for Protecting Sensitive Data

Keep Your IAM Users Close, Keep Your Third Parties Even Closer

Cloud Security: Improve Cyber Hygiene with Resource Tagging

Tenable Blog

Background

Background

Tenable Vulnerability Management

Tenable Vulnerability Management

Thank You

Tenable Vulnerability Management

Tenable Vulnerability Management

Thank you

Tenable Vulnerability Management

Tenable Vulnerability Management

Thank you

Try Tenable Web App Scanning

Buy Tenable Web App Scanning

Thank you

Request a demo of Tenable Security Center

Request a demo of Tenable OT Security

Request a demo

Request a demo of Tenable Cloud Security

See Tenable One in action

See Tenable Attack Surface Management in action

Get a demo of Tenable Enclave Security

Thank You

Try Tenable Nessus Professional free

NEW - Tenable Nessus Expert now available

Buy Tenable Nessus Professional

Try Tenable Nessus Expert free

Buy Tenable Nessus Expert

Learn How Tenable Helps Achieve SLCGP Cybersecurity Plan Requirements

Get a demo of Tenable Patch Management

See
Tenable One
in action

NEW - Tenable Nessus Expert
now available