Tenable-Blog
The developer credential economy: Why exposure data is the new front line in the supply chain war
Scams Exploit COVID-19 Giveaways Via Venmo, PayPal and Cash App
The economic impact of COVID-19, which is causing record unemployment, creates a golden opportunity for scammers looking to target vulnerable people desperate for cash to help pay their bills.As Cash App steps up the frequency of its giveaways, and celebrities and other notable figures launch…
What Is VPR and How Is It Different from CVSS?
This blog series will provide an in-depth discussion of vulnerability priority rating (VPR) from a number of different perspectives. Part one will focus on the distinguishing characteristics of VPR that make it a more suitable tool for prioritizing remediation efforts than the Common Vulnerability…
CVE-2020-1938: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (CNVD-2020-10487)
Several proof-of-concept exploit scripts for recently patched flaw in Apache Tomcat are now available.BackgroundOn February 20, China National Vulnerability Database (CNVD) published a security advisory for CNVD-2020-10487, a severe vulnerability in Apache Tomcat’s Apache JServ Protocol (or AJP)…
Glück oder Geschick? Prozessintegritätsrisiken besser verstehen mit Tenable Lumin
Unternehmenssystemrisiko und Prozessintegritätsrisiko sind zwei unverzichtbare Metriken, die Rahmen eines ausgereiften risikobasierten Schwachstellen-Management-Verfahrens auf keinen Fall fehlen dürfen.Dank der neu eingeführten Funktion zur Beurteilung der Bewertungsreife liefert Tenable Lumin ab sofort wertvolle Erkenntnisse zu beiden Kennzahlen.Risk-based vulnerability management requires metrics addressing two types of…
Cash App Scams: Giveaway Offers Ensnare Instagram Users, While YouTube Videos Promise Easy Money
Cash App scammers are targeting users on Instagram and YouTube. Here’s what you need to know about their tactics — and how to avoid being conned.In part one of our two-part series on Cash App scammers, I explored how promotional tactics used by the popular person-to-person (P2P) payment…
How to Choose the Right Vulnerability Management Solution
As vulnerability management evolves, organizations are seeing increased need for prioritization, benchmarking and flexible reporting. Here are five things to keep in mind when choosing a vulnerability management solution.Vulnerability management is once again rising to the top of the security…
Tenable Lumin: Schwachstellen-Management in die Sprache des Business übersetzen
With Tenable Lumin, we’re giving customers a bridge between the language of vulnerability management and the language of business. In our work here at Tenable, we often hear from our CISO customers about the dual challenges they face: How to help business executives and the board…
How To: Run Your First Vulnerability Scan with Nessus
Get your Nessus vulnerability assessment tool up and running with these five easy steps.With Nessus, you can gain full visibility into your network by conducting a vulnerability assessment. Read on as we guide you through the five steps to run your first Nessus scan. (If you have not yet installed…
Grundlagen von Schwachstellenmanagement: Was Sie wissen müssen
In Teil 1 unserer fünfteiligen Serie zu den Grundlagen von Schwachstellenmanagement erörtern wir die vier Phasen des Cyber Exposure Lifecycle.
