Tenable Archives | Business News This Week

Tenable Completes Acquisition of Bit Discovery and Announces Tenable.asm for External Attack Surface Management

June 8, 2022 Team Comments Off

Tenable Holdings, Inc. (“Tenable”), the Cyber Exposure company, today announced it has closed its acquisition of Bit Discovery, Inc. (“Bit Discovery”), a leader in external attack surface management (EASM). Tenable will launch Tenable.asm, a new […]

Comment on Follina Zero Day Vulnerability from Claire Tills, Senior Research Engineer, Tenable

June 1, 2022 Team Comments Off

A zero day exploit was discovered in Microsoft Office over the weekend that MSFT had previously been alerted to in April by a researcher. This vulnerability, dubbed “Follina”, can be exploited by an attacker sending a […]

Satnam Narang_Staff Research Engineer_Tenable

Microsoft’s September 2021 Patch Tuesday Addresses 60 CVEs

September 15, 2021 Rekha Nair Comments Off

Microsoft addressed 60 CVEs in its September 2021 Patch Tuesday release, along with patches for a critical vulnerability in its MSHTML (Trident) engine that was first disclosed in an out-of-band advisory on September 7. Please […]

Scott Caveza, Research Engineering Manager, Tenable

Comment from Tenable: Pulse Connect Secure Vulnerability Used to Target Water Agency, Verizon

June 17, 2021 Neel Achary Comments Off

The trend of attacks against critical infrastructure continues as news broke overnight that Verizon and one of the largest water agencies in the US were reportedly among the group targeted in the hack of Pulse […]

Microsoft’s June 2021 Patch Wednesday Addresses 49 CVEs

June 9, 2021 Neel Achary Comments Off

Microsoft’s June Patch Wednesday, addressed 49 CVEs. Of those, six have been observed as being exploited in the wild, and five are rated as critical. Remote Code Execution vulnerabilities account for 34% of the flaws, […]

Comment from Tenable- FBI Issues Second Alert on Attackers Leveraging Three Legacy Fortinet Vulnerabilities

May 31, 2021 Neel Achary Comments Off

“The Federal Bureau of Investigation (FBI) issued their second alert regarding multiple flaws in Fortinet’s FortiGate SSL VPN being exploited in the wild, the first was published over a month ago. However, multiple U.S. Government […]

Comment from Tenable on Vulnerabilities in VMware vCenter

May 26, 2021 team Comments Off

Two vulnerabilities were found in VMware’s vCenter Server. CVE-2021-21985 is a remote code execution vulnerability in the vSphere Client via the Virtual SAN (vSAN) Health Check plugin, which is enabled by default. CVE-2021-21986 is an […]

Microsoft’s Security Patches for May 2021 Addresses 55 CVEs

May 12, 2021 Neel Achary Comments Off

This month’s Patch Wednesday release addressed 55 CVEs, 4 of which are rated critical. This is the second time in 2021 that Microsoft has patched less than 60 CVEs. “Microsoft patched CVE-2021-31166, a remote code […]

Critical vulnerability in Cisco SD-WAN vManage Software

May 7, 2021 Neel Achary Comments Off

Cisco addressed multiple vulnerabilities in its SD-WAN vManage Software. One of which allows an attacker to perform actions not granted to average users, such as creating accounts with administrative level access. Please find below a comment from Satnam […]

Comment on World Password Day from Kartik Shahani, Country Manager, Tenable

May 6, 2021 Neel Achary Comments Off

Cyber attacks are on the rise in India with the number of incidents increasing threefold in the last one year. Be it a major breach like SolarWinds or phishing and ransomware attacks, cybercriminals always take […]