Tenable Blog

Many of us around the globe are now experiencing the new reality of a large remote workforce virtually overnight. We're here to help our customers manage the new risks.

We are suddenly facing new cyber risks created by a surge in remote employees who may use personal assets for business or be more susceptible to phishing during times of crisis. To reduce the risk of this new attack vector, we all need to extend our security measures and include remote workers and devices as part of our enterprise vulnerability management programs.

The worldwide fear and uncertainty surrounding the novel coronavirus isn’t just being leveraged in malware and phishing attacks, as it has also enabled the spread of misinformation, fake cures and a variety of scams.

For more than two decades, customers have been at the very heart of everything we do at Tenable. We take the trust you place in us very seriously, and we understand that the work we do matters to you and to your ability to protect your business.

Critical unpatched “wormable” remote code execution (RCE) vulnerability in Microsoft Server Message Block 3.1.1 (SMBv3), dubbed EternalDarkness, disclosed by Microsoft.

Update 03/13/2020: The Proof-of-concept section has been updated to reflect the public availability of an exploit script that can trigger a crash on a vulnerable system.

When it comes to automotive manufacturing, industrial control systems (ICS) may be the weak link inviting new types of attacks. Here’s what you need to know.

Auto manufacturing has become an increasingly popular target today for industrial cyberattacks. Since 2016, the number of annual incidents has increased by 605%, with incidents more than doubling in 2019 alone.¹ One reason – advances and changes in OT have opened up new attack vectors and surfaces.