My Favorite Question to Ask Nessus Users
As Tenable CEO, I love to get all types of feedback from our customers. Nessus users give terrific feedback because they run Nessus everywhere and always have suggestions for features and improvements. When I get a chance to ask them about Nessus, I always ask them one question:
Have you ever found malware with Nessus?
If they say yes, then we can have a conversation about APT and bypassing anti-virus or even their sandbox. If an organization has an anti-virus program and deploys sandboxes, then Nessus finding malware is actually a significant event. It means that some set of known malware has bypassed the malware defenses. Even if the malware is minor to some extent, investigating how Nessus got it, why the resident anti-virus program didn’t find it, or why the sandbox didn’t see it can expose limits or holes in the security monitoring program.
If they say no, then we can have a conversation about their use of Nessus and if their deployment includes the use of credentialed scans. Normally, when I speak with a Nessus user who does not scan with credentials, they also aren’t taking advantage of malware auditing, patch auditing, configuration auditing, web application auditing, mobile device auditing or auditing cloud applications such as Salesforce.com.
Chances are, wherever you work, someone on your IT team is using Nessus. Feel free to make sure they are getting the most out of it and ask them what their experience has been; the answer may surprise you!
Related Articles
Cybersecurity Snapshot: CISA Warns of Global Spear-Phishing Threat, While OWASP Releases AI Security Resources
November 8, 2024CISA is warning about a spear-phishing campaign that spreads malicious RDP files. Plus, OWASP is offering guidance about deepfakes and AI security. Meanwhile, cybercriminals have amplified their use of malware for fake software-update attacks. And get the latest on CISA’s international plan, Interpol’s cyber crackdown and ransomware trends.
Cybersecurity Snapshot: North Korea’s Cyber Spies Hunt for Nuclear Secrets, as Online Criminals Ramp Up AI Use in the EU
July 26, 2024Check out a CISA-FBI advisory about North Korean cyber espionage on critical infrastructure orgs. Plus, what Europol found about the use of AI for cybercrime. Meanwhile, the risk concerns that healthcare leaders have about generative AI. And a poll on water plant cybersecurity. And much more!
Kinsing Malware Hides Itself as a Manual Page and Targets Cloud Servers
May 16, 2024Tenable Cloud Security Research Team has recently discovered that Kinsing malware, known for targeting Linux-based cloud infrastructures, exploits Apache Tomcat servers with new advanced stealth techniques. Explore our analysis and the indicators of compromise in this report.
New AWS Control Policy on the Block
November 18, 2024AWS has released an important new feature that allows you to apply permission boundaries around resources at scale called Resource Control Policies (RCPs). Read on to learn what RCPs are all about and how to use them, as well as how Tenable Cloud Security already factors them into its analysis.
The Dark Side of Domain-Specific Languages: Uncovering New Attack Techniques in OPA and Terraform
November 18, 2024Check out our deep dive into both new and known techniques for abusing infrastructure-as-code and policy-as-code tools. You’ll also learn how to defend against them in this blog post which expands on the attack techniques presented at our fwd:cloudsec Europe 2024 talk “Who Watches the Watchmen? Stealing Credentials from Policy-as-Code Engines (and beyond).”
Cybersecurity Snapshot: Five Eyes Rank 2023’s Most Frequently Exploited CVEs, While CSA Publishes Framework for AI System Audits
November 15, 2024Check out the CVEs attackers targeted the most last year, along with mitigation tips. Plus, a new guide says AI system audits must go beyond check-box compliance. Meanwhile, a report foresees stronger AI use by defenders and hackers in 2025. And get the latest on cloud security, SMBs' MFA use and the CIS Benchmarks.
- Malware
- Nessus