Ditch the Spreadsheet and Step Up Your Vulnerability Management Game
Moving from Nessus Pro to Tenable.sc or Tenable.io can easily help you mature your vulnerability management program. Here's what you need to know. Does your vulnerability management workflow involve a spreadsheet at any point? If so, you’re doing it wrong. Well, maybe not wrong per se, but defini...
Cybersecurity Pros Face Significant Challenges with OT Security: Ponemon Report
62% of organizations in industries relying on operational technology experienced two or more business-impacting cyberattacks in the past 24 months, according to a report from Ponemon Institute and Tenable.If you follow cybersecurity news as avidly as we do, you already know that industrial cont...
Proof of Concept (PoC) vs. Proof of Value (PoV): What Do They Mean for Your Business?
This is the first of our two-part series on how to use Proof of Concept and Proof of Value processes to evaluate industrial cybersecurity solutions. Unlike Proof of Concept (PoC), which proves a concept will work, Proof of Value (PoV) takes a deeper dive into the value of that solution for your...
Threat Hunting with YARA and Nessus
In Nessus 6.7, file system scanning functionality was introduced that could look for specific file hashes of files on disk. This was in addition to the running process detection which has been supported for quite some time. Now, as part of the Nessus 6.8 release, we’ve introduced YARA to our Windows...
Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"
<p></p>...
The Big Red Button and the Kill Switch
I have no idea if I had a role in the "Internet Kill Switch" debacle, but it's possible that I was one of the pushes that got that particularly horrible ball rolling. Back in 2002, when I was between jobs, I did a talk at CSI in Chicago, about the need for organizations to be better able to react to...
Recap: Geeking Out II with Marcus
Ron and I spent most of the webcast rotating around the theme of detection algorithms: how do you determine what is normal and what is not? We started off with one of my favorite questions, "Are there only two algorithms? Statistics - of some sort - or matching?" I think that, by the time we were d...
Tenable Network Security Podcast Episode 163 - "Bind Vulnerability, Windows Hardening"
Announcements We're hiring! - Visit the Tenable website for more information about open positions. Check out our video channel on YouTube which contains new Nessus and SecurityCenter tutorials. Tenable Tweets - You can find us on Twitter at http://twitter.com/tenablesecurity where we make pro...
Tenable Network Security Podcast Episode 145 - "Source Code Leaks, Problems with Computer Security"
<h3>Announcements</h3> <ul> <li><a href="http://www.tenable.com/careers/">We're hiring</a>! - Visit the Tenable website for more information about open positions.</li> <li>Check out <a href="http://www.youtube.com/tenablesecurity">our video channel on YouTube</a> which contains new Nessus and Sec...
Tenable Network Security Podcast Episode 119 - "Macs Don't Get Viruses, Detecting OS X Malware"
<h3>Announcements</h3> <ul> <p><li><a href="http://www.nessus.org/news-events/press-releases/2012-tenable-network-security-certified-as-approved-scanning-vendor-asv-b">Tenable Network Security Certified as Approved Scanning Vendor (ASV) by PCI Security Standards Council</a>.</li></p> <p><li>Check...