Tenable Network Security Podcast Episode 135 - "Scientific Linux Support, nginx Vulnerabilities"
Announcements
- We're hiring! - Visit the Tenable website for more information about open positions.
- Check out our video channel on YouTube which contains new Nessus and SecurityCenter tutorials.
- Tenable Tweets - You can find us on Twitter at http://twitter.com/tenablesecurity where we make product and company announcements, provide Nessus plugin statistics, and more!
- Want to ask questions about Nessus, SecurityCenter, LCE, and PVS and get answers from the experts at Tenable? Join Tenable's Discussion Forum for custom scripts, announcements, and more!
- You can subscribe to the Tenable Network Security Podcast on iTunes!
New & Notable Plugins
Nessus
- Scientific Linux Update Level
- nginx on Windows Directory Aliases Access Restriction Bypass
- Appweb < 3.3.3 Insecure SSL Renegotiation
- Scientific Linux Security Update : openoffice.org on SL5.x i386/x86_64
- Apple Xcode < 4.4 Multiple Vulnerabilities (Mac OS X)
- Opera < 12.01 Multiple Vulnerabilities
Passive Vulnerability Scanner
- NBCOlympics application detection for Apple iPad - (accessed)
- nginx < 1.2.x / 1.3.x < 1.2.1 / 1.3.1 Vulnerabilities with Windows directory aliases
SecurityCenter Report Templates
Compliance Checks
Nessus ProfessionalFeed and SecurityCenter customers can download compliance checks from the Tenable Support Portal.
Stories
- Errata Security: The tl;dr version of Moxie's MSCHAPv2
- Trying to unmask the fake Microsoft support scammers! - Securelist
- Baidu Workers Arrested For Deleting Posts For Money ≈ Packet Storm
- Payroll admins targeted by dangerous Java exploit
- RaspberryPi Image Occidentalis 0.1 Default Credentials
Related Articles
Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"
February 13, 2014<p></p>
Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps
November 22, 2024Don’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. Plus, the ranking of the most harmful software weaknesses is out. Meanwhile, critical infrastructure orgs have a new framework for using AI securely. And get the latest on the BianLian ransomware gang and on the challenges of protecting water and transportation systems against cyberattacks.
Active Directory Under Attack: Five Eyes Guidance Targets Crucial Security Gaps
November 21, 2024A landmark global report from cybersecurity agencies emphasizes 17 attack techniques against Microsoft Active Directory and cautions organizations to step up protections. In the first of our two-part series, we offer five steps you can take today to shore up your AD defenses.
Five Cyber Agencies Sound Alarm About Active Directory Attacks: Beyond the Basics
November 21, 2024A landmark global report emphasizes 17 attack techniques against Microsoft Active Directory and cautions organizations to step up protections. In the second of our two-part series, we take you beyond the basics to highlight three key areas to focus on.
- Podcast