Ebay Got Hacked - This is the same story I feel like I've read 1,000 times. It boils down to "big web site was breached, they stole the password database, everyone needs to change their passwords". A few things:While there are issues with two-
Announcing Nessus Enterprise, The Latest Product From Tenable!Boldly go where no scanner has gone before! The Tenable podcast team got together and created this special episode covering Nessus Enterprise, our latest product offering that will
SCADA Device Vulnerability Detection - How do we do it? Scan, Sniff, Log, "Real-time" all these words come into play, but what do they really mean and how do they help you solve problems and reduce risk? How do we deal with XP in this environme
Telephony DoS - I read an interesting article that detailed an attack that used a combination of social engineering and a DoS attack against your phone system. The attacker calls the victim and asks about up paid debt. Whether you have debt or
Endpoint Protection - New vulnerabilities have been remediated in the Symantec Endpoint Protection product. What many may not know is that this product does whitelisting. What are your thoughts on Whitelisting, how can it help and is it feasibl
Discovering New Hosts - At a recent presentation is was asked of me how one can detect new hosts. Tenable has many products that work towards detecting new hosts. One can do this passively by monitoring network traffic, via Nessus by enumeratin
Discussion & Highlighted PluginsCommon Sense Security Monitoring - I really have a lot of faith in this concept, largely because it makes sense in the real world in addition to the digital world. For example, you become accustomed to the happ
Tenable Year In Review - This has been a stellar year for Tenable products and features. There is a long list of significant changes, starting with Nessus we have seen enhancements to auditing patch management systems, several new configuration
This week Carlos and Paul discuss the Passive Vulnerability Scanner's ability to detect client-side and embedded device vulnerabilities. We also cover Ron's presentation https://discussions.nessus.org/docs/DOC-1051 on using Tenable products to
The PVS Top Ten:What is PVS and what does it do?How is PVS different from an IDS?How does PVS keep track of sessions and discover applications?What are some examples of PVS detecting vulnerable client soft are?How can PVS help detect inst
New Nessus AMI Image in the AWS Store - Tenable Network Security Joins Amazon Web Services (AWS) Marketplace to Provide On-Demand AMI Vulnerability Scanning & Detecting Windows Process Reputation
Nessus UI v2.0 Released - Tenable recently announce a new release of the Nessus vulnerability scanner user interface (UI)! This is a major update which provides several new features and enhancements, including: A redesigned user interface and u
"Upgrading is Hard To Do" - It can be a really tough thing to leave your current revision of given software, operating system or hardware. However, sometimes vendors bundle features, bug fixes, and security fixes into a major upgrade. I'm a bit
Digging For Gold: Finding Vulnerable Web Applications - The Passive Vulnerability Scanner ash many strengths, one of them being able to pick out vulnerable web applications in your environment. Over the years working for several different organ
Detecting Legacy Clients and Application - I was recently using PVS in a alb environment and noticed the wealth of information it provided me on legacy applications. This is great news for organizations, as likely, you have some legacy systems
"We Don't Have Those On Our Network" - I hear this quite often from folks, especially when presenting on embedded device security issues. Those running enterprise, or even smaller, networks will state that entire categories of devices, such as
Passive Vulnerability Scanning Use Cases - You can use Tenable's Passive Vulnerability Scanner to support many different efforts in your network security strategy. For example, as part of a vulnerability assessment the PVS solves many problems.