Introduction In today’s ever-evolving digital landscape, patch management has become an essential practice for organizations of all sizes. With new technologies emerging rapidly, the need for effective and efficient patch management solutions continues to grow. The purpose of patch management is to ensure that software and systems are up to date with the latest security

Cyber threats are expanding and could lead to various negative impacts including data breach, financial loss and reputational damage. Threat, Risk, and Vulnerability management solutions are important in providing organisations with the combination of tools, processes and best practices that can help them proactively manage their security risks. As the leading company in delivering enterprise

Background Information MINDEF, the Ministry of Defence of the nation (Malaysia) in the Asia Pacific region, has the responsibility of executing government defense policy. Their main goals are to protect the country and its interests and to enhance global peace and stability. MINDEF, along with their appointed Prime Contractor, has chosen E-SPIN’s Vulnerability Management (VM),

What is Tenable One? Ransomware are expanding at exponential rate. Multiple platforms had been introduced as solutions. Subsequently, numerous platforms come with different metrics, reporting, and training requirements which made it difficult for organisations to communicate their cyber risks – Hence, Tenable introduces the release of Tenable One as an ultimate solution. What is Tenable

What is Nessus Expert? Nessus Expert is a vulnerability assessment solution for your modern attack surface built on the foundation of Nessus Professional. It is built by Tenable for security practitioners, consultants, developers and pentesters to address threats that can impact the your ever expanding attack surface through the addition of Infrastructure as Code (IaC)

Tenable was founded in 2002 as Tenable Network Security, inc. It is well known as the creator of the vulnerability scanning software Nessus, where in the very beginning it was open source until being closed source. In 2018 public listed. If you follow the cybersecurity industry for long, you will notice that since 2012 Tenable

Depend on the context and use case, and how the specific enterprise is divide the structure to get things done, in the domain of governance, risk management and compliance (GRC) in the high level, or to more operational level of threat and vulnerability management (TVM) or to tactical level of threat intelligence feeds (IT feeds)

From Cyber threat intelligence to Threat intelligence feed, both carry some similarity but are two different things, despite both fall under the threat intelligence domain, where most of the people do not understand it clearly. We use the post to help open and clarify both. Cyber Threat Intelligence (CTI) , or mostly will be shortened

Today, Attack Surface Management had become the top priority for security team and risk management leaders. The reasons are the increase in cyber risk where attack surface is expanding due to digital transformation and cloud migration, as well as lack of visibility of assets including, unknown, unmanaged and poorly-managed assets making organisations at greater risk

Attack surface management (ASM) this few years is gaining momentum, as it provides a fresh new approach to security from the attacker’s perspective. As the market starts to realise reducing attack vectors is not practical to cope with modern challenges. In the IT field, it is very common for a couple of years to change

Despite it is well known fact and been documented extensively in the various regulatory compliance, but in the operation, we seldom to see anyone really fully understood threat modelling clearly and capable to make use of it, which result in the technical vulnerability management stage where technical officer and operation staff just know how to

Microsoft Windows Zero-Day Vulnerabilities Attack and Impact, continue to draw market awareness, due to the fact, they remain the most used and absolute market leader in the operating system. If you are the offensive hacker, are you targeting the over 80% market share operating system or someone will lesser? The logic behind it is still

This post is about How threat model can reduce cost and time of security. Threat Modeling can be an effective way to reduce cost and time of security. But what makes it effective is how it is implemented. The more effective way you implement it the more effective result you get. In this post we

This is a routine hour long technical overview, highly essential and recommended for existing customers who are now using any vulnerability assessment or new customer intent to make use of Tenable.ep as your vulnerability management solution. During this session, we will explore Tenable.ep through the introduction of the product and its two important key features;

With the idea of eliminating your fragmented approach to vulnerability management, we hereby introduce Tenable Exposure Platform (Tenable.ep). What is Tenable.ep? Tenable.ep is a comprehensive risk-based vulnerability management (RBVM) solution that comprises Tenable.io, Tenable.io Web Application Scanning, Tenable.io Container Security and Tenable Lumin to help your organization understand your cyber risks for every asset, everywhere,

More and more enterprise customers are now paying attention to IoC or Indirector of Compromise or in the process attempt to make use of it into their existing enterprise infrastructure and security system workflow setup. The objective is hope to get early warning and proactive action be acting on, before too late for them to do

Scan across all the news, FireEye Hacked incident is something worth to highlight and more importantly what the lesson we can learn from it. Let get real, being cyberthreat hunter, but you are being hacked, that is the result, what really matter is actually what is going on, a company suppose possess global capability to

The Tenable.sc platform provides the most comprehensive and integrated view of enterprise security posture so you can accurately identify, investigate and prioritize vulnerabilities. Tenable.sc is a vulnerability management solution that provides visibility into your attack surface so you can manage and measure your cyber risk. Tenable.sc does this through advanced analytics, customizable dashboards/reports and workflows

Calculate, communicate and compare cyber exposure while managing risk with Tenable Lumin. For the first time ever, user can visualize and explore the Cyber Exposure, track risk reduction over time, and benchmark against their peers. Use Tenable Lumin, an advanced visualization, analytics and measurement solution, to understand and reduce the Cyber Exposure. Tenable Lumin transforms vulnerability data into

The IT landscape is changing,and your security strategy needs to change along with it. IT environments today are filled with traditional and modern, dynamic assets. Beyond physical servers, organizations are embracing virtual and cloud assets, which can be deployed quickly as needed, on demand. These elastic assets, including mobile devices and containers, come and go

Security specialists’ time is productive when their time is spent on areas like attacking (or defending) systems. Everything else (e.g. reporting, project planning, etc.) is overhead. Security specialists use various tools in the market, and each tool has its own report format. To consolidate the report’s findings and present it into a single consolidated report

This is archived of the webinar conducted on 2020-Jun-18 3 pm – 4 pm for registered participants. For those who missed it, feel from the record of the session below. This is a routine hour long technical overview, highly essential and recommended for existing customers who are now using any vulnerability assessment and intent to

This is archived of the webinar conducted on 2020-Jun-16 11 am – 12 noon for registered participants. For those who missed it, feel from the record of the session below. This is a routine hour long technical overview, highly essential and recommended for existing customers who are  considering making use of Tenable.io cloud based vulnerability

This is archived of the webinar conducted on 2020-Jun-9 11 am – 12 noon for registered participants. For those who missed it, feel from the record of the session below. This is routine hour long technical overview, highly essential and recommends for existing customers who are using Nessus Professional vulnerability scanner,  a deployed vulnerability assessment

In some organizations these terms are used interchangeably to identify processes meant to root our weaknesses in applications and infrastructure. That is for generic consumer or beginner user perception and way for express need relate to that domain of requirement. For the industry and professional who carry out the Vulnerability Assessment and Penetration Testing (VAPT)

Industrial Control System (ICS)/SCADA System is widely adopted in manufacturing, energy and utilities, chemical and petroleum industries for mission critical industrial automation. For quick key term definition. Operational Technology (OT) refers to computing systems that are used to manage industrial operations as opposed to administrative operations. Operational systems include production line management, mining operations control,

Trustwave Vulnerability Management allows you to manage a prioritized list of vulnerabilities, understand how to fix them and produce reports detailing and verifying your remediation progress over time. Trustwave Vulnerability Management offers you a front-row view into the systems, applications and databases residing on your network and how those assets may be vulnerable to attack.

E-SPIN Unified Vulnerability Management (UVM), the company use to unify entire solution portfolio across multiple specialization domain is being explained during one of the E-SPIN event session. How it can be use for the customer for look into it in the systematic and holistic manner and prevent from any vendor locked down, as well as

What is Vulnerability Management? You will come across lot of definition from various subject matters textbook. E-SPIN Vulnerability Management Wheel explained and capture from the E-SPIN Unified Vulnerability Management solution event, provide what is vulnerability management in E-SPIN Vulnerability Management Wheel model. In the model, with the very core of Risk – Governance – Compliance.

A new version of Acunetix Web Vulnerability Scanners v10.5 has been released. The Full Edition of Acunetix Web Vulnerability Scanner allows you to perform full unlimited scans. The new version tests for Joomla! and Drupal vulnerabilities, supports CVSS 3.0 and includes other improvements/bug fixes. Joomla! and Drupal Support Acunetix v10.5 now reports vulnerabilities in popular