This month we look at newly-released, important-rated patches from Microsoft, and a new blog from Tenable’s Security Response Team where more vulnerabilities from 2021 were discussed, and why they did not make the final top five in our Threat Landscape Retrospective. 

March Patch Tuesday 

Behind the Scenes: How We Picked 2021's Top Vulnerabilities – and What We Left Out 

2021 Threat Landscape Retrospective 

This month we talk to Renaud Deraison, outgoing CTO and a co-founder of Tenable, who talks about his time developing Nessus from an open source scanner in 1998 to the development of Tenable over the past 20 years, and what the future looks like for him.

Nessus Professional

Tenable Research

Tenable Blog

This month we look at new patches released by Cisco, Microsoft and SAP, and while there were some very critical vulnerabilities patched, we also saw Microsoft change tact with a significantly reduced patch bundle and with no critical patches released.

Patch Tuesday Blog 

SAP Patches Internet Communication Manager Advanced Desync (ICMAD) Vulnerabilities  

Threat Landscape Retrospective Download Page 

Critical Flaws in Cisco Small Business Routers 

Tenable Research Podcast on CISA

As it is Black History Month in North America in February, we talked to the co-chairs of Black@Tenable, the diversity and inclusion group for African-American employees of Tenable, about the recognition of black leaders in technology, efforts to increase the hiring of people of color in cybersecurity, and how the industry is responding to that.

Tenable Homepage
Tenable Careers
Black History Month

In our first look at the research highlights of 2022, we take a deep dive into Tenable’s 2021 Threat Landscape Retrospective, and look at the incidents, attacks and notable vulnerabilities that made up the past year.

We also look at new advisories from January 2022, with new patches from Microsoft and ZoHo, and the new CVEs in Apache Log4j 1.x.

Threat Landscape Retrospective Download Page 

TLR Webinar Registration Page 

TLR Blog Post 

PrintNightmare CVE 2021-36958

Tenable Log4J Website 

ZoHo Patches 

Microsoft January Patches 

Follow along for more from Tenable Research:

Subscribe to the blog

Follow Tenable’s Zero Day team on Medium

This month we take a look back at the impact of Log4J and how both the industry and Tenable were able to respond to this major incident that affected so many users globally. There are also fresh fixes from SonicWall and ZoHo for ManageEngine, and the final batch of patches from Microsoft as it rounds off a quieter year.

Proof-of-Concept for Critical Apache Log4j Remote Code Execution Vulnerability Available (Log4Shell)

Log4j Resource Page

Log4J Tenable Webinar 

SonicWall Urges Users to Patch Several Vulnerabilities in Secure Mobile Access Products 

ZoHo Patches ManageEngine Zero-Day Exploited in the Wild

Microsoft’s December 2021 Patch Tuesday Addresses 67 CVEs 


Follow along for more from Tenable Research:

Subscribe to the blog

Follow Tenable’s Zero Day team on Medium

The recent Binding Operational Directive from CISA will see a number of U.S. government departments receive better instruction on which vulnerabilities need to be patched, and to do so within a six month time frame. 

On this episode of the Tenable Research podcast, we talk to Nathan Wenzler and Seth Matheson about what the vulnerabilities are, how they are determined, who is affected and what this could mean for other governments around the world, and other businesses also.

Show references:

Binding Operational Directive 22-01 

CISA Directive 22-01: How Tenable Can Help You Find and Fix Known Exploited Vulnerabilities 

https://cyber.dhs.gov/bod/22-01/

How Risk-Based Vulnerability Management Helps You Effectively Address CISA’s Binding Operational Directive 22-01

This time we’re joined by Tenable’s security strategist Sylvain Cortes, as we look at the types of attacks being targeted at Active Directory, how attackers look to get a foothold into enterprise networks by exploiting AD, and what steps you can take to better secure yourself and your AD environment 

Active Directory is Now in the Ransomware Crosshairs 

How to Protect Active Directory Against Ransomware Attacks

How to Strengthen Active Directory and Prevent Ransomware Attacks 

This month we look at patches from Apache and VMware, an example of very rapid response to a researcher’s findings, and another quiet month from Microsoft’s Patch Tuesday, with guests Claire Tills and Satnam Narang from Tenable's Security Response Team.

• CVE-2021-22005: Critical File Upload Vulnerability in VMware vCenter Server
• CVE-2021-41773: Path Traversal Zero-Day in Apache HTTP Server Exploited
• Microsoft’s October 2021 Patch Tuesday Addresses 74 CVEs (CVE-2021-40449)
• CVE-2021-34527: Microsoft Releases Out-of-Band Patch for PrintNightmare Vulnerability in Windows Print Spooler
• CVE-2021-1675: Proof-of-Concept Leaked for Critical Windows Print Spooler Vulnerability
• The PrintNightmare Continues: Another Zero-Day in Print Spooler Awaits Patch (CVE-2021-36958)
• Finding Proxylogon and Related Microsoft Exchange Vulnerabilities: How Tenable Can Help

Follow along for more from Tenable Research:

• Subscribe to the blog
• Follow Tenable’s Zero Day team on Medium

This month we review new blogs from Tenable’s Security Response Team on a vulnerability in Atlassian’s Confluence Server, review what made cybersecurity say “OMIGOD” and look at another light load of patches from Microsoft. We also look at new research - commissioned by Tenable and conducted by Forrester - on remote working statistics, and look at technology investment and attack trends which were discovered.

Show References:

• Atlassian Confluence OGNL Injection Vulnerability Exploited in the Wild 
• Critical Flaw Leaves Azure Linux VMs Vulnerable to Remote Code Execution 
• Microsoft’s September 2021 Patch Tuesday Addresses 60 CVEs 
• Tenable and Forrester cyber risk report

Follow along for more from Tenable Research:

• Subscribe to the blog
• Follow Tenable’s Zero Day team on Medium