Microsoft Patch Tuesday, December 2025 Edition

https://krebsonsecurity.com/2025/12/microsoft-patch-tuesday-december-2025-edition/

#WindowsCloudFilesMiniFilterDriver #WindowsPowershell #MicrosoftOutlook #MicrosoftOffice #LatestWarnings #TheComingStorm #CVE-2025-10573 #CVE-2025-54100 #CVE-2025-59516 #CVE-2025-59517 #CVE-2025-62221 #CVE-2025-62458 #CVE-2025-62470 #CVE-2025-62472 #CVE-2025-62554 #CVE-2025-62557 #CVE-2025-64671 #SatnamNarang #TimetoPatch #AdamBarnett #AriMarzuk #IDEsaster #Tenable

Heyyyyy #Tenable #Nessus? Can we maybe not run sketchy-looking #PowerShell on my computer? I just happened to catch this in the logs. Kay, thanks.

Agentic AI Security: Stop Cyber Hygiene Failures from Becoming a Global Breach | Tenable #ai #breach #vulnerabilityscan #tenable https://www.tenable.com/blog/agentic-ai-security-keep-your-cyber-hygiene-failures-from-becoming-a-global-breach

Private data at risk due to seven ChatGPT vulnerabilities | Tenable #vulnerability #vulnerabilities #vulnerabilityscan #tenable https://www.tenable.com/blog/hackedgpt-novel-ai-vulnerabilities-open-the-door-for-private-data-leakage

NVD Delays Leave Defenders in the Dark — Early Visibility is Key
Tenable’s recent analysis shows a worrying pattern in vulnerability disclosure timing:
- 63,862 CVEs from 2024–2025
- 56% of PoCs released within 7 days
- NVD lagging by ~15 days
- Exploitation confirmed in as little as 5 days
This gap between CVE assignment, PoC publication, and NVD visibility creates exploitable blind spots for enterprises relying on traditional patch cycles.
💬 Security leaders - how do you bridge these gaps? Do you trust vendor advisories, exploit feeds, or telemetry-driven signals more?

👍 Like and follow @technadu for continuous coverage of emerging vulnerability management insights.

#InfoSec #CyberSecurity #VulnerabilityManagement #ThreatIntel #NVD #Exploit #RiskIntel #Tenable #CVEs #CyberDefense #ZeroDay #CVETracking #VulnDisclosure #TechNadu

Why prioritizing vulnerabilities based on NVD leaves you at risk | Tenable #vulnerability #vulnerabilities #vulnerabilityscan #tenable https://www.tenable.com/blog/cyber-risk-lurks-in-the-vulnerability-disclosure-gaps

Patch Tuesday, October 2025 ‘End of 10’ Edition - Microsoft today released software updates to plug a whopping 172 security holes in its Wi... https://krebsonsecurity.com/2025/10/patch-tuesday-october-2025-end-of-10-edition/ #microsoftpatchtuesdayoctober2025 #microsoftoffice #cve-2025-24990 #cve-2025-59227 #cve-2025-59230 #cve-2025-59234 #cve-2025-59287 #satnamnarang #timetopatch #immersive #kevbreen #tenable

🧠 EDR Tools Are Not Exposure Management Solutions.

They’re reactive, not proactive - designed to respond after compromise, not prevent it.
EDR misses entire classes of assets like routers, IoT, and third-party systems.

💬 What’s your approach to achieving full attack surface visibility?

Follow @technadu for more discussions on vulnerability intelligence and exposure reduction.

#CyberSecurity #ExposureManagement #EDR #Tenable #InfoSec #ThreatDetection #VulnerabilityIntelligence #TechNadu

Patch Tuesday, October 2025 ‘End of 10’ Edition

https://krebsonsecurity.com/2025/10/patch-tuesday-october-2025-end-of-10-edition/

#MicrosoftPatchTuesdayOctober2025 #MicrosoftOffice #CVE-2025-24990 #CVE-2025-59227 #CVE-2025-59230 #CVE-2025-59234 #CVE-2025-59287 #SatnamNarang #TimetoPatch #Immersive #KevBreen #Tenable

Cloud adoption keeps rising — but security maturity lags behind.

Tenable & CSA report that 33% of orgs using AI faced data breaches, and 52% call identity risk their top concern.

https://www.technadu.com/cloud-and-ai-security-report-reveals-critical-gaps-cloud-adoption-outpaces-security-readiness/610946/

#CloudSecurity #AIsecurity #Cybersecurity #Tenable #CSA

Tenable Confirms Data Breach – Hackers Accessed Customers’ Contact Details

Tenable has confirmed a data breach that exposed the contact details and support case information of some of its customers.

The company stated the incident is part of a broader data theft campaign targeting an integration between Salesforce and the Salesloft Drift.

#Salesforce #Salesloft #tenable #databreach #security #cybersecurity #hackers #hacking #hacked

https://cybersecuritynews.com/tenable-confirms-data-breach/

☁️🤖 Cloud & AI Security 2025 report: @tenablesecurity
🔹 82% hybrid cloud
🔹 63% multi-cloud
🔹 34% of orgs with/ AI workloads have already hit by breaches
🔹 Identity risks remain under-managed
Is AI security the next weak point—or the next defense frontier?

Follow @technadu for more.

#Tenable #CloudSecurity #AIWorkloads #HybridCloud #IdentitySecurity

Microsoft Patch Tuesday, September 2025 Edition

https://krebsonsecurity.com/2025/09/microsoft-patch-tuesday-september-2025-edition/

#sansinternetstormcenter #LatestWarnings #TheComingStorm #CVE-2025-38352 #CVE-2025-48543 #CVE-2025-54916 #CVE-2025-54918 #CVE-2025-55177 #CVE-2025-55234 #NTLANManager #SatnamNarang #TimetoPatch #WindowsNTLM #Immersive #microsoft #KevBreen #WhatsApp #Tenable #windows #google #apple

Microsoft Patch Tuesday, September 2025 Edition - Microsoft Corp. today issued security updates to fix more than 80 vulnerabilities ... https://krebsonsecurity.com/2025/09/microsoft-patch-tuesday-september-2025-edition/ #sansinternetstormcenter #latestwarnings #thecomingstorm #cve-2025-38352 #cve-2025-48543 #cve-2025-54916 #cve-2025-54918 #cve-2025-55177 #cve-2025-55234 #ntlanmanager #satnamnarang #timetopatch #windowsntlm #immersive #microsoft #kevbreen #whatsapp #tenable #windows #apple

Tenable has confirmed a data breach that exposed the contact details and support case information of some of its customers.

The company stated the incident is part of a broader data theft campaign targeting an integration between #Salesforce and the Salesloft Drift marketing application, which has affected numerous organizations. #tenable #databreach

Cyber uppsi #tenable

Tenable confirms Salesloft + Drift data breach.
✔️ OAuth tokens stolen, biz contact + case refs exposed
✔️ No Tenable core product compromise
✔️ Salesforce integration restored

Details: https://www.technadu.com/tenable-confirms-data-breach-salesloft-and-drift-compromise-contained-salesforce-integration-restored/

#Tenable #Salesloft #Drift #DataBreach #CyberSecurity

Been wrestling with Terraform for Tenable all morning. Their AWS AMI isn’t even on Amazon Linux 2023… it’s EOL in June. Ended up writing my own install script to deploy Tenable, link it, and bolt on Datadog in one go. Vendor pain is real.
#Cybersecurity #InfoSec #Tenable

India’s cybersecurity strategy needs more than just compliance.

📢 Tenable India MD Rajnish Gupta highlights:
- IAM visibility gaps across AWS, Azure, GCP
- Sectoral risks (BFSI, healthcare)
- Exposure management & DPDP readiness

🔗 Read: ⬇️
https://www.technadu.com/indias-cybersecurity-evolution-exposure-risk-healthcare-gaps-and-multi-cloud-iam-challenges-take-center-stage/605413/

#CyberSecurity #India #Tenable #DPDP #CloudSecurity #DataProtection

Is there anyone who is proficient with Tenable.sc and managed #Nessus scanners? I'm having a hellova time trying to figure out a glitch with plugins. No matter what I do, my scanner gets only the plugins from 12 May 2025. I've been laser-focused on troubleshooting this and I've run out of ideas. I've even rebuilt the scanner server with no change, leading me to believe it's something with Tenable.sc, and Tenable.sc has the latest plugin set. Help me Obi-won, you're my only hope. #Tenable