Tenable has uncovered a privilege escalation vulnerability in Google Cloud Composer (GCP) named ConfusedComposer. The vulnerability lets attackers with edit permissions in Cloud Composer to escalate privileges and gain access to a high-level service account with broad permissions across GCP. Cloud Composer uses Cloud Build, a fully managed continuous integrationRead More…
Tenable has identified a privilege escalation vulnerability in Google Cloud Run called ImageRunner. The vulnerability could have allowed attackers to bypass permissions, gain unauthorised access to container images and potentially expose sensitive data. Cloud Run, Google’s serverless container platform, uses a service agent with elevated permissions to pull private Google ContainerRead More…
Tenable has announced the release of its Cloud AI Risk Report 2025, which found that cloud-based AI is prone to avoidable toxic combinations that leave sensitive AI data and models vulnerable to manipulation, data tampering and data leakage. Cloud and AI are undeniable game changers for businesses. However, both introduce complexRead More…
Tenable has announced the launch of Identity 360 and Exposure Center, two new Tenable Identity Exposure capabilities designed to help organisations pinpoint identity risks and take swift, targeted action to prevent identity-based attacks. Identity management has become fragmented, leading to identity sprawl – a tangled web of accounts, permissions and misconfigurations acrossRead More…
Tenable has signed a definitive agreement to acquire Vulcan Cyber, an innovator in exposure management. Vulcan Cyber’s capabilities will augment Tenable’s industry-leading Exposure Management platform, enhancing customers’ ability to consolidate exposures across their security stack, prioritize risks and streamline remediation efforts across the entire attack surface. Under the terms ofRead More…
Jason Merrick, SVP of Product at Tenable Everything, everywhere, all at once is not sustainable without context “As the attack surface continues to expand and threat actors grow more sophisticated, cybersecurity teams will face an overwhelming flood of fragmented vulnerability and threat intelligence data. The days of linear attacks areRead More…
Tenable announced new vulnerability intelligence, risk prioritization and web application scanning features for Tenable Security Center, the world’s #1 vulnerability management solution managed on-premises.Read More…
Tenable has announced new vulnerability intelligence, risk prioritization and web application scanning features for Tenable Security Center, the world’s #1 vulnerability management solution managed on-premises.Read More…
