@borncity.com
//
Tenable has disabled Nessus scanner agent versions 10.8.0 and 10.8.1 after a faulty differential plugin update caused agents to go offline. The issue, discovered on December 31st, impacted Nessus agents’ ability to scan for vulnerabilities and collect security data. The affected agents, used to gather information on assets by scanning for vulnerabilities and compliance issues, were rendered inoperable. The company paused updates upon discovery of the problem and identified the cause as being linked to those specific agent versions.
On January 2nd, Tenable announced that the issue was affecting Nessus Agent versions 10.8.0 and 10.8.1 for TVM, TSC and Nessus and the plugin feed updates were disabled, except for TVM Nessus Agent and TVM linked Nessus Scanner. To resolve the problem, Tenable released version 10.8.2 which addresses the problem. Users have been instructed to either upgrade to agent version 10.8.2 or downgrade to version 10.7.3 and reset the plugins to restore functionality. Tenable has not yet provided details on the root cause of the faulty update. References :
Classification:
MalBot@malware.news
//
The cybersecurity industry is in mourning following the death of Amit Yoran, the chairman and CEO of Tenable Holdings. Yoran, aged 54, passed away on January 3rd after battling cancer. He had taken a medical leave of absence on December 5th for additional treatment. Yoran was a well-respected and visionary leader within the cybersecurity sector, having helmed several prominent companies, including RSA Security and NetWitness. He also served as the founding director of US-CERT, part of the Department of Homeland Security. Yoran joined Tenable in 2016, and led the company through its successful $250 million IPO in 2018.
Yoran's impact on the industry is immense. He was known for his strategic vision and passion for cybersecurity, and his willingness to challenge the status quo, and even take on powerful industry players when necessary. His leadership has shaped Tenable's culture and mission. Prior to Tenable, Yoran's roles included president of RSA Security and founder and CEO of NetWitness, recognized for its contributions to cybersecurity innovation. In 2006 he also co-founded RIPtech, which was later acquired by Symantec. The cybersecurity community has expressed shock and sadness at his untimely death, with many acknowledging his contributions to making the digital world a safer place for businesses. References :
Classification:
drewt@secureworldexpo.com (Drew@SecureWorld News
//
DeepSeek R1, an open-source AI model, has been shown to generate rudimentary malware, including keyloggers and ransomware. Researchers at Tenable demonstrated that while the AI model initially refuses malicious requests, these safeguards can be bypassed with carefully crafted prompts. This capability signals an urgent need for security teams to adapt their defenses against AI-generated threats.
While DeepSeek R1 may not autonomously launch sophisticated cyberattacks yet, it can produce semi-functional code that knowledgeable attackers could refine into working exploits. Cybersecurity experts emphasize the dual-use nature of generative AI, highlighting the need for organizations to implement strategies such as behavioral detection over static signatures to mitigate risks associated with AI-powered cyber threats. Cybercrime Magazine has also released an episode on CrowdStrike’s new Adversary Universe Podcast, discussing DeepSeek and the risks associated with foreign large language models. References :
Classification: |