Forum Widgets
Recent Discussions
Tenable is updating the vulnerability severity color scheme...
Tenable is updating the vulnerability severity color scheme across all Tenable products including Tenable.io, Tenable.sc and Nessus. These changes are based on customer feedback and will align severity colors across products for customers that have multiple Tenable solutions. These changes will also allow you to better differentiate between vulnerability severity levels and make severity colors more distinguishable. In addition to new severity colors, the color green has been removed from the severity color scheme. Green is now reserved for positive/good status such as passed findings vs. failed (red). Products will be updated according the following release schedule: Tenable.sc: July 23, 2021 (as part of the 5.19 release) Tenable.io: late July 2021 Nessus: Early fall (as part of the Nessus 10 release) We encourage all customers to review the below graphic to become familiar with the new severity colors, as well as attend the monthly customer webinars to learn more about these changes (Tenable.sc, Tenable.io, Nessus).
I’m pleased to announce the JIRA 8 (on-prem) Plug-in for...
I’m pleased to announce the JIRA 8 (on-prem) Plug-in for Tenable version 10.0.4.25. This update includes improved support for newer Jira 8 UI elements. This version is now available for download at https://www.tenable.com/downloads/integrations
I'm pleased to announce the release of our "Alpha&qu
I'm pleased to announce the release of our "Alpha" integrations with MS Azure Security Center (ASC). We have built this integration with the assistance of the MS ASC team to support pushing a summary of our vulnerability findings to ASC leveraging a new API they have in preview. We will be leaving this integration in the "Alpha" stage until MS officially releases the API that powers this integration. If you would like to leverage this integration you will need to work with MS to ensure you have access to the ASC preview APIs prior to setting anything up. The integration can be found here: https://github.com/tenable/integration-asc A copy of our joint press release with Microsoft can be found here: https://www.tenable.com/press-releases/tenable-to-secure-enterprise-cloud-environments-with-microsoft-azure-integrationTenable.sc 5.9 is now available! Upgrade to Tenable.sc (forme
Tenable.sc 5.9 is now available! Upgrade to Tenable.sc (formerly SecurityCenter) 5.9 to take advantage of the following new features: Predictive Prioritization: A new innovation to help you understand the actual impact of the vulnerabilities in your environment and re-prioritize them based on the probability that they will be exploited. You will now see a new Vulnerability Priority Rating (VPR) for each vulnerability. This rating augments CVSS scores and represents the likelihood a given vulnerability will be exploited in the near-term future, along with its severity. SAML 2.0 Integration: This integration adds support for Security Assertion Markup Language (SAML), giving you multiple SSO/authentication options, such as Shibboleth and Okta, to streamline your security with one-click login, centralized authentication and increased security and convenience. For more information review the following resources: Download: https://www.tenable.com/downloads/tenable-sc Release Notes: https://docs.tenable.com/releasenotes/tenablesc/tenablesc590.htm Blog: https://www.tenable.com/blog/see-more-do-more-and-reduce-risk-with-tenable-sc-5-9 Predictive Prioritization Webinar: https://www.tenable.com/webinars/eliminate-vulnerability-overload-with-predictive-prioritization
Tenable Product and Research Update Newsletter - April 2025...
Tenable Product and Research Update Newsletter - April 2025 Greetings! Check out our April newsletter to learn about the latest product and research updates, upcoming and on-demand webinars, and educational content—all to help you get more value from your Tenable solutions. >> Click here to view a PDF of the entire newsletter. Tenable Training and Product Education Tenable Certifications Now Approved for CompTIA CEUs Tenable is now a CompTIA Pre-Approved Training Provider. Customers who earn an eligible Tenable product certification can apply 29 continuing education units (CEUs) toward renewal of their active CompTIA Security+ CE certification. Recognized certifications include: Tenable Vulnerability Management Specialist and Expert Tenable Security Center Specialist and Expert Tenable OT Security Specialist To receive CEU credit, customers must upload their certification documentation via the CompTIA portal at https://www.certmetrics.com/comptia. Customers who earned an eligible Tenable product certification in 2024 may also retroactively submit their documentation to CompTIA for CEU credit. Tenable Cloud Security Reminder: Tenable Cloud Security requires you to log in to view documentation. To access the documentation or try Tenable Cloud Security, contact your account manager or request a demo. Tenable Cloud Security is now FedRAMP® Authorized It’s official: Tenable Cloud Security is now Federal Risk and Authorization Program (FedRAMP®) moderate authorized. Federal agencies can use Tenable’s actionable cloud security platform to rapidly expose and close security gaps caused by cloud misconfigurations, risky entitlements, and vulnerabilities. You can acquire FedRAMP-authorized Tenable Cloud Security through Tenable One FedRAMP for U.S. Government or Tenable Cloud Security FedRAMP for U.S. Government and use it to manage both your FedRAMP and commercial cloud footprints through a single pane of glass. For more information, view the press release. Kubernetes Admission Controller and Unified Helm Charts Gain tighter control over your Kubernetes and OpenShift clusters with ease using the new Tenable Cloud Security Admission Controller. This new capability intercepts API requests to enforce policies, validate configurations, and ensure only compliant resources are created or modified. It also allows you to easily enable or disable policies, set policies to deny or alert on changes, and edit policy variables without needing to write or know rego. Access the Admission Controller and more, and keep your environments secure and up to date by installing the newly launched unified Helm Chart, which offers: Automatic access to new features, including the Admission Controller, agent-based vulnerability scanning, and (soon) malware scanning Optimized resource allocation Flexible container image registry support for pulling images from Tenable’s container image registry or configuring your private registry For more information on the K8s Admissions Controller, see the demo clip. Detect and Fix Issues at the Source by Scanning Private (Internal) AMIs If you are using AMIs to launch EC2s, you can now scan them to detect and fix issues at source without needing additional permissions. To do so, just enable the feature; the existing VM scan permissions will apply. Note that the use of this capability is billed at one billable resource per image (AMI instance) scanned. To find out more, see the documentation. Replace Microsoft Entra Permissions Management with Tenable Cloud Security With end-of-life announced for Microsoft Entra Permissions Management, consider Tenable Cloud Infrastructure Entitlement Management (CIEM) and Tenable Just in Time (JIT) your ideal replacement choice. Our Gartner-recognized CIEM solution provides all the functionality of Microsoft Entra Permissions Management and more, with consistent, same-level identity security across Azure, AWS, and Google Cloud. Likewise, Tenable JIT helps you eliminate the use of standing permissions to cloud resources and complements CIEM for more effective least privilege. You can license Tenable CIEM and JIT as part of Tenable Cloud Security to holistically secure your full cloud stack.
Tenable.sc 5.23 We are excited to announce the general...
Tenable.sc 5.23 We are excited to announce the general availability of Tenable.sc 5.23! This release includes the following enhancements and performance improvements: Filtering on AES scoring for Vulnerability Analysis, Dashboards, Reports, Alerts and Assurance Report Cards for Tenable.sc+. Export of the Host Assets view with the ability to select specific columns in CSV format. Routing vulnerabilities based on certain criteria for users. Commas now appear in large numbers across Tenable.sc. Integration with Nutanix to perform accurate remote, local and agent-based scans for Nutanix AOS/AHV. Numerous Security and bug fixes. To get started, download Tenable.sc 5.23 and view the release notes.We are excited to announce several updates that improve the...
We are excited to announce several updates that improve the experience for both developers and admins using the new Tenable developer portal A new version of Tenable.io reference documentation Enhanced theme editor and redesigned default portal theme, and Ability to see client response samples in eleven different programming languages All three features are in beta and are available to Tenable customers today. First, a new Tenable.io API integration portal creates beautiful API reference documentation for your developers in a new, three-pane view. The left pane helps developers navigate between areas of the API, while the center area gives detailed responses in different programming languages for a given operation. The right pane enables you to make API requests directly from the docs, using the Try It button. Documentation depends on the OpenAPI Specification. Also, there is a link to the Tenable Community where developers can engage with other community members to spark conversations and to share their expertise and skill. If you're already a Tenable.io customer, check out the documentation to get started. There you'll find a complete feature overview, tutorials, best practices, and more. If you're not already a Tenable.io customer, you can try it out today for 60 days with a free product evaluation. .We're pleased to announce two new product enhancements...
We're pleased to announce two new product enhancements now available in Tenable.io: Network Management Tenable.io now enables you to identify the network location of assets when they are part of multiple overlapping internal IP spaces. With Network Management, you can create a network for each environment you have and assign scanners and scanner groups to each network. This enhancement is extremely useful if you perform unauthenticated scans across overlapping internal IP spaces (e.g., retail stores, remote offices, branch locations) and need visibility into which environment assets are located. For more information, please read Networks in the Tenable.io User Guide. Tag by Installed Software Tenable.io now allows you to create dynamic, rule-based tags to group assets together based on installed software. Installed software is now an attribute of the asset, and you can view installed software details in the Asset Details view and filter assets based on installed software. Tagging by Installed Software provides you with greater flexibility for mapping assets to the right operational team. For more information, please read Example: Asset Tagging in the Tenable.io User Guide.We're excited to introduce Tenable.io on-prem, a new...
We're excited to introduce Tenable.io on-prem, a new deployment model for Tenable.io. Tenable.io on-prem allows you to host and operate your Cyber Exposure platform within your network. Your data is kept locally, both in transit and at rest, within your organizations boundaries. For more information check out our blog post: https://www.tenable.com/blog/introducing-tenable-io-on-prem
