New Linux/Unix Audit for Cassandra Instances Summary...
New Linux/Unix Audit for Cassandra Instances Summary Customers with Cassandra databases running on Unix or Linux hosts can now evaluate their compliance against host level guidance as provided by CIS in the CIS Apache Cassandra 3.11 Benchmark v1.0.0. CIS Benchmarks CIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0 Target Release Date 21 Dec 2020 Additional Notes: New compliance plugins are in development to support query-level configuration testing. Additional audit content utilizing those functions will be released soon. ---------------------------------------------------------------------------------------------------- Tenable Research Release Highlights are posted in advance of significant new releases or updates to existing plugins or audit files that are important for early customer notification.
OS Identification: SinFP with Machine Learning Change...
OS Identification: SinFP with Machine Learning Change Operating system (OS) identification Nessus plugins 11936 and 132935 are being updated to use a new machine learning approach that uses models trained on TCP probe response information and a constantly updating training set to predict a host OS. This is implemented by converting a decision tree model into an include file used by the OS identification plugins to determine the OS. For the initial release, the confidence level will be low to prevent overriding the majority of other OS fingerprint methods. This confidence level will be reevaluated at a later date and a release highlight will be posted if it is changed. Impact Customers should expect increased accuracy OS fingerprinting of hosts that once had no fingerprint or a low confidence level but should expect to see no or very few vulnerability plugins triggering off the new OS fingerprint. The increase in accuracy will mean more visibility on the network inventory. For Tenable.io customers using Lumin, this will mean improved metrics for Assessment Maturity (AM) and Asset Criticality Rating (ACR) since those rely on correct OS identification. In turn, the Lumin Cyber Exposure Score (CES), which uses ACR, may be more accurate. Please email any incorrect OS signatures to os-signatures@nessus.org. Plugins 11936 - OS Identification 132935 - OS Identification: Probabilistic SinFP Note that the plugin name for 132935 is being changed to "OS Identification: SinFP with Machine Learning" with this update. Target Release Date 28 September 2020 Tenable Research Release Highlights are posted in advance of significant new releases or updates to existing plugins or audit files that are important for early customer notification.New CIS Distribution Independent Linux Benchmark v2.0.0...
New CIS Distribution Independent Linux Benchmark v2.0.0 Summary Customers can now measure compliance against the latest distribution independent settings with the new CIS Distribution Independent Linux audits. These audits have been certified through CIS and can be viewed along with Tenable's other certified products at https://www.cisecurity.org/partner/tenable. Tenable Benchmarks CIS Distribution Independent Linux Server L1 v2.0.0 CIS Distribution Independent Linux Server L2 v2.0.0 CIS Distribution Independent Linux Workstation L1 v2.0.0 CIS Distribution Independent Linux Workstation L2 v2.0.0 Target Release Date 30 Jan 2020 Additional Notes: This audit includes a profile for Level 1 - Server and Level 2 - Server along with Level 1 - Workstation and Level 2 - Workstation. In addition, this audit includes all the changes included in the v2.0.0 major revision. __________________________________ Tenable Research Release Highlights are posted in advance of significant new releases or updates to existing plugins or audit files that are important for early customer notification.New CIS RHEL 8 v1.0.0 Benchmark Summary Customers can now...
New CIS RHEL 8 v1.0.0 Benchmark Summary Customers can now measure compliance against their RHEL 8 settings with the new CIS RHEL 8 audits. These audits have been certified through CIS and can be viewed along with Tenable's other certified products at https://www.cisecurity.org/partner/tenable. Tenable Benchmarks CIS RHEL 8 v1.0.0 Benchmark Release Date 11 Nov 2019 Additional Notes: This audit includes a profile for Level 1 - Server and Level 2 - Server along with Level 1 - Workstation and Level 2 - Workstation. In addition, this audit includes new settings found in RHEL 8 firewall configurations and logging/auditing settings, plus more. __________________________________ Tenable Research Release Highlights are posted in advance of significant new releases or updates to existing plugins or audit files that are important for early customer notification.
Tenable releases coverage for September 2019 Microsoft...
Tenable releases coverage for September 2019 Microsoft Patch Tuesday Microsoft’s September 2019 Patch Tuesday contains updates for 79 CVEs, 17 of which are rated critical. In the wake of BlueKeep in May, and the four additional CVEs for Remote Desktop Services in August (DejaBlue), Microsoft has addressed four new CVEs for Remote Desktop Client. Additionally, Microsoft patched two elevation of privilege bugs which have been exploited in the wild this month. Follow along as we discuss some of the important updates released this month by reading our blog. Release Date: 10 September 2019New CIS Microsoft SQL 2012 Benchmark Profile for Amazon RDS...
New CIS Microsoft SQL 2012 Benchmark Profile for Amazon RDS Summary Customers using the existing CIS guidance for compliance scans against Microsoft SQL RDS instances might have run into checks that were not applicable to a database running in RDS. A new profile has been added to the CIS Microsoft SQL 2012 Benchmark that should help overcome those issues by removing checks that can’t be evaluated. The new profile has allowed us to create an audit file more specifically tailored to an RDS database. CIS Benchmarks CIS Microsoft SQL Server 2012 Benchmark v1.5.0 Target Release Date 31 July 2019 Additional Notes: It’s expected that CIS will continue to add profiles to the rest of the Microsoft SQL Server and possibly other database benchmarks allowing for RDS specific audit file for other SQL Server versions and RDS database platforms __________________________________ Tenable Research Release Highlights are posted in advance of significant new releases or updates to existing plugins or audit files that are important for early customer notification.