Tenable's Bit Discovery Buy Underscores Demand for Deeper Visibility of IT Assets

The four-year-old firm, started by two industry veterans, focuses on gaining visibility into Internet-facing services as more companies seek insight into what attackers see. [TechWeb]( Follow Dark Reading: [RSS]( April 28, 2022 LATEST SECURITY NEWS & COMMENTARY [Tenable's Bit Discovery Buy Underscores Demand for Deeper Visibility of IT Assets]( The four-year-old firm, started by two industry veterans, focuses on gaining visibility into Internet-facing services as more companies seek insight into what attackers see. [Chinese APT Bronze President Mounts Spy Campaign on Russian Military]( The war in Ukraine appears to have triggered a change in mission for the APT known as Bronze President (aka Mustang Panda). [How Industry Leaders Should Approach Open Source Security]( Here's how to reduce security risk and gain the benefits of open source software. [CISA: Log4Shell Was the Most-Exploited Vulnerability in 2021]( Internet-facing zero-day vulnerabilities were the most commonly used types of bugs in 2021 attacks, according to the international Joint Cybersecurity Advisory (JCSA). [Coca-Cola Investigates Data-Theft Claims After Ransomware Attack]( The Stormous ransomware group is offering purportedly stolen Coca-Cola data for sale on its leak site, but the soda giant hasn't confirmed that the heist happened. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Iranian Hacking Group Among Those Exploiting Recently Disclosed VMware RCE Flaw]( Threat actor is using the flaw to deliver Core Impact backdoor on vulnerable systems, security vendor says. [Cyber Conflict Overshadowed a Major Government Ransomware Alert]( The FBI warns that ransomware targets are no longer predictably the biggest, richest organizations, and that attackers have leveled up to victimize organizations of all sizes. [Name That Toon: Helping Hands]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [MORE]( EDITORS' CHOICE [Log4j Attack Surface Remains Massive]( Four months after the Log4Shell vulnerability was disclosed, most affected open source components remain unpatched, and companies continue to use vulnerable versions of the logging tool. LATEST FROM THE EDGE [A Peek into Visa's AI Tools Against Fraud]( Visa has invested heavily in data analytics and artificial intelligence over the past five years to secure the movement of money and keep fraud rates low. LATEST FROM DR TECHNOLOGY [Doppler Takes on Secrets Management]( The startup is the latest company to try to solve the problem of organizing and sharing secrets. Tech Resources - [Improving Operations with AI-Assisted Cybersecurity]( - [Unlocking Human Potential in SOC Teams With AI-Assisted Cybersecurity]( - [Get the Gartner Report: SOC Model Guide]( - [The Cyber Threat Impact of COVID-19 to Global Business]( - [Build a Case for a Password Manager]( - [Managed Security and the 3rd Party Cyber Risk Opportunity Whitepaper]( - [Security Orchestration Dummies]( [ACCESS TECH LIBRARY NOW]( - [Implementing and Using XDR to Improve Enterprise Cybersecurity]( Security operations teams are taking a hard look at extended detection and response tools - XDR - as a means of collecting and analyzing threat data and identifying cyber attacks faster and more efficiently. But exactly how does XDR technology ... - [Building Security Into the Application Development Lifecycle]( Trying to fix security issues in software just before it goes into production or after it is released is difficult, time-consuming, and expensive. But how do you shift security left - to bring security earlier into the software development lifecycle? ... [MORE WEBINARS]( FEATURED REPORTS - [How Enterprises Are Securing the Application Environment]( Download this report from Dark Reading to learn more about the measures enterprises have adopted to ensure the security of their internally developed applications and third-party packaged applications. - [How Enterprises Plan to Address Endpoint Security Threats in a Post-Pandemic World]( Dark Reading's 2022 Endpoint Security Report examines how IT and cybersecurity professionals are grappling with the impact of pandemic-related changes on endpoint security strategies. The report explores how they are building their endpoint security defenses, and provides insight on what organizations ... [MORE REPORTS]( CURRENT ISSUE [Understanding DNS Threats and How to Use DNS to Expand Your Cybersecurity Arsenal]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Synopsys to Acquire WhiteHat Security from NTT]( [Introducing Apostro: A Risk Management Platform for Web3 Security]( [SecurityScorecard Launches Cyber Risk Quantification Portfolio]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)