Latest news with #Tenable®


Web Release
7 hours ago
- Business
- Web Release
Tenable Expands Exposure Management Platform to Secure Enterprise AI
Tenable®, the exposure management company, today announced a significant expansion of its market-leading Tenable One platform with the launch of Tenable AI Exposure, a comprehensive solution to see, manage and control the risks introduced by generative AI. Unveiled at Black Hat USA 2025 , these new capabilities provide an end-to-end approach that moves beyond discovery to include risk management and policy enforcement for enterprise AI platforms like ChatGPT Enterprise and Microsoft Copilot. As businesses race to adopt generative AI to boost productivity, they are inadvertently creating a new, complex, and often invisible frontier of exposure. Security teams lack visibility into how employees use these powerful tools, which sensitive data might be exposed, and how they could be manipulated by attackers. Tenable now offers a single, unified solution that addresses the entire lifecycle of AI security challenges. 'Simply discovering shadow AI isn't enough. A true exposure management strategy requires an end-to-end solution that lets organizations discover their entire AI footprint, manage the associated risks, and govern its use according to their policies. That's exactly what we are delivering today,' said Steve Vintz, Co-CEO and CFO, Tenable. 'With Tenable AI Exposure, we're giving organizations the visibility and control they need to safely embrace the promise of generative AI without introducing unacceptable risk. This is a critical step in the evolution of exposure management.' With an agentless deployment that provides coverage in minutes, Tenable's unified AI Exposure capabilities deliver: Comprehensive AI Discovery: Unifies insights from Tenable AI Aware , scanning from AI Security Posture Management ( AI-SPM ) and continuous monitoring to discover and identify all sanctioned and unsanctioned AI usage across the enterprise environment. This provides a deep understanding of user interactions, data flows and activities that might introduce risk. Unifies insights from , scanning from AI Security Posture Management ( ) and continuous monitoring to discover and identify all sanctioned and unsanctioned AI usage across the enterprise environment. This provides a deep understanding of user interactions, data flows and activities that might introduce risk. AI Exposure Management and Prioritization: Leverages AI-SPM to help organizations identify, prioritize and manage the risk of AI exposure, including from sensitive data leakage (PII, PCI, PHI), misconfigurations and unsafe integrations with external tools. Leverages AI-SPM to help organizations identify, prioritize and manage the risk of AI exposure, including from sensitive data leakage (PII, PCI, PHI), misconfigurations and unsafe integrations with external tools. Governance and Control of AI Usage: Enforces security guardrails and organizational policies to control how AI is used, preventing risky user behaviors and mitigating novel threats such as prompt injections, jailbreaks, and malicious output manipulation. Tenable AI Exposure integrates into the Tenable One platform, providing a unified view of risk across the entire attack surface. With the combination of Tenable AI Aware, AI-SPM and the new governance features, customers will gain comprehensive capabilities to discover, manage and secure enterprise AI usage. Tenable AI Exposure is now available through a private customer preview program . General availability is expected by the end of 2025. Read more in today's blog post here .


Time of India
12 hours ago
- Business
- Time of India
Tenable expands exposure management platform to secure enterprise AI
Tenable® , the exposure management company, today announced a significant expansion of its market-leading Tenable One platform with the launch of Tenable AI Exposure , a comprehensive solution to see, manage and control the risks introduced by generative AI. Unveiled at Black Hat USA 2025 , these new capabilities provide an end-to-end approach that moves beyond discovery to include risk management and policy enforcement for enterprise AI platforms like ChatGPT Enterprise and Microsoft Copilot. As businesses race to adopt generative AI to boost productivity, they are inadvertently creating a new, complex, and often invisible frontier of exposure. Security teams lack visibility into how employees use these powerful tools, which sensitive data might be exposed, and how they could be manipulated by attackers. Tenable now offers a single, unified solution that addresses the entire lifecycle of AI security challenges. 'Simply discovering shadow AI isn't enough. A true exposure management strategy requires an end-to-end solution that lets organisations discover their entire AI footprint, manage the associated risks, and govern its use according to their policies. That's exactly what we are delivering today,' said Steve Vintz, Co-CEO and CFO, Tenable. 'With Tenable AI Exposure , we're giving organisations the visibility and control they need to safely embrace the promise of generative AI without introducing unacceptable risk. This is a critical step in the evolution of exposure management.' With an agentless deployment that provides coverage in minutes, Tenable's unified AI Exposure capabilities deliver: Comprehensive AI Discovery: Unifies insights from Tenable AI Aware, scanning from AI Security Posture Management (AI-SPM) and continuous monitoring to discover and identify all sanctioned and unsanctioned AI usage across the enterprise environment. This provides a deep understanding of user interactions, data flows and activities that might introduce Exposure Management and Prioritisation: Leverages AI-SPM to help organisations identify, prioritise and manage the risk of AI exposure, including from sensitive data leakage (PII, PCI, PHI), misconfigurations and unsafe integrations with external and Control of AI Usage: Enforces security guardrails and organisational policies to control how AI is used, preventing risky user behaviours and mitigating novel threats such as prompt injections, jailbreaks, and malicious output manipulation. Tenable AI Exposure integrates into the Tenable One platform, providing a unified view of risk across the entire attack surface. With the combination of Tenable AI Aware, AI-SPM and the new governance features, customers will gain comprehensive capabilities to discover, manage and secure enterprise AI usage.


Web Release
2 days ago
- Business
- Web Release
Tenable One Surpasses 300 Integrations, Delivering the Security Industry's Most Open Exposure Management Platform
Tenable®, the exposure management company, today announced a major new milestone as the Tenable One Exposure Management Platform now features over 300 validated integrations, making it the most open and interconnected exposure management platform on the market. This solidifies Tenable's position as the central hub for security data, analytics, and unified risk reduction, limiting the industry silos caused by fragmented visibility that have long plagued security teams. In an era where the average enterprise uses 83 different cybersecurity tools1, organizations face a chaotic and siloed view of their attack surface. This fragmentation creates dangerous blind spots that attackers exploit, while security teams waste critical time manually reconciling disparate data instead of stopping threats. Tenable One uniquely solves this challenge by serving as the essential connective tissue for the security stack. While exposure management is still a newer area of focus for most organizations, it has become clear that a robust but open platform with bi-directional partnership among vendors is essential to a preventative approach to cyber risk reduction. 'A closed-off platform isn't just an inconvenience – it's a security risk, and Tenable is leading the charge to tear down these walls,' said Eric Doerr, chief product officer at Tenable. 'Reaching over 300 integrations is a fundamental shift in cyber control. We're giving our customers the power to see everything, connect everything, and manage their exposure from a single, unified platform without having to replace the tools they already trust. This is the future of cybersecurity, and Tenable is delivering it today.' The Tenable One platform unifies data from across the technology ecosystem—including endpoint detection and response (EDR), cloud native application protection platforms (CNAPP), asset inventory, privileged access management (PAM) tools and more—to provide a single, contextualized view of risk. By ingesting and correlating third-party data, Tenable One enriches it with threat intelligence and business context that identifies blind spots, allowing teams to visualize attack paths and perform contextual analysis to cut through the noise and focus on the exposures that matter most. By seamlessly integrating with IT service management systems, communication platforms, security information and event management (SIEM) tools, and patch management tools, Tenable One doesn't just provide insight—it drives action. The platform automates remediation workflows and streamlines cross-team collaboration, dramatically reducing the time it takes to investigate and close exposures. Two-thirds of Tenable One customers — including many of the most security-mature organizations — already leverage Tenable integrations. This open ecosystem delivers measurable impact, with some Tenable customers reporting up to 10x greater visibility and 75% less time spent aggregating data, freeing teams to focus on preemptive, risk-based operations. To further accelerate integration development and expand ecosystem reach, Tenable is introducing a universal integrations connector for the Tenable One platform this fall. This flexible, self-service framework enables customers and partners to easily build and maintain their own integrations – securely connecting custom applications and security tools to Tenable One without waiting on vendor roadmaps. It reinforces Tenable's commitment to openness while empowering organizations to tailor the platform to their unique environments. What Partners Are Saying 'Effective security requires collaboration, and our partnership with Tenable exemplifies this approach in action. By integrating Tenable One's rich exposure data directly into Splunk Cloud Platform, Splunk Enterprise Security, and SOAR, we are providing our joint customers with unparalleled context to detect and respond to threats faster than ever before. The breadth of Tenable's ecosystem is a massive force multiplier for security operations teams.' – Gretchen O'Hara, Vice President, Worldwide Channels & Alliances, Splunk 'The traditional boundaries between security and operational teams have blurred, and meaningful risk reduction demands coordinated action across the business. The deep integration between Tenable One and the ServiceNow AI Platform helps close the gap between vulnerability identification and enterprise-scale remediation. Together, we're enabling customers to accelerate response and embed risk reduction into the fabric of how work gets done, ensuring critical exposures are addressed before they can be exploited.' – Lou Fiorello, GVP and GM of Security and Risk Products, ServiceNow 'Compromising privileged access remains the primary goal of cyberattackers, and understanding exposure is critical. The integration between the CyberArk Identity Security Platform and Tenable One gives our joint customers a powerful advantage. With a unified approach that combines deep vulnerability insights with intelligent privilege controls, organizations can pinpoint risks to their most sensitive accounts and act swiftly to secure them, preventing privilege escalation and stopping breaches.' – Joanne Wu, Vice President, Business Development, CyberArk To learn more about the Tenable One platform and its vast ecosystem of integrations, visit 1 IBM report: Capturing the cybersecurity dividend: How security platforms generate business value, January 2025


Tahawul Tech
30-07-2025
- Business
- Tahawul Tech
Tenable named a leader in Unified Vulnerability Management Solutions
Tenable®, the exposure management company, recently announced it has been named a Leader in 'The Forrester Wave™: Unified Vulnerability Management, Q3 2025.' Tenable ranked highest of any evaluated vendor in the Strategy category and received the highest possible scores (5.0) across seven different criteria, including Vision and Roadmap. Forrester defines Unified Vulnerability Management as 'a solution that serves as the primary book of record for all organisational vulnerabilities and improves and facilitates remediation workflows.'1 The report evaluated 10 vendors' unified vulnerability management capabilities based on 19 different criteria. Tenable's rank as a leader is based on Forrester's analysis of its Strategy and Current Offering, the Tenable One Exposure Management Platform, which received the highest possible score in seven different criteria, including: Vision: Tenable credits its 5.0 score to its market momentum and sharp focus on changing the landscape for proactive security teams. The Forrester report notes, 'Tenable continues to extend its established vulnerability management offerings into exposure management with its Tenable One platform'. Tenable credits its 5.0 score to its market momentum and sharp focus on changing the landscape for proactive security teams. The Forrester report notes, 'Tenable continues to extend its established vulnerability management offerings into exposure management with its Tenable One platform'. Breadth of Assets Supported: Tenable credits this score to its unmatched visibility across IT, cloud, OT, identity, and more—through both native discovery and seamless third-party data ingestion. Tenable credits this score to its unmatched visibility across IT, cloud, OT, identity, and more—through both native discovery and seamless third-party data ingestion. Exposure Assessment and Prioritisation: Tenable attributes this score to its holistic organisational and contextual perspective of risk based on threat impact and attack path modelling across multiple environment types. Tenable attributes this score to its holistic organisational and contextual perspective of risk based on threat impact and attack path modelling across multiple environment types. Reporting: The report states, '[Tenable's] reporting stands out with ready-for-presentation reports that include trending and benchmarks.' The report states, '[Tenable's] reporting stands out with ready-for-presentation reports that include trending and benchmarks.' Benchmarking: Tenable attributes its score to its customisable peer-to-peer analyses across industry, geography and more with relevant information to their organisation. According to Forrester's report, 'Tenable's vision considers how proactive security teams will need new strategies to address attackers' evolving techniques over the next three to five years. Its strategy is complemented by a strong roadmap that includes expanding remediation and response capabilities, with a significant focus on remediation orchestration. Tenable's flexible asset-ratio-based pricing model allows customers to scale Tenable One to select different assets to be monitored'. The Forrester report also acknowledged the company 'continues to extend its established vulnerability assessment offerings into exposure management with its Tenable One platform'. 'As attackers grow more sophisticated, organisations need unified visibility and risk-based prioritisation to stay ahead', said Eric Doerr, Chief Product Officer, Tenable. 'Unified vulnerability management is the essential first step toward effective exposure management. To us, this recognition affirms Tenable's prowess in helping customers move from fragmented data to a cohesive, risk-based approach. With Tenable One, we're giving them the clarity and confidence to reduce risk faster and more effectively'. More information on Tenable One is available at: To read the full report, visit: 1 The Unified Vulnerability Management Solutions Landscape, Q1 2025, Forrester Research, Inc. Forrester does not endorse any company, product, brand, or service included in its research publications and does not advise any person to select the products or services of any company or brand based on the ratings included in such publications. Information is based on the best available resources. Opinions reflect judgment at the time and are subject to change. For more information, read about Forrester's objectivity here . Image Credit: Tenable


Web Release
24-06-2025
- Web Release
Tenable Research Finds Rampant Cloud Misconfigurations Exposing Critical Data and Secrets
Tenable®, the exposure management company, today released its 2025 Cloud Security Risk Report, which revealed that 9% of publicly accessible cloud storage contains sensitive data. Ninety-seven percent of such data is restricted or confidential, creating easy and prime targets for threat actors. Cloud environments face dramatically increased risk due to exposed sensitive data, misconfigurations, underlying vulnerabilities and poorly stored secrets – such as passwords, API keys and credentials. The 2025 Cloud Security Risk Report provides a deep dive into the most prominent cloud security issues impacting data, identity, workload and AI resources and offers practical mitigation strategies to help organizations proactively reduce risk and close critical gaps. Key Findings From The Report Include: ? Secrets Found in Diverse Cloud Resources, Putting Organizations at Risk: Over half of organizations (54%) store at least one secret directly in Amazon Web Services (AWS) Elastic Container Service (ECS) task definitions — creating a direct attack path. Similar issues were found among organizations using Google Cloud Platform (GCP) Cloud Run (52%) and Microsoft Azure Logic Apps workflows (31%). Alarmingly, 3.5% of all AWS Elastic Compute Cloud (EC2) instances contain secrets in user data — major risk given how widely EC2 is used. ? Cloud Workload Security Is Improving, But Toxic Combinations Persist: While the number of organizations with a 'toxic cloud trilogy' – a workload that is a publicly exposed, critically vulnerable, and highly privileged – has decreased from 38% to 29%, this dangerous combination still represents a significant and common risk. ? Using Identity Providers (IdPs) Alone Doesn't Eliminate Risk: While 83% of AWS organizations are exercising best practices in using IdP services to manage their cloud identities, overly-permissive defaults, excessive entitlements, and standing permissions still expose them to identity-based threats. 'Despite the security incidents we have witnessed over the past few years, organizations continue to leave critical cloud assets, from sensitive data to secrets, exposed through avoidable misconfigurations,' said Ari Eitan, Director of Cloud Security Research, Tenable. 'The path for attackers is often simple: exploit public access, steal embedded secrets or abuse overprivileged identities. To close these gaps, security teams need full visibility across their environments and the ability to prioritize and automate remediation before threats escalate. The cloud demands continuous, proactive risk management, and not reactive patchwork.' The report reflects findings by the Tenable Cloud Research team based on telemetry from workloads across diverse public cloud and enterprise environments, analyzed from October 2024 through March 2025. To download the report today, please visit: