Aggregator

Flipper Devices has unveiled Flipper One, a modular Linux cyberdeck aimed at becoming a fully open, mainline-first ARM platform for hackers, researchers, and makers The company says the new device is not a successor to Flipper Zero, but a separate Layer 1 product built for IP networking, high-performance computing, and expandable hardware experimentation. At the […]

The post Flipper Unveils New Flipper One Modular Linux Cyberdeck appeared first on Cyber Security News.

The days of rigid, vendor-locked security stacks are over. The Tenable One Open Connector amplifies Tenable One’s extensive capacity to ingest and consolidate third-party security data, giving you more complete visibility across your attack surface, so you can keep using your preferred cybersecurity tools.

1. The Tenable One Open Connector enables you to integrate data from previously unsupported sources of security data, eliminating silos and providing a more unified view of cyber risk.
2. Break free from vendor lock-in by ingesting and mapping data from the tools that work best for your business.
3. Automate data ingestion to ensure your exposure management decisions always use up-to-date data insights.

If you’re running a security organization, you likely struggle with this persistent and disruptive problem: Security data is spread across too many disparate tools, making it nearly impossible to get a clear, unified picture of your organization’s overall risk exposure.

This is one of the fundamental challenges that an effective exposure management program addresses.

One of the primary goals of the Tenable One Exposure Management Platform is to serve as the central hub for unified risk reduction across your entire environment, including on-premises assets, cloud workloads, IoT devices, OT systems, AI tools, identity platforms, and more. With Tenable One, you can break down data-security silos that heterogeneous tools create and unify fragmented visibility into one place.

Earlier this year, Tenable introduced Tenable One Connectors. To date, we have more than 300 of these validated integrations, which give security teams the ability to integrate these tools and consolidate their data into Tenable One. These custom-built connectors have established Tenable One as one of the most open and interconnected exposure management platforms on the market.

Now, we are delivering the final piece of the puzzle with the launch of the Tenable One Open Connector.

By expanding your reach beyond the 300-plus official integrations, the Tenable One Open Connector allows you to ingest data from other unsupported tools, spreadsheets, and even homegrown internal systems. This includes everything from manual pentesting results and specialized security tools to custom internal configuration-management databases (CMDBs) and AI-driven security audits.

Unified visibility across your attack surface provides context to see how individual risks relate to one another. What may look like a low-priority issue on its own can become a critical weakness when linked to others, forming dangerous attack paths for adversaries. This relationship-driven view allows you to separate real threats from background noise, prioritize with confidence, and focus on the exposures that pose real risk to your business’s operations, revenue, and reputation. This is what exposure management is all about: building a security program that sees the whole picture, not just isolated pieces.

The Tenable One Open Connector redefines how you manage data across your attack surface. By unifying your security data into a single source of truth, it gives your security team the visibility and control they need to see more, act faster, and work smarter. Here’s how:

• Get a more complete view of risk
  The Tenable One Open Connector empowers you to bring more of your security data together into one unified, contextual view of cyber risk. With this more expansive visibility, you can perform a more holistic risk analysis and accurately prioritize to reduce critical exposures across your entire attack surface.
   
• Unlock an open, flexible platform for your security stack
  A rigid, vendor-locked security stack hampers your team’s ability to assess cyber risk. At Tenable, we believe you should use the security tools that work best for your business, instead of having to make compromises driven by vendor restrictions. The Tenable One Open Connector gives you that freedom. As your priorities and tools evolve, the Tenable One Open Connector evolves with you, ensuring your heterogeneous toolset doesn’t hold your exposure management strategy back.
   
• Act faster with automated, always-current data
  The Tenable One Open Connector helps you base your exposure management decisions on the latest, most complete data — without being limited to manual updates. If you rely only on manual uploads, your data will likely become outdated, impacting your ability to make accurate risk assessments. Continuous, automated insights empower your team to act faster, reduce risk more effectively, and confidently demonstrate security outcomes to your business.
   
• Tailor your data mapping for deeper insights
  Instead of being locked into rigid, vendor-defined field mappings, the Tenable One Open Connector gives you complete control over data organization within Tenable One. This flexibility allows you to segment data in ways that best fit your needs, leading to more precise data organization and helping you conduct tailored analysis. 

The Tenable One Open Connector is powerful yet simple, so you can get your security data into Tenable One in minutes.

• Automated uploads: Fully automate the ingestion process by establishing a seamless connection between Tenable One and an S3 bucket in your cloud storage. As source files refresh, Tenable One automatically ingests new data for continuous, up-to-date visibility without manual intervention. In addition, you also have the option to manually upload files, such as CSV, Excel, or ZIP files.
   
• Flexible data mapping: Control exactly how the system organizes your data. Map file fields to Tenable One fields, combine multiple fields into one, or split a single field across several, so you have ample flexibility to structure and analyze your data precisely.
   
• Automated data correlation: Automatically deduplicate, correlate, and normalize all incoming data for accurate, consistent comparisons across your entire dataset.

Watch the Tenable One Open Connector guided demo to see just how easy it is to connect a new data source.
 

1. What is the Tenable One Open Connector?

The Tenable One Open Connector is the newest addition to the Tenable One ecosystem, specifically designed to further break down data silos in your security stack. While Tenable One Connectors focus on pre-configured custom integrations with specific third-party products, the Open Connector allows you to capture and integrate data from previously out-of-reach sources — including internal systems, niche third-party tools, and spreadsheets — directly into Tenable One.  

2. Why do I need the Tenable Open Connector?

Fragmented data creates massive blind spots, and attackers thrive in the shadows between those silos. Adversaries don’t view your environment as a collection of separate domains or disconnected tools. They see it as one interconnected map of assets. With data scattered among tens or even hundreds of siloed tools, you struggle to see the critical connections and lateral paths that an attacker would exploit to move through your environment. To stay ahead of today’s threats, especially those boosted by AI, you must adopt the attacker’s perspective. The Tenable One Open Connector gives you clarity to identify exposures and block attacks before they ever have a chance to start.

3. What is the value of the Tenable One Open Connector?

The Tenable One Open Connector delivers comprehensive flexibility and visibility to your security operations. You can perform a more holistic risk analysis by unifying disparate data sources that were once impossible to correlate. Beyond just visibility, the connector offers flexible data mapping to segment and organize your information to fit your specific business needs, rather than getting locked in a rigid, pre-defined template. You also get true independence from vendor integration roadmaps, so you can use the tools that work for your business and integrate them into Tenable One on your own terms.

Ready to break down even more data silos and achieve a truly unified view of risk? Request a demo of Tenable One today.

A well-known botnet is now targeting cloud environments in a more calculated way than before. P2PInfect, a Rust-written peer-to-peer malware active since mid-2023, has been observed compromising Kubernetes clusters by breaking into Redis instances left exposed to the internet. The campaign marks a notable shift, moving from simple server infections to persistent footholds inside managed […]

The post P2PInfect Botnet Compromises Kubernetes Clusters Through Exposed Redis Instances appeared first on Cyber Security News.

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

• CVE-2025-34291 Langflow Origin Validation Error Vulnerability
• CVE-2026-34926 Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria. 

You must login to view this content

You must login to view this content