Tenable launches ExposureAI to help enterprises prevent cyberattacks with Gen AI

Tenable, the Exposure Management company, has unveiled ExposureAI, a set of new generative AI capabilities and services integrated into the Tenable One Exposure Management Platform. 

Tenable One seamlessly brings together vulnerability management, external attack surface management (EASM), identity security, web application and API scanning, and cloud security data. This integrated approach helps identify weaknesses proactively, preventing potential exploitation by attackers. It continually monitors various environments, ensuring the widest coverage for exposure management. 

In addition, the company has introduced the Tenable Exposure Graph, a scalable data lake powered by Snowflake. This data platform consolidates an impressive volume of over 1 trillion unique exposures, IT assets, and security findings across IT, public cloud, and OT environments. 

The platform has three primary abilities that Tenable calls Search, Explain, and Action. In the announcement, Tenable explained that Search lets security teams ask questions using natural language searches. This helps them analyze assets and vulnerabilities in their environments, grasp important contexts, and decide which fixes to prioritize. 

Explain gives advice on how to address weaknesses in the customer's setup. It does this by showing a clear analysis of complex attack paths, specific assets, or security discoveries. 

On the other hand, Action provides valuable insights and suggestions for actions. These recommendations are based on the most critical problems and vulnerabilities found in the customer's environment. 

“For years, Tenable has used its market-leading vulnerability management data and applied AI techniques to help organizations prioritize vulnerabilities based on true risk to the business. AI is a part of our DNA,” said Glen Pendley, Chief Technology Officer, Tenable. “Now we’re using generative AI to put more power than ever in the hands of security teams to inform their exposure management programs and root out cyber risk wherever it exists.” 

Recently Tenable has had a spat with Microsoft. The security company reported that Microsoft lacks transparency and has irresponsible security practices. Tenable's chairman and CEO, Amit Yoran, wrote an open letter on LinkedIn to reveal Microsoft's irregularities. 

In March, the Tenable Research Team found a critical problem in Microsoft's Azure platform, allowing unauthorized access to steal sensitive data. Although Microsoft was informed about the vulnerability, it took them more than 90 days to release a partial fix. 

Tenable argues that this security issue has made several customers, including a bank, susceptible to cyberattacks. Cloud providers follow a shared responsibility model, which is affected when vendors don't promptly inform customers about problems and apply solutions.