Tanium, a leading provider of security and IT operations solutions, has announced major enhancements to its Tanium Software Bill of Materials (SBOM). The updated SBOM now includes Common Vulnerability and Exposures (CVE) information, providing organizations with a comprehensive view of the vulnerabilities present in their software components.
Software supply chain attacks have been on the rise in recent years, fueled by the growing reliance of organizations on third-party suppliers and service providers. With the increasing complexity of software applications, it has become crucial for organizations to identify and remediate emerging and zero-day vulnerabilities. Tanium’s SBOM enables organizations to do just that, by helping them find, prioritize, and address vulnerabilities in the software components of their applications.
According to Nic Surpatanu, CPO at Tanium, over ninety-two percent of applications contain open-source libraries that may contain hidden vulnerabilities. These vulnerabilities, such as those found in popular libraries like Log4j, OpenSSL, or Struts, are often exploited by attackers. In response, federal agencies, cyber insurance providers, and other organizations are increasingly requiring an SBOM for all software utilized. Tanium’s SBOM is the only solution on the market that allows organizations to identify and remediate software supply chain vulnerabilities in production environments, empowering DevOps and SecOps to mitigate risks effectively.
Apart from the challenges posed by open-source vulnerabilities, organizations also face the evolving landscape of processor architecture. The use of ARM-based servers has grown significantly in recent years and is expected to continue growing. To address this trend, Tanium introduced support for endpoints running ARM-based processors from Apple and Amazon in 2022. Now, they have expanded their support to include additional ARM-based endpoints running Oracle Linux, RedHat, and Windows 11. This move by Tanium ensures that organizations can effectively manage the security of their ARM-based devices, further futureproofing their security infrastructure.
According to Vivek Bhandari, VP of product marketing at Tanium, the use of ARM-based processors is expected to continue growing due to their better performance and lower energy usage compared to x86-based processors. Tanium’s enhancements in supporting ARM-based endpoints allow customers to have complete visibility and management of their endpoints on a unified platform, moving away from disparate point solutions.
In addition to these updates, Tanium has also introduced a range of Risk & Compliance enhancements. These enhancements aim to improve the efficiency and efficacy of vulnerability and risk management programs while reducing the reliance on multiple point solutions. Some of the key enhancements include ESXi support, which allows security teams to perform compliance and vulnerability assessments on virtual servers more efficiently. Tanium’s vulnerability assessments now include CISA known exploits and vulnerabilities (KEV) information, enabling organizations to prioritize high-risk CVEs for remediation without manual analysis. The Risk and Compliance solution also offers exception management, allowing organizations to create exceptions for compliance and vulnerability findings with valid reasons or expiration dates. Lastly, a new page within Tanium Benchmark provides customers with a clear visualization of the health of their key operations and security metrics.
As organizations continue to undergo digital transformation, the need for comprehensive endpoint visibility, control, and remediation becomes more critical than ever. Tanium’s latest enhancements address these needs, enabling organizations to mitigate cyber risks effectively in real-time. By providing an SBOM that includes CVE information and expanding support for ARM-based endpoints, Tanium empowers organizations to proactively manage their software supply chain and secure their digital infrastructure. With the added Risk & Compliance enhancements, organizations can streamline their vulnerability and risk management programs, enhancing their overall security posture.