1. Introduction The abuse of vulnerable drivers has become an increasingly common technique adopted by attackers to bypass modern security controls. This attack pattern, commonly referred to as Bring Your Own Vulnerable Driver (BYOVD), consists of loading legitimately signed but vulnerable drivers into the operating system in order to gain kernel-level privileges, disable security products,…
Read MoreImportant: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.48 Summary The vulnerabilities include two SQL injections, an Arbitrary file deletion, a Privilege Escalation via authtype API manipulation, an Unauthorized debug mode…
Read MoreFix SLM Reports generation with Object Filter on service custom variables. We have resolved an issue that caused SLM Reports generation to fail when the report was based on a contract whose Object Filter contained expressions on service custom variables (e.g., service.vars.service_system_service~true). The error prevented users from generating or viewing SLM reports for contracts using…
Read MoreCustomer feedback provides insights that operational metrics alone cannot capture. Jira Service Management has long offered built-in CSAT surveys, automatically collecting satisfaction ratings through a simple star-based mechanism when tickets are resolved. With the introduction of Native surveys, Atlassian extends these capabilities with a more flexible survey builder supporting multiple questions and richer feedback. While…
Read MoreImportant: Grafana security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the grafana packages is now available for NetEye 4. Security Fix for NetEye 4.48 Summary A Grafana Editor can overwrite a dashboard not owned by them to acquire admin permission on that specific dashboard. The user…
Read MoreTL;DR When designing GDPR-conscious AI workloads in Azure, the model name is not enough. The version matters, the region matters, the deprecation date matters, and the deployment type matters, too. For EU-bound workloads, the practical question is often this: which exact model versions can I deploy in European Azure regions using Data Zone Standard (DataZoneStandard)?…
Read MoreIn a previous post, I wrote about the challenges of building a public GitHub organization correctly: The need for structure, consistency, and enforcement rather than relying on memory. What I didn’t cover was how we actually solved it. The short answer: We treat the organization as infrastructure. Repositories, teams, branch protection rules, labels, permissions, all…
Read MoreToday, most digital identity systems are built around a Central Identity Provider. That provider signs users in, stores key identity data, and often sits in the middle of every trust relationship between people, applications, and organizations. This model works, but it also creates several growing problems: This article explains: The Problems with the Current Model…
Read MoreAutomation is now part of everyday operations. It helps teams move faster, cut down on manual work, and keep processes consistent. But automation only works well if it can be trusted. When something breaks in the background and nobody notices, the consequences can spread quickly. That’s why alert notifications matter. They add a layer of…
Read MoreScenario Secure Boot was always a long bet on the idea that the PC boot chain could be made boring, predictable, and resistant to tampering. When UEFI replaced the old BIOS model, Microsoft and the PC industry moved toward a world where firmware would check signatures before handing control to bootloaders, option ROMs, and operating…
Read MorePractical lessons learned from real-world alert routing, automation, and integrations Introduction As mentioned at the end of Part 1, let’s continue exploring practical use cases and real‑world solutions for Jira Operations alert handling and enrichment. NetEye, Icinga, and Jira Ops can significantly improve monitoring and incident response workflows – but the overall setup can become…
Read MoreFix: monitoring links from the Event Overview When opening a link from the Event Overview page, the monitoring URL was supposed to be translated into the corresponding IcingaDB link. The translation was only handled on a simple click, though, so opening the link in a new tab or window (middle-click, Ctrl/Cmd+click, context menu) left the…
Read MoreImprove visibility of Feature command state icons Feature command state icons and captions were difficult to see against the white background in the UI. To improve readability and accessibility, we updated the icon and caption colors to provide stronger contrast and better visibility. List of updated packages To solve the issue mentioned above, the following…
Read MoreRarely has a title been more fitting: Transform metrics into alerts. It’s not just a description of what the system does – it’s also the exact name of the Elastic tool that makes it possible. Transforms, in their technical meaning, are the component we use to do precisely this: take a continuous stream of raw…
Read MoreIn cybersecurity, the gap between what we think we can detect and what we actually detect is often wider than we expect. Tools are configured, rules are written, playbooks are drafted, and yet, when a real attack unfolds, the telemetry is incomplete, the alerts are noisy, and the response is slower than it should be….
Read More