We fixed a bug in the NetEye in which El Proxy would use an empty string as previous hash when, upon restart, it could not find the last signed log in Elasticsearch, resulting in a blockchain corruption. Updated packages For NetEye 4.31 we updated the following packages:
Read More
Double extortion ransomware attacks have reached very high numerical values. One of the key elements, when suffering such an attack, concerns the negotiation that can be initiated (not always!) with the ransomware gang. The analysis, carried out by the SEC4U team, of hundreds of negotiations makes it possible to apply a scientific approach to this…
Read MoreIn our previous post about Exposure Assessment, we described how we outline a target’s infrastructure using SATAYO, our Cyber Threat Intelligence (CTI) platform. This means that we collected the identifiers of all the target’s machines, i.e., their host names and IP addresses. Now it’s time to understand which machines could allow an attacker to gain…
Read MoreWe updated GLPI to 10.0.10. This new version introduces a lot of security fixes. The update is strongly recommended. Furthermore we fixed a bug for which the InfluxDB secure install script could have failed to run some queries due to a numeric database name. Updated packages For NetEye 4.31 we updated the following packages:
Read MoreToday I want to report on my first experience with the new Alyvix integration in NetEye. At the same time as NetEye version 4.30, another revised update of the Alyvix module was released for NetEye. And just recently in August I had my first opportunity to install and operate this revised module together with its…
Read MoreDo you ever need to reboot or do maintenance on your Windows Server? Then if the server is monitored by NetEye, you’ll surely want to mark it in downtime so as not to have notifications sent out for problems arising due to maintenance, and/or to be able to have the correct SLA marked for your…
Read MoreWe fixed a bug in the NetEye upgrade that regards the update of the Elastic Stack packages in cluster environments. The bug occurred in case of encountered errors and resulted in the procedure finishing the steps instead of instantly aborting the operations. Now is possible to update the nodes of the NetEye cluster without hesitations….
Read MoreWe fixed a bug for which the generic El Proxy composable index templates in Elasticsearch, so those not matching a particular Beat, did not include the ECS mappings and this could have led to wrongly indexed data. After the fix, the templates include by default the ECS 8.0.0 mappings. Updated packages For NetEye 4.31 we…
Read MoreThe event dedicated to the NetEye community is back again! A taste of innovation! Discover the new trends in monitoring and service management seasoned with a pinch of Cybersecurity. Taste the nuances of the various successful NetEye projects and be guided by the scent of curiosity for the latest technological trends. Appointment on 28th of…
Read MoreWe fixed a bug in the NetEye Upgrade Manager that caused the procedure to possibly use the wrong repository metadata when understanding which NetEye *-configurator packages need to be installed to support the upgrade and update procedures. Updated packages For NetEye 4.30 we updated the following packages:
Read MoreWe fixed a bug in the NetEye Upgrade Manager that caused the procedure to possibly use the wrong repository metadata when understanding which NetEye *-configurator packages need to be installed to support the upgrade and update procedures. Updated packages For NetEye 4.31 we updated the following packages:
Read MoreOn our OpenShift cluster we use pulp3 as the repository manager. One recent task we had to do was to add a certificate before we could expose the repository over TLS. Our IT department provided us with the certificate in .pfx format. Following this guide for converting the certificate to a format usable by OpenShift,…
Read MoreCurrently, deploying an Icinga 2 Agent on a Linux system can be intricate, given the substantial variations in the process across different releases or OS families. For instance: Fortunately, there’s no need to develop and maintain a custom script to manage these diverse scenarios. We can leverage the readily available Ansible Plugins for this purpose….
Read MoreAfter a first semester full of great opportunities (many colleagues like to say so), the wheels have started turning again for NetEye Extension Packs. Now, a big evolution is beginning: in the near future, NEP will encompass the entire NetEye infrastructure, meaning it will also configure and manage NetEye Satellites. To do so, the current…
Read MoreWe fixed a bug in El Proxy that caused the verification result sent to the Monitoring to be filled with logs and difficult to read. Now a simplified report with only important information is sent by El Proxy to the Monitoring. Updated packages For NetEye 4.31 we updated the following packages: To correctly apply the…
Read More