#NetworkMonitoring

Zeek Security Tool Vulnerabilities Allow ICS Network Hacking

by

March 5, 2024 at 07:06AM A recent US CISA advisory disclosed critical and high-severity vulnerabilities in the Zeek network security monitoring tool’s Ethercat plugin, impacting ICS environments. The vulnerabilities, tracked as CVE-2023-7244, CVE-2023-7243, and CVE-2023-7242, could allow threat actors to execute attacks. The researcher, Cameron Whitehead, identified these vulnerabilities, impacting over 10,000 Zeek deployments globally. … Read more

Webinar Tomorrow: The Active Threat Landscape in the Cloud

by

February 21, 2024 at 10:45AM Live Webinar: Join SecurityWeek and Lacework on Thursday, February 22nd at 1PM ET to learn about active threats targeting cloud deployments and practical strategies to mitigate them. Gain insights into AI and ML in threat detection, user behavior analytics, and continuous monitoring of network traffic and user activities. Key Takeaways … Read more

New NCCoE Guide Helps Major Industries Observe Incoming Data While Using Latest Internet Security Protocol

by

February 1, 2024 at 05:44PM Companies in finance and health care need to adopt TLS 1.3 for cyber security, but it complicates data audits. NIST released guide SP 1800-37 to help implement TLS 1.3 and conduct network monitoring and auditing securely. It addresses challenges, offering techniques for key access and securing data. NIST is seeking … Read more

SolarWinds slams SEC lawsuit against it as ‘unprecedented’ victim blaming

by

January 29, 2024 at 03:55PM SolarWinds, victim of Russian cyber-attack, accuses SEC of unfair treatment. The company argues the watchdog’s charges are baseless and seek to impose unreasonable cybersecurity disclosure requirements. SolarWinds maintains it made proper and accurate disclosures before and after the attack. The SEC alleges that SolarWinds misled investors about its security practices, … Read more

Cacti Monitoring Tool Spiked by Critical SQL Injection Vulnerability

by

January 9, 2024 at 12:38PM A critical vulnerability in Cacti’s web-based open source framework for monitoring network performance allows attackers to disclose its entire database. Exploiting this, along with a previously disclosed vulnerability, could lead to remote code execution. The severity of this issue is rated 8.8 out of 10. It’s not widespread but poses … Read more