Blog Entries

24. 05. 2024 Daniel Degasperi Blue Team, SEC4U

How To Detect Chromium Browser Stealer With Elastic

In this blog, a solution for detecting potential infostealers targeting Chromium-based browsers will be explained and proposed, taking a cue from the research exposed by Google’s Chrome Security Team (Detecting browser data theft using Windows Event Logs). Obviously a solution using Elastic 🙂 ! What is an Infostealer (in a nutshell) ? In the realm…

Read More
24. 05. 2024 Alessandro Valentini DevOps

OpenShift: how to check and reset Ceph Storage in warning state

Sometime it may happen, in particular after a cluster update or hardware issues, to find the Storage in warning state on openshift. The first thing to do is to check what is wrong with your cluster: sometimes you may have a real issue, in other case may be just a temporary problem which is already…

Read More
24. 05. 2024 Mirko Ioris SOCnews

SOC News | May 24 – Patch Now this Veeam Critical Vulnerability

On May 21, Veeam published details about four different vulnerabilities detected in their product Veeam Backup Enterprise Manager (VBEM). One of them is critical and allows an unauthenticated attacker to log in to the Veeam Backup Enterprise Manager web interface as any user. CVE Number CVSS Score EPSS Score CVE-2024-29849 9.8 (Critical) 0.04% (Low) CVE-2024-29850…

Read More
23. 05. 2024 Marco Berlanda Bug Fixes, NetEye

Bug Fixes for NetEye 4.35

GLPI logging sensitive data We fixed some bugs related to the GLPI where sensitive data were incorrectly logged during log-in and log-out procedures. Updated packages We updated the following packages:

Read More
22. 05. 2024 Alessandro Taufer Bug Fixes, NetEye

Bug Fixes for NetEye 4.34

RPM Mirror We fixed some bugs related to the NetEye rpmmirror: Updated packages We updated the following packages: Post installation steps After installing the neteye-pulp3-mirror package you should re-run the setup of the rpmmirror ( neteye rpmmirror setup ) to make the bugfixes effective.

Read More
21. 05. 2024 Alessandro Taufer Bug Fixes, NetEye

Bug Fixes for NetEye 4.35

RPM Mirror We fixed some bugs related to the NetEye rpmmirror: Module Audit Log We also fixed another bug in the audit log module that did not allow correct display in environments with many logs. Updated packages We updated the following packages: Post installation steps After installing the neteye-pulp3-mirror package you should re-run the setup…

Read More
17. 05. 2024 Mattia Codato Development, DevOps, NetEye

Boosting NetEye CI Speed: Test Parallelization

In a previous blog post, we looked at how we sped up certain stages of the NetEye pipeline through parallelization. This boost not only lifted team spirits but, more importantly, ramped up the pace of delivering new features and bug fixes, giving everyone the motivation to keep enhancing the pipeline across different stages. In another…

Read More
16. 05. 2024 Mirko Ioris SOCnews

SOC News | May 16 – Data stolen from SYNLAB published on the Dark Web

SYNLAB, European leader in medical diagnostic services, was the victim of a cyber attack last April. The compromised infrastructure is the one that runs Italians clinics only, other countries were not affected. In early May, ransomware group BlackBasta claimed responsibility for the attack, saying it had stolen 1.5TB of sensitive medical data from Italian citizens….

Read More
15. 05. 2024 Marco Berlanda Bug Fixes, NetEye

Bug Fixes for NetEye 4.35

We fixed a few bugs in Tornado: Updated packages We updated the following packages:

Read More
09. 05. 2024 Giuseppe Di Garbo NetEye

How to Customize NetEye Reports for Your Brand

In this blog post, we’ll explore the power of custom branding in NetEye reports. The reporting module offers the ability to filter specific hosts and services while also enabling the configuration of custom thresholds to visually emphasize unmet SLAs. Users have the flexibility to generate reports manually or automatically, such as on a weekly or…

Read More
08. 05. 2024 Elena Valgoi Atlassian, Knowledge Management, Service Management

Atlassian News ~ team’24 Edition

News from Las Vegas #wewerethere A lot is going on in the Atlassian world and a lot of news was announced in the past days during Team ’24, an annual conference held in Las Vegas🎉 All the recorded sessions can be found here, …but if you want a quick summary of all the news, you’re…

Read More
07. 05. 2024 Gianluca Piccolo Bug Fixes, NetEye

Bug Fixes for NetEye 4.35

We fixed a bug in the Logrotate configuration for GLPI that prevented the logs to be compressed and archived. Updated packages We updated the following packages:

Read More
06. 05. 2024 Tobias Goller Unified Monitoring

QUIC, What’s That?

As you may know, I do ntopng consulting, and support companies in their implementation of ntop solutions. For some time now, ntopng users have noticed a high amount of QUIC traffic in their respective networks. Most people don’t really know what QUIC is, which is why I’d like to take this as an opportunity to…

Read More
06. 05. 2024 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.35

We fixed a bug in the neteye update and neteye upgrade commands that was causing the NetEye default Logstash plugins to be installed from the Internet on passive cluster nodes. In particular this was causing the commands to fail in case these nodes did not have access to rubygems.org. Updated packages We updated the following…

Read More
06. 05. 2024 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.34

We fixed a bug in the neteye update and neteye upgrade commands that was causing the NetEye default Logstash plugins to be installed from the Internet on passive cluster nodes. In particular this was causing the commands to fail in case these nodes did not have access to rubygems.org. Updated packages We updated the following…

Read More

Archive