Blog Entries

19. 05. 2022 Mattia Codato ctf-writeups, Development

Cyber Apocalypse CTF 2022 – Red Island Writeup

The Cyber Apocalypse CTF is back with the 2022 edition. It’s a Jeopardy-style competition organized by Hack The Box and is open to everyone. Together as a security-focused guild (a concept taken from the Spotify model) we here at Würth Phoenix participated in this challenge and in particular I focused on the web challenges. After…

Read More
18. 05. 2022 Massimo Giaimo Blue Team

Correlation between most exploited CVEs and detection rules

On May 12th, the CSIRT (Computer Security Incident Response Team – Italia) published a list of the CVEs most exploited by threat actors. The list also contains an indication of the TTPs used by these attackers. The objective of this article is to make available information relating to detection rules that are already available within…

Read More
17. 05. 2022 Massimo Giaimo Blue Team, SEC4U

A look inside Dark Angels negotiation and some details about their TTP

Starting from a static analysis done by Cyble Research Lab (https://blog.cyble.com/2022/05/06/rebranded-babuk-ransomware-in-action-darkangels-ransomware-performs-targeted-attack/) of ransomware called Dark Angels, we gained evidence about the activities of the Dark Angels ransomware group. An OSINT analysis carried out by our Würth Phoenix team helped to reach the Ransom Operator blog and one of the victim pages. Based on the evidence…

Read More
17. 05. 2022 Mattia Codato Bug Fixes, NetEye

Bug Fixes for NetEye 4.22

We fixed a bug that was setting an incorrect target version during the upgrade. For NetEye 4.22 we updated the following package: neteye-upgrade-manager to version 0.12.24-1

Read More
11. 05. 2022 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.23

We fixed a bug which could cause Icinga 2 to not behave correctly when the Smart Director was enabled. This bug was occurring when Icinga 2 started before the DRBD of Icinga Web 2 was started. For NetEye 4.23 we updated the following packages: icinga2, icinga2-autosetup, icinga2-bin, icinga2-ido-mysql, icinga2-neteye-config, icinga2-resources, icinga2-common, icinga2-selinux to version 2.11.9_neteye1.48.3-1

Read More
11. 05. 2022 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.22

We fixed a bug which could cause Icinga 2 to not behave correctly when the Smart Director was enabled. This bug was occurring when Icinga 2 started before the DRBD of Icinga Web 2 was started. For NetEye 4.22 we updated the following packages: icinga2, icinga2-autosetup, icinga2-bin, icinga2-ido-mysql, icinga2-neteye-config, icinga2-resources, icinga2-common, icinga2-selinux to version 2.11.9_neteye1.48.3-1

Read More
11. 05. 2022 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.23

In Tornado we lowered the default values for the retries of the Smart Monitoring action. The previous default values was leading to a too long waiting time during the block of Smart Monitoring actions performed before the Icinga 2 restarts and Icinga Director deployments. The icinga-director.service systemd watchdog timeout was raised from 10 seconds to…

Read More
11. 05. 2022 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.22

In Tornado we lowered the default values for the retries of the Smart Monitoring action. The previous default values was leading to a too long waiting time during the block of Smart Monitoring actions performed before the Icinga 2 restarts and Icinga Director deployments. The icinga-director.service systemd watchdog timeout was raised from 10 seconds to…

Read More
06. 05. 2022 Alessandro Valentini Development, NetEye

Pinning a Module to a Specific Kernel Release

During our implementation of the NetEye migration to Red Hat 8 we decided to drop our internal mirror for system packages and instead rely on Red Hat’s official repositories. Our goal was to improve reliability, speed up the delivery of updates, and alleviate the development team’s workload. But it also introduced a new issue: we…

Read More
29. 04. 2022 Davide Sbetti Bug Fixes, NetEye

Bug Fixes for NetEye 4.22

We fixed a bug in the grafana-panel-renderer and SLM which prevented silently the generation of resource reports if one of the corresponding requests to Grafana exceeded a certain timeout. For NetEye 4.22 we updated the following packages: grafana-panel-renderer to version 1.2.3-1 icingaweb2-module-slm, icingaweb2-module-slm-autosetup to version 4.18.6-1

Read More
29. 04. 2022 Davide Sbetti Bug Fixes, NetEye

Bug Fixes for NetEye 4.23

We fixed a bug in the grafana-panel-renderer and SLM which prevented silently the generation of resource reports if one of the corresponding requests to Grafana exceeded a certain timeout. For NetEye 4.22 we updated the following packages: grafana-panel-renderer to version 1.3.2-1 icingaweb2-module-slm, icingaweb2-module-slm-autosetup to version 4.19.2-1

Read More
28. 04. 2022 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.23

We fixed a bug in Tornado that caused Smart Monitoring Actions to fail to correctly set statuses on Icinga 2 objects during a restart of Icinga 2 and during Icinga Director deployments, due to a race condition in Icinga 2. We also fixed a bug in the Tornado Smart Monitoring Actions that could cause to…

Read More
28. 04. 2022 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.22

We fixed a bug in Tornado that caused Smart Monitoring Actions to fail to correctly set statuses on Icinga 2 objects during a restart of Icinga 2 and during Icinga Director deployments, due to a race condition in Icinga 2. We also fixed a bug in the Tornado Smart Monitoring Actions that could cause to…

Read More
28. 04. 2022 Charles Callaway Development

Making Your Own Video Tutorials, Part 8: It’s All About That Audio

So your video shooting and editing skills are at a high level now, and you’re comfortable and even confident appearing in your videos. You’ve acquired a good quality microphone, greatly improving the resulting audio. But down deep you know there are still some things about the sound you could improve. I’ve already written a bit…

Read More
27. 04. 2022 Elena Valgoi Events, Service Management

“Culture eats strategy for breakfast” – Exciting news from the Atlassian Team ’22

“Culture eats strategy for breakfast” … Peter Drucker, the management guru, said it ages ago…and Scott Farquhar, Co-Founder and Co-CEO at Atlassian, repeated it in the opening keynote at the Atlassian Team ’22 in Las Vegas (April 5th-7th). Atlassian Team is an annual meeting about Agile & DevOps, ITSM, culture, and work management, where the…

Read More

Archive