Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

Splunked, The Leak →

April 06, 2017 by Marc Handelman in All is Information, Analytics, Attack Analysis, Data That Is Big, Information Sciences, Information Security

via the eponymous Richard Chirgwin, whilst writing at El Reg, comes this unfortunate tale of security flaws within Splunk Enterprise (now, happily patched). First discovered by John Page (aka hyp3rlinx), and published via an advisory at Full Discosure. Here's hyp3rlinxs' source.

For the Record: We have always been pleased with Splunk products, and, most importantly, they are fast and focused when fixing issues.

The takeway? Make an effort to be extraordinarily cognizant of the threats posed by log and machine generated data aggregation in the enterprise. That is all.

April 06, 2017 /Marc Handelman
All is Information, Analytics, Attack Analysis, Data That Is Big, Information Sciences, Information Security
  • Newer
  • Older