Introduction Yesterday was a challenging day for many organizations,
teams, and individuals worldwide. We can all agree that it was
stressful, and the impacts are still being assessed. It will take some
time for many organizations to fully understand...
Introduction Yesterday was a challenging day for many organizations,
teams, and individuals worldwide. We can all agree that it was
stressful, and the impacts are still being assessed. It will take some
time for many organizations to fully understand...
A new issue has been discovered where some devices will experience a
kernel panic after upgrading to 12.4.1. This is due to kernel updates
failing to generate the required initramfs and vmlinuz binaries which
are the equivalent of the newest kernel. ...
We recently released NetWitness Platform XDR version 12.1 which
completed many initiatives related to detection content and policy
management and enables us to launch new, threat-centric content bundles.
These bundles focus on important elements rela...
Introduction As part of a larger content hygiene initiative begun
earlier this year, we have concluded the second phase which focused
exclusively on EDR (endpoint) application rules. During phase II of this
initiative, special emphasis was placed on ...
Hello @EdPadilla, No, there were no replacements for those feeds. And to
date, there are no official plans to replace them or resurrect them
(identically) moving forward. We are working on net new feed concepts
and offerings however, I am not in a po...
Hi @EdPadilla, The reason that you cannot find them is that all of the
legacy RSA FirstWatch feeds were discontinued some time ago. This blog
post is from 2015-06-25 and the feeds that the author references are no
longer in service. For more informa...
Hello All! We wanted to alert you to some rule logic that our team
created to address this Atlassian Zero Day: [Community] Atlassian
Confluence RCE exploit(CVE-2022-26134) DESCRIPTION This app rule detects
Atlassian Confluence RCE exploit(CVE-2022-26...
Hi Jeremy, Which rules and from which repository are you speaking of?
I'd be happy to chat with you directly regarding them.
william.gragido@netwitness.com Will
Hi @EdPadilla! All of the content cited above is available to paying
customers of the NetWitness portfolio. As far as feeds are concerned,
which were you referring to?
