CERT-IN issues clarification on its directions
CERT-IN and MEITY continue to be in the news. The directions on reporting incidents and maintaining logs continue to be talked about and debated.
In the midst of this, CERT-IN issued FAQs on their directions. The FAQs clarify things a bit more than the directions, but some pointers are still unclear.
The FAQ PDF can be downloaded here.
In summary, the directions have been ‘softened’ a little bit - in terms of what qualifies as an incident as well as being unclear about whether VPN services need to keep usage (browsing) logs.
Take Action:
Read these FAQs in conjunction with our previous interpretations of the guidelines here, before you review your incident response process and logging and monitoring process.
Know someone who might find this useful? Share this post.
CISCO releases a patch for zero day in IOS XR
CISCO has released a patch for certain series of routers in their IOS deployed on certain router platforms.
Knowing how hard it is to patch router firmware, there are some workarounds provided. The first one is to disable the health check and remove health check RPM.
Take Action:
Well, upgrade your IOS.
If that is tough, there are two workarounds:
Disable health checks
Use ACLs to block ports 6379
Useful? CyberInsights is a weekly post about two new items in cybersecurity which helps the cybersecurity professional think. Subscribe to it here.