Presentation

CERTFR, published on 02/15 a security bulletin presenting the current attack campaign targeting Centreon monitoring servers CERTFR-2021-CTI-004.

Centreon having a similar operation to the EyesOfNetwork product sponsored by Axians, we must remain vigilant on the presence of security vulnerabilities exploited during this massive attack.

After investigating the attack methodology, we confirm that we are currently not vulnerable to this wave of massive attacks targeting only specific components present in Centreon..

Security recommendations

  1. Keep the solution up to date
  2. Do not publicly expose the solution on the internet
  3. Strengthen the security of the operating system
  4. Regularly consult the EyesOfNetwork safety bulletins at: EyesofNetwork