Bad Tenable plugin updates take down Nessus agents worldwide

Source: BleepingComputer Author: Sergiu Gatlan URL: https://www.bleepingcomputer.com/news/security/bad-tenable-plugin-updates-take-down-nessus-agents-worldwide/

1. ONE SENTENCE SUMMARY: Tenable requires users to manually upgrade Nessus agents to resolve outages caused by buggy plugin updates affecting multiple regions.

2. MAIN POINTS:

3. Customers must upgrade or downgrade Nessus agents to restore online functionality.

4. Versions affected include Nessus Agent 10.8.0 and 10.8.1 globally.

5. Tenable released version 10.8.2 to fix the plugin issue that caused outages.

6. Plugin feed updates were disabled to prevent further system disruptions.

7. A plugin reset is necessary if using agent profiles for changes.

8. Manual installation of version 10.8.2 is required for affected users.

9. A script or command is provided for resetting plugins before upgrading.

10. The incident is reminiscent of a 2024 CrowdStrike outage impacting many organizations.

11. Users in the Americas, Europe, and Asia experienced the service interruption.

12. Tenable plans to resume plugin downloads by the day’s end.

13. TAKEAWAYS:

14. Always keep software updated to avoid potential vulnerabilities and outages.

15. Monitor vendor communications for fixes during major cybersecurity incidents.

16. Have a clear rollback plan in place for software updates.

17. Understand the importance of performing required resets after changes.

18. Stay informed about similar incidents to prepare for potential disruptions.