CSC News Table of Contents
On January 2, Tenable disables Nessus agents versions 10.8.0 and 10.8.1 after discovering that faulty updates were causing them to go offline. These agents are critical for organizations to detect vulnerabilities and ensure compliance across their IT infrastructure.
In response to the issue, Tenable has released an updated agent version 10.8.2 to fix the problem and resumed plugin feed updates. The company is advising users to either upgrade to the latest version or downgrade to 10.7.3 for continued functionality.
This incident raises important questions about how update errors can disrupt security operations and what steps companies must take to recover.
Key Takeaway to Tenable Disables Nessus Agents
- Tenable Disables Nessus Agents: Tenable has fixed the issue with Nessus agents by releasing version 10.8.2, ensuring users can regain functionality.
Tenable Disables Nessus Agents: What Happened and Next Steps to Follow
What Are Tenable Nessus Agents?
Tenable Nessus agents are lightweight software tools that scan systems for vulnerabilities, compliance gaps, and other critical security issues.
These tools are essential for maintaining IT security, especially in large organizations with distributed networks.
The Issue with Nessus Agent Updates
On December 31, 2024, Tenable identified a problem where plugin updates were causing Nessus agents to go offline. This affected:
- Agent Versions: Nessus agents 10.8.0 and 10.8.1.
- Impacted Products: Tenable Vulnerability Management (TVM), Tenable Security Center (TSC), and Nessus.
Timeline of Events
| Date | Action Taken |
|---|---|
| December 31, 2024 | Plugin feed updates paused to investigate. |
| January 2, 2025 | Nessus Agent 10.8.2 released to fix issues. |
| January 3, 2025 | Versions 10.8.0 and 10.8.1 fully disabled. |
Steps for Affected Users
Tenable has provided clear guidelines for organizations impacted by the issue:
- Upgrade or Downgrade:
- Upgrade to agent version 10.8.2.
- Downgrade to version 10.7.3 if unable to upgrade.
- Reset Plugins:
- Perform a separate plugin reset for agent profiles.
- Manually update plugins if needed.
For detailed instructions, visit Tenable’s official support page.
Real-Life Example: The Risks of Faulty Updates
In 2020, a similar incident occurred when a Microsoft update for Windows 10 caused widespread issues, including printer malfunctions and system crashes.
This highlights how critical it is for organizations to thoroughly test updates before deployment.
What This Means for the Future
This incident underscores the need for:
- Rigorous Update Testing: Companies should simulate real-world conditions before deploying updates.
- Improved Communication: Clear and timely updates help organizations respond effectively to issues.
- Backup Plans: Always have fallback options, such as downgrades, to mitigate risks during unexpected failures.
As cybersecurity threats evolve, maintaining robust tools like Nessus agents becomes increasingly important.
About Tenable
Tenable is a leading cybersecurity company providing solutions for vulnerability management and risk assessment. Its flagship products include Tenable Nessus, which helps organizations protect their systems from cyber threats.
Rounding Up
The decision to disable Nessus agents 10.8.0 and 10.8.1 reflects Tenable’s commitment to maintaining high standards for its products.
By releasing version 10.8.2 and providing clear guidance, the company has demonstrated accountability and responsiveness to its users’ needs.
This incident serves as a reminder for all organizations to remain vigilant and proactive when managing IT security tools. Stay informed and act quickly to protect your systems from potential disruptions.
FAQs
What caused Nessus agents to go offline?
- Faulty plugin updates caused versions 10.8.0 and 10.8.1 to malfunction.
How can I fix my Nessus agents?
- Upgrade to version 10.8.2 or downgrade to 10.7.3, and reset the plugins.
Which Tenable products were affected?
- Tenable Vulnerability Management (TVM), Tenable Security Center (TSC), and Nessus.
What is the Nessus Agent used for?
- It scans systems for vulnerabilities, compliance issues, and other critical data.
Where can I find more information?
- Visit Tenable’s incident page for updates.
