FastNetMon LiveView adds real-time traffic visibility, DDoS observability, and operational governance to automated network mitigation workflows. #networksecurity #blackboxattacks #ddosprotection Read the full article below 👇 hackernoon.com/why-we-built-…

"We are very passionate about DDoS Defense" A sneak peak to Pavel Odintsov and Eric Chou interview at NANOG in Washington. Stay tuned for full video! #NANOG97 #DDoSDetection #FastNetMon

The community asked and we delivered! FastNetMon presentations and video all in one place, right here on our website! fastnetmon.com/video/ Now you can find them here if you don't feel like scrolling YouTube ;) #fastnetmon #BGP #NetworkEngineering #NetworkSecurity

@FastNetMon @xplore_ca @AirBridgeBB @Ripleys

Multiple CVEs patched across BGP, Flow Spec, Netflow v9, IPFIX, and packet handling. No exploitation in the wild confirmed — but upgrade immediately. Thanks to Ryan Wilke at Lorikeet Security for the responsible disclosure. → fastnetmon.com/2026/05/27/fa…

16 CVEs in FastNetMon Community Edition. All found, reported, and fixed. Our team ran a full source code audit of FastNetMon CE and surfaced 16 distinct vulnerabilities, now tracked as CVE-2026-48682 through CVE-2026-48697. First, credit where it is due. Huge thanks to Pavel Odintsov and the FastNetMon team. We sent the report and they moved immediately, confirmed the issues, staged fixes, and shipped patches in days. That is exactly how responsible disclosure is supposed to go, and a maintainer who turns it around that fast makes the whole ecosystem safer. The part I am most excited about: we did not find these by hand alone. Much of this audit ran on the same analysis engine we are building into Lory, our autonomous offensive security agent. The pattern that caught most of the worst bugs is simple to describe and brutal in practice, a length value read straight off the wire flowing into a memcpy with no bounds check. Teaching an agent to trace untrusted input from the network boundary to the dangerous sink is exactly what Lory is built to do at scale. FastNetMon was a real-world proving ground, and it delivered. The throughline on the critical ones: wire-controlled length, no validation, into a binary built with zero hardening flags. No stack canary, no FORTIFY, no PIE, no RELRO. That is what turns a parser bug into code execution as root on the box watching your network. If you run FastNetMon CE in production, update now. If you package it yourself, add hardening flags to your build. → All 16, with full technical writeups: Memory corruption CVE-2026-48682 · IPv4 parser OOB read lorikeetsecurity.com/blog/fa… CVE-2026-48683 · NetFlow v9 data flowset OOB lorikeetsecurity.com/blog/fa… CVE-2026-48684 · NetFlow v9 options template OOB lorikeetsecurity.com/blog/fa… CVE-2026-48685 · BGP extended length misread lorikeetsecurity.com/blog/fa… CVE-2026-48686 · BGP NLRI stack overflow (CVSS 9.8, RCE) lorikeetsecurity.com/blog/fa… CVE-2026-48688 · BGP MP_REACH_NLRI IPv6 lorikeetsecurity.com/blog/fa… CVE-2026-48689 · Dynamic buffer off-by-one lorikeetsecurity.com/blog/fa… CVE-2026-48690 · Packet storage integer overflow lorikeetsecurity.com/blog/fa… CVE-2026-48691 · BGP AS_PATH overflow lorikeetsecurity.com/blog/fa… Injection CVE-2026-48687 · Juniper plugin command injection lorikeetsecurity.com/blog/fa… CVE-2026-48694 · Juniper NETCONF injection lorikeetsecurity.com/blog/fa… CVE-2026-48695 · MikroTik command injection lorikeetsecurity.com/blog/fa… CVE-2026-48696 · ExaBGP sprintf overflow lorikeetsecurity.com/blog/fa… Auth & transport CVE-2026-48692 · Unauthenticated gRPC interface lorikeetsecurity.com/blog/fa… CVE-2026-48693 · Symlink issue in temp handling lorikeetsecurity.com/blog/fa… CVE-2026-48697 · Missing TLS validation lorikeetsecurity.com/blog/fa… → Read the C, find the line, prove the impact, disclose it right. #cybersecurity #infosec #vulnerabilityresearch #CVE #networksecurity #BGP #responsibledisclosure #AISecurity

FastNetMon LiveView adds real-time traffic visibility, DDoS observability, and operational governance to automated network mitigation workflows. #networksecurity #blackboxattacks...Show more

The FastNetMon team will be at #NANOG97 in Bellevue, WA (June 1–3). Pavel Odintsov is speaking June 3 — Monitoring 2,800 BGP Sessions using BMP protocol. Book a meeting ahead of time 👉 fastnetmon.com/2026/04/06/se…

FastNetMon LiveView is live. 🚀 Real-time traffic analytics, DDoS visibility, and configuration management — all in one browser-based interface. No more log parsing or tool switching. Just clarity. fastnetmon.com/2026/04/29/in… #FastNetMon #LiveView #DDoS #NetworkSecurity

FastNetMon Advanced 2.0.378 is out. → BGP table loading up to 2x faster → ClickHouse now supports TLS connectivity → Flexible counters degradation fixed fastnetmon.com/2026/04/27/fa… #FastNetMon #BGP #NetworkSecurity

FastNetMon started as a weekend GitHub project in 2014. Today, it runs on networks handling terabit-scale traffic worldwide. Founder Pavel Odintsov on how it happened → pulse2.com/fastnetmon-profil… #DDoS #NetworkSecurity #OpenSource

FastNetMon founder Pavel Odintsov is speaking at Taiwan Internet Week 2026. Panel: NIS2 Directive and beyond. 13:30–14:30 | Room 402CD fastnetmon.com/2026/04/06/se… #NIS2 #TaiwanInternetWeek #FastNetMon

FastNetMon Advanced v2.0.376 (Apr 7, 2026) PPPoE IPv6 parsing Expanded sFlow counters FlowSpec tracking cleaner email notifications & more! Full details: fastnetmon.com/docs-fnm-adva… #FastNetMon #Ubuntu #NetworkSecurity

FastNetMon Advanced now integrates with PagerDuty. DDoS detection events → structured PagerDuty incidents → your existing escalation policies. No extra tooling, no manual steps. Read more here: fastnetmon.com/2026/04/01/fa… #DDoS #IncidentResponse #FastNetMon

BGP FlowSpec is one of the most effective tools for automated DDoS mitigation... FastNetMon Advanced adds full FlowSpec-based mitigation for Bison routers, even without native support, using an ACL/SSH integration layer. Technical Doc: fastnetmon.com/docs-fnm-adva… #BGPFlowSpec

⚠️ FastNetMon is tracking a significant surge in outbound DDoS activity from residential broadband networks across India. 72 hours of abnormal outbound UDP patterns. Hundreds of networks affected. Full details 👇 fastnetmon.com/2026/03/26/un… #DDoS #NetworkSecurity #ISP #FastNetMon

For networks having this issue - likely best would be to deploy Fastnetmon to detect UDP beyond certain threshold towards ports 443 & drop it while maintaining whitelist of Google, Facebook etc traffic. That also if impact on router. If impact is before that it won’t help.

FastNetMon Advanced now officially supports Debian 13 (Trixie)! Enabling deployment on the latest stable release of one of the most widely used Linux distributions in server and network environments. Read all about it on our blog: fastnetmon.com/2026/03/23/fa… #fastnetmon #debian

Fresh new look for the FastNetMon website — and we've added a full newsletter archive so you can catch up on anything you missed. Not subscribed yet? Link below 👇 🔗 Newsletter archive: fastnetmon.com/newsletter 🔗 Subscribe: cdn.forms-content.sg-form.co… #FastNetMon #DDoS

FastNetMon IP Infusion = automated DDoS defence on OcNOS. Detect via sFlow/IPFIX. Mitigate via BGP Flow Spec or RTBH. Restore automatically when the attack stops. Out-of-band. Disaggregated. Open standards end to end. Solution brief → fastnetmon.com/2026/03/16/fa… #DDoS #BGP