Skip to main content
NetApp Stage KB

Why are we receiving mimikatz cyber security alerts using Snapmirror

  1. Last updated
  2. Save as PDF

Views:
1
Visibility:
Public
Votes:
0
Category:
snapmirror
Specialty:
DP
Last Updated:

Applies to

  • ONTAP OS
  • Snapmirror
  • Kerberos

Answer

NetAppsCyber Security Team has never taken a report of malware that runs on ONTAP.  There is a Microsoft Utility that flagged a customer’s ONTAP system as possible Mimikatz, apparently due to the use of Kerberos. This report was not focused on Snapmirror ports, and it was inaccurate. 

Additional Information

Our Cyber Security Team has never taken a report of malware that runs on ONTAP. If such a malware existed, it would require manual installation on a ONTAP node by someone authorized as an admin. I f such a malware existed, it would require manual installation on a ONTAP node by someone authorized as an admin

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.