Security information and event management (SIEM) solutions are ripe attack targets, researchers say. The warning comes from security expert John Grigg, lead cyber strategist with Meta Studios. Grigg concluded, after a review of deployments, that many top SIEM vendor solutions are insecure. Weak or default credentials often used by network administrators coupled with complex installations make them prime targets. Once in, the SIEM offers a number of opportunities to upload malicious code onto a network, manipulate network logs to cover their digital tracks.
Source: https://threatpost.com/researcher-warns-siems-are-weak-link-in-network-security-chain/124864/