Get In Touch
October 2017 Archives
Since 2005, when Gartner coined the term, SIEM (Security Information and Event Management) solutions have grown in importance for the security industry. SIEM solutions provide a centralized view to easily access and analyze security information from multiple sources, and then prioritize mitigation efforts based on risk profiles. SIEM also helps organizations meet their security log analysis and incident/event reporting requirements.
By Daniel Franke, Infosec Researcher Akamai is aware of the recently-disclosed "ROCA" vulnerability in cryptographic firmware used in products made by Infineon Technologies. A bug in the firmware's prime-search algorithm used for RSA key generation results in RSA keys that are relatively cheap and inexpensive to factor. The bug impacts Infineon Trusted Platform Modules (TPMs) as well as many smartcards and Hardware Security Modules (HSMs) that use Infineon chips but
"Offering rich, interactive images has emerged as a critical component to any website or web app visitor engagement strategy -- and with good reason," wrote Parag Pathak, our Senior Product Marketing Manager, in his recent published article - Let's get visual: best practices for digital image management - in EContent Magazine.
Everybody wants to be able to use TLS 1.3. Among the reasons are:
The Wild West era of consumer data collection is coming to a close. For years, businesses across the globe have been able to skate by with pre-checked consent forms filled with ambiguous terms, allowing them to collect vast quantities of customer data with impunity. Consumers, on the other hand, largely had little to no clue what information companies were collecting or for what purpose. The EU's General Data Protection Regulation
Just like that, another Akamai Edge has come and gone. If you were able to join us this year, I hope you had a chance to stop by my presentation on Threat Intelligence Insights: An In-Depth Analysis of a Fast Flux Botnet.
In the digital age, customer experience is king. With so many new channels to navigate and an abundance of options right at consumers' fingertips, one of the most compelling differentiators brands can offer is a superb experience. In fact, a 2016 Forrester Research study discovered that 72 percent of businesses identified enhancing the customer experience as one of their primary objectives.
It's no secret that businesses are rapidly adopting Cloud Service Providers such as Amazon Web Services, Microsoft Azure or Google Cloud Platform for cost efficiency, agility, scalability and global distribution to serve their customers more easily. A recent IDG survey indicates that 70% of businesses have at least 1 application in the cloud and 16% plan to take their first app to the cloud in the next 12 months.
Akamai is aware of a family of vulnerabilities known as the Key Reinstallation Attack or KRACK. These vulnerabilities abuse implementation flaws found in all modern wireless networks using WPA2. The KRACK attack is effective at the protocol level and therefore affects all systems using current WiFi encryption, including iOS, Linux, Windows and Android. The vulnerabilities allow the attacker to reinstall a previously used cryptographic key. This would allow for the
Service providers looking to enhance and secure the online experience for their residential and business subscribers often struggle to find solutions that are easy for their customers to configure and use - particularly when it comes to setting policies that carry across fixed, mobile and converged networks. This type of simple, seamless management is actually a key distinguishing feature of Nominum, now part of Akamai, solutions. And not just from
In case you haven't been paying attention, an unlikely technology, the Internet's Domain Name System, or DNS, is experiencing a renaissance. For much of its existence, DNS has maintained a simple and singular function - to resolve Internet names to IP addresses. Over the past several years, however, DNS, or more specifically, the recursive DNS (rDNS) resolver, has assumed a number of new roles, made possible by the fact that
It has been a very rough month for the information security community. It feels like we've been on the losing end of a championship fight against Floyd Mayweather.
We suggest reading Parts One, Two, and Three before continuing with this blog post. Fast Flux Network Malicious Activity Fast Flux Network as a Platform for Malware Activity In order to make sure, beyond any reasonable doubt, that the Fast Flux network is being used for malicious activities, we collected evidence from a variety of public sources that shows a clear relationship between the analyzed malware samples and domains being
We suggest reading Parts One and Two before continuing with this blog post. Fast Flux Network - C&C Network vs. Hosting Network In order to further investigate the initial assumption of having two different sub-networks as observed in Fast Flux Network - Overview, we created a network graph, but this time without showing the relation to the nameserver. Doing that showed us that we can see two distinct sub-networks segregated
Read Part One, an Introduction to Fast Flux Networks, here. Fluxing - Deep Dive The primary characteristic of the Fast Flux network is that the network constantly changes its IP addresses, domains, and nameservers. These changes obfuscate the true nature of the network and make it more difficult for researchers to understand and defend against.
Authors: Or Katz, Principal Lead Security Researcher, Akamai; Raviv Perets, Senior Security Researcher, Akamai; Guy Matzliach, Security Researcher, Akamai Introduction Recently, we have seen large-scale botnets used to execute attacks rarely seen in the past. These botnets incorporate new features and have bigger capabilities. How do these botnets remain resilient to detection?
With high-profile security attacks occurring every day, organizations are more concerned than ever with cyber security. Many are going well beyond anti-virus protection and firewalls to adopt multiple layers of security such as intruder prevention systems, sandboxing, and secure web gateways. Yet most IT departments fail to protect the recursive Domain Name System (DNS). This oversight leaves valuable data and personal information on their networks wide open to attack by