Akamai Diversity

The Akamai Blog

What's Your Headroom?

The recent volatility in the stock market serves as a reminder to those in the brokerage world about the challenges of capacity planning during unstable equity markets.  We are only 10 trading days into 2016, and the the S&P 500 index is down 8.0%.  As shown in the table below, we've now had 4 days of 400+ point swings in the market.

Applications for the Request Control Cloudlet

Your web application by default is accessible to the entire planet. This exposure can open your site up to unnecessary risk. Akamai's Request Control Cloudlet can quickly allow or deny access to website content based on the IP or Geography associated with an inbound request. For example, you may deny access to users in embargoed countries or allow it only to a specific region where your users live.  Manage the cloudlet via easy-to-manage whitelist and blacklists based on the IP address or geographic location associated with the inbound request. Activate the cloudlet policies in seconds by using the dedicated user interface.

These API's are critical to us...without them, we're hurting. - Terry Drozdowski, Director of Engineering, Exceda.

At Akamai, we believe the future of the Internet lies in the hands of the developers and architects who tackle hard problems every day. With our Open Platform Initiative, we simplified access to the Akamai Intelligent Platform for better and easier integration with home-grown and third party technologies and applications. The initiative exposes the power and breadth of Akamai - over 200,000 servers at the farthest reaches at the Edge of the Internet, petabytes of distributed storage, and terabytes of global bandwidth. By providing this technology, our customers and partners can design the next killer application to deliver innovative web experiences while removing all the inherent impediments of building applications on the raw Internet.

Health IT Security recently published the results of Akamai's latest State of the Internet report, emphasizing that "Distributed denial of services (DDoS) attacks are up during the third quarter of 2015, reinforcing the healthcare industry's growing concern for healthcare data security."  They have hit on a very salient point here, because while many may think that healthcare providers are not likely targets of DDoS attacks, there are definite reasons why DDoS attacks should be of particular focus in the healthcare industry:

Akamai Customers are not vulnerable to SLOTH

By Rich Salz

Akamai was informed of a new TLS vulnerability -- SLOTH -- by researcher Karthik Bharghaven. Akamai then worked with the researcher to confirm and fix the vulnerability in an expedient manner prior to public disclosure. Consequently, we minimized the chances of an exploit and have determined that Akamai customers are now not vulnerable to SLOTH.

How Web Applications Become SEO Pawns

Akamai's Threat Research Division has identified a sophisticated search engine optimization (SEO) campaign that uses SQL injections to attack targeted websites.

An advisory on the subject, written by Ryan Barnett of the company's cloud security intelligence team, is available here.

Delegate v9.9.13 setuid Binary Vulnerability

By Larry W. Cashdollar, Akamai SIRT

A few weeks ago I noticed a tweet from someone I have been following off and on for a few weeks. The tweet highlighted an exposed administration panel in a software product called Delegate. The Delegate software is described as, "a multi-purpose application-level gateway, or a proxy server which runs on multiple platforms (Unix, Windows and MacOS X)". What this software does is allow network connections to be relayed or proxied through it.

The recent vulnerability I discovered in Delegate 9.9.13 abuses a binary that is normally setuid root during installation when built from source. The action of setting a binary on a UNIX system setuid root allows any local user on the system to execute that binary as the root or administrative user.

The move to an Encrypted Web

It wasn't too long ago that the only reason a site would leverage HTTPS was to encrypt sensitive data so it couldn't be read in transit. Times are changing and the Internet as we know it is moving more and more towards encrypting all website traffic. Below are 7 good reasons to move your website to only use HTTPS.

With an increase of awareness and interest in Bots' impact - both good and bad - on retail, travel and hospitality companies, Akamai wanted to leverage its global view of the Internet to see what changes occurred for Bot traffic during the recent holiday shopping days for North American retailers. 

Akamai at CES 2016

The Akamai Media Delivery team is looking forward to seeing you at CES 2016!  One of the major themes we expect to hear a lot about at CES this year is OTT, or Over-The-Top delivery of premium video content over the internet, without the accompanying ownership of the distribution network.