Akamai Diversity

The Akamai Blog

Akamai SIRT Alerts

Akamai SIRT Alerts

February 29, 2016 12:06 PM

Akamai's State of the Internet Security Report with ...

The State of the Internet Security report by Akamai is issued four times a year with information on the types of online attacks that Akamai Technologies protects its customers from every day. In this free report, you can read about changes in Distributed Denial of Service (DDoS) attacks with multiple different metrics. In addition, we look at the various types of web attacks against our customers and a spotlight on

Bill Brenner

Bill Brenner

February 29, 2016 8:25 AM

Q4 2015 State of the Internet Security Report: An In ...

Today Akamai released the Q4 2015 State of the Internet Security (SOTI Security) Report (download here). I'll write posts throughout the week focusing on specific parts of the report, but let's begin with an overview in the form of an infographic. Related: Q4 2015 SOTI Security presentations at RSA Conference 2016

Bill Brenner

Bill Brenner

February 29, 2016 8:05 AM

#RSAC 2016 State of Internet Security Presentations

Today, as RSA Conference 2016 opens, Akamai is releasing its Q4 2015 State of the Internet Security Report. At the Akamai Booth in Moscone Center's North Exhibit Hall, I'll give overviews of the report and we'll hand out printed copies. If you want to check out a presntation, here's the schedule: Tuesday - 10 -6, noon and 3 p.m. PT Wednesday - 10-6, noon and 4 p.m. PT Thursday -

Akamai SIRT Alerts

Akamai SIRT Alerts

February 25, 2016 1:00 PM

IKE/IKEv2 Ripe for DDoS Abuse

By Bill Brenner, Akamai SIRT senior tech writer Akamai's Security Intelligence Research Team (SIRT) is conducting research into the security posture of the Internet Key Exchange (IKE & IKEv2) protocol. The paper outlines the findings thus far, including configurations in the protocol itself that attackers could potentially leverage to launch reflected DDoS campaigns.

Akamai

Akamai

February 23, 2016 6:14 AM

Akamai and the Glibc Vulnerability (CVE-2015-7547)

Akamai continues to investigate the Glibc vulnerability outlined in CVE-2015-7547 to see how its technology may be affected. As part of the DNS query process, Glibc is used by many systems across the Internet -- and at Akamai -- and all versions of Glibc's getaddrinfo () library functions since version 2.9 are potentially vulnerable to a range of attacks based on a stack buffer overflow.

Akamai

Akamai

February 22, 2016 10:27 AM

Ransomware cyberattacks in healthcare? Sadly, yes.

It's been widely reported that Hollywood Presbyterian Medical Center experienced a ransomware attack on February 5 that encrypted their data and disabled their network. The hospital was forced to revert to paper and faxes to relay patient information, and hospital operations were so strained that they succumbed to the cyberattack and paid the hackers 40 bitcoins, or about $17,000, to get the decryption key.

Renny Shen

Renny Shen

February 17, 2016 8:25 AM

Bot Manager: Why It Matters

Earlier today, Akamai announced the launch of a completely new product, Bot Manager. You can read more about the details in the press release and on Akamai.com. I won't bore you by repeating them, but I did want to add some color on why it matters.

Akamai SIRT Alerts

Akamai SIRT Alerts

February 16, 2016 6:42 AM

DNSSEC Targeted in DNS Reflection, Amplification DDo ...

By Bill Brenner, Akamai SIRT Senior Tech Writer During the past few quarters, Akamai has observed and successfully mitigated a large number of DNS reflection and amplification DDoS attacks abusing Domain Name System Security Extension (DNSSEC) configured domains. As with other DNS reflection attacks, malicious actors continue to use open DNS resolvers for their own purpose -- effectively using these resolvers as a shared botnet. This technique has also been

Akamai

Akamai

February 10, 2016 10:35 AM

(All We Are Saying Is) Give Bots a Chance

Lately, it seems, bots have been taking a beating in the security press. They are blamed for DDoS attacks, for Web Attacks, for price scraping, for Grey Marketeering, and even, according to some, for Ted Cruz's recent win in Iowa. Bot are ALL bots bad ALL the time? We say NO! Why not? Let me count the ways: