The Akamai Blog Subscribe
Microsoft Security Update for November 2014
Microsoft released its November 2014 Security Update Tuesday. Windows, Office, Server Software and the .NET Framework are among the items affected.More Akamai perspective on patching and vulnerability management: Akamai University: Vulnerability Management vs. Pen TestingTen Years After the Blaster WormBug Bounty Programs: A Turning Point for Microsoft
Attackers Use DNS Flooder Tool to Amplify DDoS Impac ...
Akamai's Prolexic Security Engineering and Research Team (PLXsert) issued an advisory this morning warning of a new technique bad actors are using to launch DNS amplification attacks. Amplification attacks generate large response packets with relatively small requests. Attackers create large DNS TXT (text) records to increase amplification, magnifying the impact of a DDoS attack. Several campaigns observed since Oct. 4, 2014 contain fragments of text taken from press releases issued by
5 Security Tips For Online Holiday Shopping
In the run-up to Cyber Monday, we're looking at different online shopping trends and how Akamai plays a critical role in keeping things running. As part of that, we'll be focusing on typical security threats to be aware of this time of year and beyond.Let's begin with some wise advice from my colleague, Akamai Security Advocate Dave Lewis. He originally came up with these last year, but it bears repeating
How important is it to have a secure and reliable we ...
Businesses need to protect themselves from all of these types of attacks. By identifying the threats they find most damaging, businesses can tailor their security solutions to provide the best security for their critical applications. Presented by Edward S. Ferrara, Vice President & Principal Analyst, Forrester. Learn more at www.akamai.com/webdefense
Edge 2014 Video: Million Browser Botnet Live Demonst ...
Akamai CSIRT Director Michael Smith and WhiteHat Security Threat Research Center Senior Manager Matt Johansen gave a demonstration of how the Million Browser Botnet operates, during last month's Edge conference. Below is the full presentation. Talk description: Online advertising networks can be a web hacker's best friend. For mere pennies per thousand browser impressions, service providers allow you to broadly distribute arbitrary JavaScript. Most advertisers use this feature to show
Akamai Edge 2014: Responding to Heartbleed and Shell ...
In April, Akamai determined its network was vulnerable to the Heartbleed bug. In late September, the company determined it was vulnerable to the Shellshock bug. In this case study, Akamai Chief Security Architect Brian Sniffen walks through Akamai's response to both and provides insights into the lessons learned for improved security and incident response.
Akamai Edge 2014: Evolution of TLS/SSL
Akamai Chief Security Architect Brian Sniffen reviews the evolution of TLS/SSL during a presentation at Akamai Edge 2014. Following the Heartbleed vulnerability, attention turned to TLS, the fundamental building block of Internet encryption and authentication. Sniffen reviewed the evolving TLS standard, including new ciphers, authentication mechanisms and asymmetric key changes.
Preparing for the Holidays: Security Trends
Last time in our "Preparing for the Holidays" series, we focused on what you should know about mobile trends. And as promised, we're back at it with some more trends you should be aware of. This time, it's all about security. If security hasn't been top of mind in the past, it certainly is (or should be) now, given the number of high-profile breaches we've seen over the past
Security Kahuna Podcast: From Heartbleed to Shellsho ...
In this latest episode, I talk to Akamai Security Advocates Dave Lewis and Martin McKeay about the increased frequency of severe vulnerabilities affecting SSL and related technology.We start with the most recent case, Poodle, and move on to Shellshock and Heartbleed. A full list of resources for all of these incidents can be found here.We also look ahead to potential security trends in 2015.Listen here.