Akamai Diversity

The Akamai Blog

Bill Brenner

Bill Brenner

December 6, 2013 5:45 AM

December Patch Tuesday Preview

Patch Tuesday is an important calendar item for Akamai customers, given how dominant Windows machines are in many companies. This month is shaping up to be a big one. What follows is a preview of Microsoft's December 2013 Security Update. Bulletin IDMaximum Severity Rating and Vulnerability ImpactRestart RequirementAffected SoftwareBulletin 1Critical Remote Code ExecutionRequires restartMicrosoft Windows, Microsoft Office,Microsoft LyncBulletin 2Critical Remote Code ExecutionRequires restartMicrosoft Windows,Internet ExplorerBulletin 3Critical Remote Code ExecutionRequires restartMicrosoft WindowsBulletin 4Critical Remote Code ExecutionMay

Bill Brenner

Bill Brenner

December 5, 2013 7:18 AM

Akamai InfoSec's Brick of Enlightenment

This is a sequel to yesterday's post -- the Akamai Security Podcast interview with Dave Lewis.  Dave, one of our security advocates, is doing a lot of blogging over at CSOonline.com. He did so much blogging in November alone that I found it necessary to compile everything here. I wouldn't want you to miss anything, after all.Here it is, a compilation of November posts from his blog, Brick of Enlightenment:VPN

Bill Brenner

Bill Brenner

December 3, 2013 7:09 AM

CSO Surveys: Decoding the Online Security Landscape

Akamai recently partnered with CSOonline.com to survey information security professionals on various web security topics. The surveys provide valuable insight into web security current trends and what information security professionals are doing to address them. Here are four whitepapers that explore the different threads. The Importance of Improving and Adapting Web Security  With so much depending on Web site availability, CSOs are considering new ways to be cost-effectively proactive and

Bill Brenner

Bill Brenner

December 2, 2013 7:14 AM

Akamai to Acquire Prolexic

Akamai announced this morning that it will acquire cloud security company Prolexic for about $370 million. The move extends Akamai's reach into the world of DDoS protection. In a press release, Akamai CEO Tom Leighton said: "Any company doing business on the Internet faces an evolving threat landscape of attacks aimed at disrupting operations, defacing the brand, or attempting to steal sensitive data and information. By joining forces with Prolexic,

Bill Brenner

Bill Brenner

November 27, 2013 6:15 AM

Four Things to Ask Before Seeking FedRAMP Certificat ...

Part 3 in a series. A few months ago I told you about how Akamai achieved FedRAMP certification and how, in our opinion, it was a very big deal. To understand what FedRAMP is and what certification means for Akamai's security program, see the post, "Akamai FedRAMP Compliance is Huge for Security."After you read that, understand this: The path to certification is hard. All compliance efforts are difficult, of course. But

Dave Lewis

Dave Lewis

November 25, 2013 11:28 AM

Oh The Hackers Online Are Frightful

Thanksgiving holiday planning is well underway in the US as is the holiday season that follows. It is gearing up to be a bumper sales cycle this year. This year will not be any different than previous ones in that in addition to great deals there will be bad actors attempting to play the role of good ole St. Nick with nothing but a bag of malicious code for

Bill Brenner

Bill Brenner

November 25, 2013 9:32 AM

The DNS Security Collection

Welcome to the next step in our effort to make security content more easily available by topic. Today's collection of posts focuses on DNS-related threats and defensive measures. DNS reflection defenseRecently, DDoS attacks have spiked up well past 100 Gbps several times. A common move used by adversaries is the DNS reflection attack, a category of Distributed, Reflected Denial of Service (DRDos) attack. To understand how to defend against it,

Akamai

Akamai

November 22, 2013 11:07 AM

So You Want to Secure Something

I've often heard the following question (or variants thereof): How do I secure [this thing]? Such a question rarely lends itself to a quick answer -- in almost all cases it prompts further questions: secure what, against what, in what cases, from whom? What options are you considering, and how will they help? Akamai InfoSec uses the Principals-Goals-Powers-Controls rubric to ask and answer these questions, and in so doing, help

Bill Brenner

Bill Brenner

November 21, 2013 7:07 AM

Making Compliance Docs Public

Part 2 in a series.In my post about compliance and customer service, I briefly touched on one of the goals of Akamai InfoSec -- making as much of our compliance documentation public as possible. I want to spend a little more time talking about that, as it's something I'm increasingly involved with.Also, customer feedback is going to be crucial in determining which documents to tackle first.As I mentioned in the