The Akamai BlogSubscribe
Attacks Lighter Than Expected Amid 9-11 Anniversary, ...
A couple weeks ago, Akamai's CSIRT team warned that chaotic actors could use the anniversary of 9-11 and news of potential military action in Syria as an excuse to unleash a fresh wave of DDoS attacks. Fortunately, the week turned out to be pretty quiet.The Syrian Electronic Army (SEA), a pro-Assad hacking group, mostly held its fire, and those wanting to exploit the 9-11 anniversary were nowhere to be found. I asked Mike Kun
Podcast Interview: Akamai InfoSec's Meg Grady-Troia
I recently spoke with Meg Grady-Troia about her role in Akamai InfoSec, particularly the security training she does for new hires. In addition to training, Meg works to inform and educate Akamai sales staff and customers about platform security at Akamai. She also develops white papers, short documents and other materials, as needed, to support Akamai's development as a security company.She also explains how she shifted from a career in restaurant
Security Front and Center at Akamai Edge 2013
At this year's Akamai Edge Conference, taking place Oct. 7-11 in Washington DC, security will be a central part of the agenda. One of the three tracks this year is a Web Security Symposium, tailored to meet the needs of security professionals looking to protect their organization from unwanted network or application layer attacks, while improving the exchange of information between employees, customers and business partners on any device, anywhere.
Slow DoS on the Rise
The following is a guest post from Senior Enterprise Architect David Senecal and Sr. Solutions Architect Aseem Ahmed Recent years have been very dramatic in security landscape with emerging threats; the application layer is now a more prominent target. The new (and deadly) Layer 7 attacks called slow HTTP Denial of Service (DoS) attacks are on the rise. Although they are not as new as they might sound, anything that
Microsoft's September Patch Matrix
Microsoft released it's monthly patch load this week. To help identify and deploy the security fixes, here's a table showing the different bulletins, the severity of the flaws, and the products impacted.Bulletin IDBulletin Title and Executive SummaryMaximum Severity Rating and Vulnerability ImpactRestart RequirementAffected SoftwareMS13-067Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2834052) This security update resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office
Internet Security Central To Danny Lewin's Legacy
With the 14th anniversary of 9-11 this week, I'll be focusing on posts about the legacy of Danny Lewin -- Akamai co-founder and casualty of that terrible day. I'll also look at Akamai's crucial role in keeping the Internet afloat that day and in the aftermath, and how it shaped the way we operate today. Let's begin with this post, originally written in June, as I was getting up to
Multiple DDoS Attacks Possible Amid Action in Syria, ...
Emotions will already be high next week with the 12th anniversary of the 9-11 attacks. On top of that, Congress is expected to debate and possibly authorize military action in Syria. This has Akamai InfoSec's CSIRT team on high alert.In recent weeks we've told you about the activities of the Syrian Electronic Army (SEA), a pro-Assad hacking group. Mike Kun and Patrick Laverty, two of our CSIRT team members, have been tracking the potential
No Matter Your Experience, Adversaries Will Occasion ...
One of the challenges of working in the security community is that you are expected to be fully aware of risk at all times. But as humans we all slip up sometimes. I was reminded of that yesterday when I helped out with a training session for new Akamai employees.In these training sessions, we go over Akamai security procedures and how employees are to conduct themselves. There are the obvious
Telling Akamai's Security Story: Part 2
Three months ago when I started at Akamai, I told you the goal was to tell some Akamai InfoSec stories and make it clear how A.) we make sure our own house is secure, and B.) we provide an ironclad defense for customers. Here's an update to explain how we're doing that.There are the almost-daily posts in this blog. There's plenty going on in our security department every day, which means