Akamai Diversity

The Akamai Blog

Bill Brenner

Bill Brenner

September 12, 2013 5:00 AM

Microsoft's September Patch Matrix

Microsoft released it's monthly patch load this week. To help identify and deploy the security fixes, here's a table showing the different bulletins, the severity of the flaws, and the products impacted.Bulletin IDBulletin Title and Executive SummaryMaximum Severity Rating and Vulnerability ImpactRestart RequirementAffected SoftwareMS13-067Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2834052) This security update resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office

Bill Brenner

Bill Brenner

September 9, 2013 5:12 AM

Internet Security Central To Danny Lewin's Legacy

With the 14th anniversary of 9-11 this week, I'll be focusing on posts about the legacy of Danny Lewin -- Akamai co-founder and casualty of that terrible day. I'll also look at Akamai's crucial role in keeping the Internet afloat that day and in the aftermath, and how it shaped the way we operate today. Let's begin with this post, originally written in June, as I was getting up to

Bill Brenner

Bill Brenner

September 5, 2013 6:26 AM

Multiple DDoS Attacks Possible Amid Action in Syria, ...

Emotions will already be high next week with the 12th anniversary of the 9-11 attacks. On top of that, Congress is expected to debate and possibly authorize military action in Syria. This has Akamai InfoSec's CSIRT team on high alert.In recent weeks we've told you about the activities of the Syrian Electronic Army (SEA), a pro-Assad hacking group. Mike Kun and Patrick Laverty, two of our CSIRT team members, have been tracking the potential

Bill Brenner

Bill Brenner

September 4, 2013 5:42 AM

No Matter Your Experience, Adversaries Will Occasion ...

One of the challenges of working in the security community is that you are expected to be fully aware of risk at all times. But as humans we all slip up sometimes. I was reminded of that yesterday when I helped out with a training session for new Akamai employees.In these training sessions, we go over Akamai security procedures and how employees are to conduct themselves. There are the obvious

Bill Brenner

Bill Brenner

September 3, 2013 5:20 AM

Telling Akamai's Security Story: Part 2

Three months ago when I started at Akamai, I told you the goal was to tell some Akamai InfoSec stories and make it clear how A.) we make sure our own house is secure, and B.) we provide an ironclad defense for customers. Here's an update to explain how we're doing that.There are the almost-daily posts in this blog. There's plenty going on in our security department every day, which means

Bill Brenner

Bill Brenner

August 29, 2013 6:32 AM

SEA Attacks Illustrate Need for Better DNS Security

The Syrian Electronic Army (SEA) -- a pro-Assad hacking group -- is making misery for some of the biggest entities on the Internet. The SEA's activities have attracted plenty of media attention this week. Users couldn't access many high-profile websites Tuesday after SEA launched a targeted phishing attack against a reseller for Melbourne IT, an Australian domain registrar and IT services company. According to the IDG News Service, the attack allowed hackers to change the DNS records for

Bill Brenner

Bill Brenner

August 28, 2013 9:16 AM

Security Ethics and The Hacker Academy

If you work outside the security community, the word "hacker" is often misunderstood. A hacker is seen as someone who operates outside the law, troublemakers who are only in the business of engineering attacks and causing chaos. Because of that misconception, I often feel the need to educate the masses.To that end, I'd like to direct you to the blog of security company Tripwire, which has a talented team we

Bill Brenner

Bill Brenner

August 27, 2013 5:28 AM

Akamai FedRAMP Compliance is Huge for Security

Yesterday was a big day around here. We achieved Federal Risk and Authorization Management Program (FedRAMP) compliance as a cloud services provider. Big deal, you say? Why, yes. It is. FedRAMP is a U.S. government-wide program that standardizes the approach to security assessment, authorization, and continuous monitoring for cloud products and services. Specifically, Akamai's globally distributed, publicly shared cloud services platform has received "Provisional Authority to Operate (P-ATO)" from the FedRAMP Joint Authorization Board (JAB). As Akamai Public Sector VP Tom

Bill Brenner

Bill Brenner

August 26, 2013 6:41 AM

DDoS Attacks: China's Weekend of Irony

I can't help but see irony in all the news reports this morning about China suffering one of the worst DDoS attacks it has ever seen. China is usually seen as the place where attacks begin, a perception bolstered by findings in Akamai's most recent "State of The Internet" report. Of all the reports on the weekend DDoS against China, this passage from The Wall Street Journal's article explains things best,