A new generation of cybersecurity solutions is gaining attention for merging corporate networks with security tools like malware protection into one system that can be centrally managed. Akamai, Cisco, Cloudflare, Zscaler, Palo Alto Networks and others have begun offering consolidated cybersecurity platforms that span IT, operations and security, leveraging resources and theoretically reducing costs through shared expenses. Having all eyes on traffic and workloads via a single framework may also make it possible for chief information officers and IT personnel to be more effective and focused. Continue reading Cloud Platforms Combine Security, Operations for Efficiency

The Log4j code vulnerability has the media declaring the Internet in a state of crisis. Log4j is a Java-based logging framework developers use to track user activity within applications on the popular Apache web server. Security experts are rushing to patch the bug, which is being exploited to remotely assume control of vulnerable systems, stealing credentials, installing malware and launching other attacks that permeate consumer devices. Last week, the U.S. Cybersecurity and Infrastructure Security Agency issued a Log4j alert, as did Australia’s CERT emergency response team. Continue reading Major Security Vulnerability Triggers Worldwide Internet Crisis

The Internet’s Border Gateway Protocol (BGP), its universal routing system, has always had design weaknesses. Now, a global initiative known as Mutually Agreed Norms for Routing Security (MANRS) — supported by the Internet Society and a consortium of Internet infrastructure companies — has established a task force to assist content delivery networks (CDNs) and other cloud services in hardening security. Although MANRS already focused on improving security for network operators and their physical hardware, this task force focuses on bringing the process to the cloud. Continue reading Internet Task Force Pushes CDN Routing Security Measures

In a new partnership, Comcast will be the first Internet Service Provider (ISP) to offer users of Mozilla’s Firefox browser with private and secure encrypted Domain Name System (DNS) services via Mozilla’s Trusted Recursive Resolver (TRR) Program. Comcast’s DNS over HTTPS (DoH) will be activated by default for Firefox over Comcast’s Xfinity broadband network. Users will be able to switch to Cloudflare or NextDNS, which were already included in Mozilla’s program. No date of availability was released. Continue reading Comcast Inks Deal to Adopt Mozilla’s Firefox DNS Encryption

A group of Big Tech companies — including Akamai, Amazon, Facebook, Google, Microsoft and Netflix — have signed on to Mutually Agreed Norms for Routing Security (MANRS), a group designed to improve the Internet’s routing security. The ability to hijack Internet connections has proven too tempting and too easy for some evildoers, and MANRS is intended to tighten up security in an environment that has emboldened criminals and nation-state spies to create ever-bigger, more dangerous disruptions. Continue reading MANRS Group Intends to Ramp Up Internet Routing Security

Amid the disruption of the coronavirus, cloud-computing services have become crucial in keeping people online and connected. Amazon, Google, Microsoft and others also provide the foundational technology for e-commerce, workplace collaboration tools like Slack Technologies, streaming video services such as Netflix and streaming game services. In fact, cloud services are pushed to their limits in some areas. In Australia, Microsoft advised some customers that Azure cloud is running out of capacity in some regions. Continue reading Coronavirus Disruption Leads to Jump in Cloud Services Use

In the wake of the coronavirus and subsequent school closures and remote working policies, more Americans are gaming than ever before. According to third-party database SteamDB, Steam — the most popular PC gaming marketplace — drew a record-breaking 20,313,451 concurrent users. The top game was “Counter-Strike: Global Offensive,” released by Valve in 2012, which broke its own peak numbers on Sunday with 1,023,2290 concurrent players. Verizon also reported that game traffic soared 75 percent from the previous week. Continue reading Video Game Usage Soaring as People Are Confined to Home

At Web Summit 2018 in Lisbon this week, Tim Berners-Lee, the inventor of the World Wide Web, unveiled his “Contract for the Web,” which outlines central principles to protect users from abuse, discrimination, political manipulation and other ills. More than 50 organizations have signed the contract, which was published on Berners-Lee’s World Wide Web Foundation site. The full contract will be published in May 2019, when it is deemed that half the world’s population will be able to access the web. Berners-Lee also published a call-to-action. Continue reading Tim Berners-Lee Publishes Magna Carta for a Better Internet

Led by tech titans Facebook and Microsoft, more than 30 tech companies have signed a Cybersecurity Tech Accord as part of their efforts to protect customers from cyberattacks and “the misuse of their technology.” According to the agreement, tech companies pledge not to assist governments that initiate attacks against “innocent civilians and enterprises.” Among the signatories are companies that power Internet technology and information infrastructure, including Cisco, Cloudflare, Dell, HP, LinkedIn, Nielsen, Nokia, Oracle, Symantec and VMware. Continue reading Tech Firms Sign a Cybersecurity Pledge to Protect Customers

Amazon Web Services just unveiled AWS Shield, a service to protect its customers against distributed denial-of-service attacks, which push websites offline by overwhelming them with junk data. Last month, such cyberattacks made numerous popular websites unavailable. Amazon is offering two levels of service, Standard and Advanced, both of which are available now. The Standard option is a default service to AWS customers at no extra charge, and the Advanced service costs $3,000 per month plus data-related charges. Continue reading AWS Shield Aims to Protect Against Denial-of-Service Attacks

Popular websites have been scrambling to update software and Internet users have been encouraged to change their passwords following the news of an encryption flaw known as the Heartbleed bug, which is already being categorized as one of the biggest security threats the Internet has ever experienced. The bug has affected a number of websites and services (although the extent is not clear), and may have exposed account info including passwords and credit card numbers going back two years. UPDATE: Cisco and Juniper said yesterday that some of their networking products contain the bug, which means sensitive info may have been obtained while moving across corporate networks, home networks and the Internet. Continue reading Bug Causes Scramble to Update Software and Change Passwords