Category Archives for "Network World SDN"

New Azure tool helps IT tame SaaS apps

More organizations are moving their data out of their data centers and into the cloud, which complicates IT’s efforts to keep track of applications in use. With the new Microsoft Cloud App Security within Microsoft Azure, IT and security teams can step up application discovery and apply controls in line with existing security, privacy, and compliance policies.Most enterprises rely on cloud applications, whether or not they are officially sanctioned. Shadow IT is pervasive, with employees signing up for SaaS applications on their own without first going through IT. According to Microsoft’s statistics, an employee uses 17 cloud applications on average, and an organization shares 13 percent of its files externally, of which a quarter are shared publicly. Business units do what they must to get the job done, but IT is left in the dark about what applications employees use and where corporate data is stored.To read this article in full or to leave a comment, please click here

Microsoft to release a Surface Phone in 2017

There have been rumors floating among Microsoft enthusiast sites that the company plans to replace its Lumia brand with a Surface branded phone, bringing it at least into name parity with the more successful tablet line.Now Windows Central, which has a decent track record on mobile news, saysthat there will be a Surface Phone line, but not until next year. In the meantime, there would be a marginal effort with the Lumia, a $7.7 billion mistake that can be blamed on the prior CEO. WC theorizes this is to continue Windows 10 Mobile development, give OEM partners time to make new hardware and give Microsoft time to come back with a bang.To read this article in full or to leave a comment, please click here

Hacking Team lost its license to sell surveillance malware outside Europe

Oh man, what a shame, Italy’s Hacking Team had its global export license revoked and now it can’t sell its spyware outside of Europe without getting special approval.It’s not even been a year since the Hacking Team became the Hacked Team, but after being pwned the company apparently didn’t crawl off and die. The Hacking Team’s newest woes, which were first reported by the Italian newspaper Il Fatto Quotidiano, means the company can’t easily conduct business as usual by selling its Remote Control Software to just anyone who wants it.To read this article in full or to leave a comment, please click here

69% off Photive Wireless Secure Fit Earbuds – Deal Alert

Photive's PH-BTE70 Wireless Bluetooth Earbuds are designed to be sweatproof, and to stay in your ears while you're busy being active. It currently averages 4 out of 5 stars from over 1,180 people on Amazon (see reviews). The PH-BTE70 has a 33ft extended wireless range and delivers up to 6 hours of music on a single charge. Reviewers indicate that they are comfortable, stylish, and deliver very good sound quality for the price -- which right now is discounted 69%.To read this article in full or to leave a comment, please click here

Microsoft brings Bash to Windows with new beta build

One of the major announcements from Microsoft's Build developer conference last week was that the company was bringing the popular Bash command line interface to Windows 10 with a new Linux subsystem. Now, developers can give it a shot with a new beta build of the operating system, which Microsoft released Wednesday morning.People on the Windows Insider Program's fast ring will get access to the build, which includes a wide variety of other new features, too. Foremost among them are a set of new Cortana features that link their Windows or Android phones with users' PCs in a variety of ways.To read this article in full or to leave a comment, please click here

FIRST LOOK: Vivaldi 1.0, the new web browser for the old school

Vivaldi springs forthWhile the trend in modern browsers is to provide as streamlined an experience as possible, with simplicity and ease of use as the guiding principles, there are plenty of users who want powerful, rich feature sets, instead. The team behind Vivaldi, including Opera browser co-creator Jon von Tetzchner, is hoping that their new browser’s blend of throwback functionality and modern tech will catch on. You can download Vivaldi here on Macs, Windows or Linux, but first check out the highlights in our slideshow.To read this article in full or to leave a comment, please click here

Massive application-layer attacks could defeat hybrid DDoS protection

Security researchers have recently observed a large application-layer distributed denial-of-service attack using a new technique that could foil DDoS defenses and be a sign of things to come for Web application operators.The attack, which targeted a Chinese lottery website that used DDoS protection services from Imperva, peaked at 8.7Gbps. In a time when DDoS attacks frequently pass the 100Gbps mark, 8.7Gbps might not seem much, but it's actually unprecedented for application-layer attacks.DDoS attacks target either the network layer or the application layer. With network-layer attacks, the goal is to send malicious packets over different network protocols in order to consume all of the target's available bandwidth, essentially clogging its Internet pipes.To read this article in full or to leave a comment, please click here

Microsoft’s new Raspberry Pi 3 kit makes it easy to create new devices

Microsoft wants to make the Raspberry Pi 3 computer easier to use for people who want to be device makers but haven't worked with hardware before.Microsoft is developing the Seeed Windows 10 IoT Core Grove Kit with China-based Seeed Studio. The kit has all the hardware and software needed to start creating cool new devices.Contents of the kit include the Raspberry Pi 3, a breakout board, connectors, cables and a smartphone-like screen. The kit will be available in the summer, though the companies didn't immediately provide a price."If you're interested in getting started with software, you know your hardware ... but you're scared of plugging in your hardware and electrocuting yourself, this kit is for you," said Daniel Rosenstein, lead principal program manager at Microsoft.To read this article in full or to leave a comment, please click here

Tech-support scammers claim your email has been hacked

The Federal Trade Commission is warning of “a new twist” on the old tech-support scam.From an FTC blog post: Lately, we’ve heard reports that people are getting calls from someone claiming to be from the Global Privacy Enforcement Network. Their claim? That your email account has been hacked and is sending fraudulent messages. They say they’ll have to take legal action against you, unless you let them fix the problem right away.If you raise questions, the scammers turn up the pressure – but they’ve also given out phone numbers of actual Federal Trade Commission staff (who have been surprised to get calls). The scammers also have sent people to the actual website for the Global Privacy Enforcement Network. (It’s a real thing: it’s an organization that helps governments work together on cross-border privacy cooperation.)To read this article in full or to leave a comment, please click here

Apple fixes iOS lock screen bypass that gives access to photos, contacts

Apple has reportedly fixed a vulnerability that could have allowed hackers to bypass the passcode on iPhone 6s and 6s Plus running iOS 9.3.1 in order to access the address book and photos.The bypass technique was discovered by researchers from German security firm Evolution Security and takes advantage of Siri's integration with apps like Twitter or Facebook and the new 3D Touch feature that's only available on the iPhone 6s and 6s Plus models.On a locked device, attackers can call up Siri and ask to search for items that contain @ tags using Twitter, Facebook or Yahoo. Then they can locate a string like an email address and use the 3D Touch hard push to bring out the context menu for it.To read this article in full or to leave a comment, please click here

Frontier Communications continues to take a beating from Verizon castoffs

The transition of 3.7 million Verizon landline customers in California, Florida and Texas to Frontier Communications, as announced on April 1 of all days, continues to be a mess due to a combination of technical and communications issues.Unhappy landline phone, broadband FiOS Internet and video-on-demand customers have vented to Frontier support, including on social media sites, to express their frustration. Some have blamed Verizon as well, for not ensuring its residential, small/medium business and enterprise customers would receive a smooth transition after grabbing its $10.54 billion in the sale and shifting 9,400 of its employees to Frontier. (Though Verizon has blamed uncertainty round federal Internet regulation (i.e., net neutrality) for forcing it to sell the assets in the first place.)To read this article in full or to leave a comment, please click here

Volkswagen chooses OpenStack for private cloud

The second largest car manufacturer in the world, Volkswagen Group, will use the open-source cloud computing platform OpenStack to build a private cloud that will host websites for its brands VW, Audi and Porsche, and be a platform for innovating automotive technology, the company announced today.+MORE AT NETWORK WORLD: Mirantis beats out Red Hat for big VW OpenStack deal | Jeff Bezos to shareholders: At 10 years old, AWS is bigger than Amazon was and growing faster +To read this article in full or to leave a comment, please click here

WhatsApp: The FBI’s worst nightmare

If encryption is something to be feared in the hands of terrorists, WhatsApp just delivered them a tool that will give the FBI nightmares much worse than the encryption on iPhones. WhatsApp enlisted the help of Open Whisper Systems to implement the encryption, and according to that company’s blog, “This includes chats, group chats, attachments, voice notes, and voice calls across Android, iPhone, Windows Phone, Nokia S40, Nokia S60, Blackberry, and BB10.” This will likely drive law enforcement crazy, the FBI in particular, because it makes it impossible for WhatsApp to obey court orders to decrypt specified communications. Even if it wanted to comply, it couldn’t. The encryption is set up between the endpoints in the communication and WhatsApp just moves the traffic.To read this article in full or to leave a comment, please click here

At MIT, a glimpse into our techno future

In the future, you may use aeroponic systems at home to bring in water mixed with nutrients. You'll use this water to grow vegetables, home-grown food that can cut your produce costs in half.Your commute to work may be on a covered, quasi-bike vehicle that uses battery power to assist the pedaling rider (who gets healthier from the effort).And the era of the large suburban homes will end. Why have multiple rooms for various purposes?"The cost of transformable furniture is much less than a mortgage," said David Rose, a visiting scientist at the MIT Media Lab and author of Enchanted Objects: Innovation, Design and the Future of Technology. Rose was at Tuesday's MIT "Connected Things" Enterprise Forum.To read this article in full or to leave a comment, please click here

Hospitals hacks put patient health at risk

A report that highlights the vulnerabilities in medical devices and the risks they pose to patient health issued by Independent Security Evaluators comes at an opportune time as the past month has shown that hospitals are becoming targets for criminals.Ted Harrington, executive partner at Independent Security Evaluators said, "It’s a scary report in a lot of ways, but our hope is to organize an industry in recognizing these problems. We are trying to make an entire industry start changing, especially one that is very regulated and complex. The conversations need to start happening."To read this article in full or to leave a comment, please click here

Kinder, gentler hacks: A bevy of low-stakes early computer breaches

When the world was newImage by National Security AgencyToday, IT security is a deadly serious business. But in the early days of computing, the stakes were a bit lower. Maybe it's just that we're seeing it through a nostalgic lens, but the computer breaches in the '70s, '80s, and '90s just seemed a bit more ... fun? We spoke to some people who were there, who enjoyed reminiscing about a gentler era, whether they were the ones hacking or the ones being hacked.To read this article in full or to leave a comment, please click here

Are you failing Security Basics 101?

Security tools are getting more sophisticated. DevOps is bringing us automation in operations, and a more holistic way of looking at how we manage infrastructure. But all too often, we’re not doing basic things to improve security and reliability, like protecting against known vulnerabilities.Hewlett Packard Enterprise’s 2016 Cyber Risk Report points out that “29 percent of all exploits samples discovered in 2015 continued to use a 2010 Stuxnet infection vector that has been patched twice.” It takes an average of 103 days for companies to patch known network and security vulnerabilities, according to a study vulnerability risk management vendor NopSec ran last year; that goes down to 97 days for healthcare providers and up to 176 days for financial services, banking and education organisations. That’s not taking into account misconfigurations, or lack of communication between different teams.To read this article in full or to leave a comment, please click here

Who’s the boss of workplace culture?

Who really drives culture in your workplace? According to a study from The Workforce Institute at Kronos and the research and consultancy firm, HR believes it does. So do managers and executives. So, too, do your employees.There's clearly a disagreement about who's in charge of creating, maintaining and supporting workplace culture, but there's one thing every group agrees on: Workplace culture is incredibly important. The disconnect, though, isn't just comical. Without understanding the who, what and why of workplace culture and how it affects engagement, retention and loyalty, organizations risk destroying it and losing out on top talent.To read this article in full or to leave a comment, please click here

How to build cybersecurity into outsourcing contracts

Any time a company shares data or provides access to third-parties, it increases its vulnerability to unauthorized access or breach. So in today’s IT environment in which enterprises partner with multiple IT service providers, who in turn may have multiple subcontracters, cyber risks increase exponentially.To read this article in full or to leave a comment, please click here(Insider Story)