0

U.S. Leads the World in the Origination of DDoS Attacks, Says CenturyLink Report

CenturyLink tracks botnets and the C2 servers they communicate with to thwart distributed denial of service attacks.

0

McAfee CEO Warns Security Breach Fatigue Could Lead to ‘Digital 9-11’

One in four organizations using public cloud has had their data stolen, according to McAfee’s latest cloud security report.

0

Cisco’s John Stewart Calls on Security Sector to ‘Stop the Madness’

Cybercrime will be a $6 trillion business by 2021, up from $3 trillion in 2016.

0

Short Take: Disaggregating Firewalls

<div style=”width: 75%; float: left;”>

</div>

0

Qualcomm’s Vision Intelligence IoT Platform Features an AI Engine

The chip company’s IoT strategy includes pushing processing to the edge, instead of the cloud.

0

No More Meltdowns: Cisco and Microsoft Will Use Intel’s Silicon-Level Security

An integration with Cisco Tetration will combine platform telemetry with machine learning algorithms to improve threat detection.

0

Google Kaniko Tool Wrenches on Container Privilege Concern

The open source tool allows for the building of a container image without providing privileged root access.

0

mmproxy – Creative Linux routing to preserve client IP addresses in L7 proxies

0

Microsoft’s Smith Calls for Digital Geneva Convention, Launches Cybersecurity Tech Accord

War and the battlefield themes dominated the opening keynotes at the annual RSA Conference 2018, just a day after a joint U.S. and U.K. alert warned that Russians are targeting American and British organizations’ network infrastructure devices, such as routers.

0

Do We Need Regulations For IoT Security?

Security regulations for IoT probably won't make much difference--until people start getting hurt.

0

The Russians Are Targeting Internet Routers for Cyberattacks, Says Joint U.S., U.K. Alert

Cisco, itself, recently issued a warning about its Smart Install client, saying it was vulnerable to cyber attacks by nation-state actors.

0

VMware AppDefense Secures Containers, Integrates With Aqua

The security product exposes an API to accept workload context from container orchestration systems.

0

VMware AppDefense Introduces Least Privilege Security for Containerized Applications

Summary: VMware AppDefense continues to advance with new capabilities, new partnerships, international expansion, and increasing customer adoption

 

As worldwide spending on IT security continues to climb, the odds of falling victim to a data breach have risen to 1 in 4. Despite a multitude of security products on the market and large budgets to purchase them, businesses are not significantly safer. The commoditization of cyber crime has made it possible for virtually anyone with a computer to launch a sophisticated attack against a company and new attacks are being developed every day. This means the continued focus on chasing threats remains relatively ineffective to stamping out the broader challenges facing IT security.

This is a scary prospect for CISOs who are faced with securing the applications and data living in increasingly dynamic, distributed IT environments. And as more businesses embrace modern, agile application development processes, the problem of implementing security at the speed of the business is exacerbated – security is often seen as an obstacle to progress.

We created VMware AppDefense to address these very issues, with a unique approach that leverages the virtualization layer to protect applications by “ensuring good” rather than “chasing bad”. AppDefense leverages VMware’s Continue reading

0

Microsoft Turns to Former Foe Linux to Secure IoT Devices

The Azure Sphere technology includes a thumbnail-sized micro-controller unit, a Linux-based operating system, and a cloud-based security service.

0

BlueData Sees Kubernetes as a Bridge to Big Data

The company is looking to support unmodified big data software in containers so data scientists can spend their time analyzing data rather than fighting hardware and drivers.

0

ZTE Forbidden From Buying U.S. Components for 7 Years

A U.K. government agency is also recommending that telcos not purchase equipment from ZTE.

0

IBM Injects Double AI Dose Into Security Platform, Managed Services

An IBM security report found a 424-percent jump in breaches related to misconfigured cloud infrastructure in 2017, largely due to human error.

0

Woot Woot! 16 Weeks of Security Learning!! — SECURITY ZERO-TO-HERO

Just signed up last week for the Micronic’s “Security Zero-to-Hero” class. I am beyond stoked and excited!  I have been searching for awhile now for a class to take to help me really “go to the next level” in Security. But I just wasn’t finding the kind of class I was looking for. Every class I saw offered was either focused on one narrow aspect of the security landscape OR focused on helping people pass the CCIE Security.  Neither or which matched what I was searching for.

The class I was hoping to find would be structured more like a semester long college class with real world production discussions and also hands on labs. A class where … over weeks of learning and labbing in my personal time… the learning would just continue to seep deeper and deeper and the “aha” moments would just keep coming.  There were lots of one week classes to choose from. But, for me,  I just don’t see a one week class as a great “immersive” experience  into the complex landscape of the world of Security.  There is a “learning limit”, for me, as to how much my brain can retain Continue reading

0

At RSA USA 2018 in San Francisco this week? Join the IoT Security conversation on Tuesday, April 17

Are you attending the RSA USA 2018 Conference this week in San Francisco? If so, please plan to join this panel session happening Tuesday, April 17, 2018, from 3:30 – 4:14pm (PDT):

IoT Trust by Design: Lessons Learned in Wearables and Smart Home Products

Moderated by my colleague Jeff Wilbur, Director of the Online Trust Alliance (OTA), the panel abstract is:

---

The world has awakened to the need for tighter security and privacy in consumer-grade IoT offerings. This panel will present a trust framework for IoT, and wearable and smart home experts will discuss top attack vectors, typical vulnerabilities in devices, apps and systems, common reasons for design compromise, the evolution of security and privacy in IoT and where it needs to go.

---

They will be discussing the OTA’s IoT Trust Framework, as well as some new mechanisms available to help enterprises understand the risks associated with IoT devices.

If you believe securing the Internet of Things is a critical step to having a secure Internet, please join Jeff and his panelists to learn more.

Unfortunately there appears to be no live stream available but they do seem to be recording many of the sessions. If Jeff’s Continue reading

0

Notes on setting up Raspberry Pi 3 as WiFi hotspot

I want to sniff the packets for IoT devices. There are a number of ways of doing this, but one straightforward mechanism is configuring a "Raspberry Pi 3 B" as a WiFi hotspot, then running tcpdump on it to record all the packets that pass through it. Google gives lots of results on how to do this, but they all demand that you have the precise hardware, WiFi hardware, and software that the authors do, so that's a pain.


I got it working using the instructions here. There are a few additional notes, which is why I'm writing this blogpost, so I remember them.
https://www.raspberrypi.org/documentation/configuration/wireless/access-point.md

I'm using the RPi-3-B and not the RPi-3-B+, and the latest version of Raspbian at the time of this writing, "Raspbian Stretch Lite 2018-3-13".

Some things didn't work as described. The first is that it couldn't find the package "hostapd". That solution was to run "apt-get update" a second time.

The second problem was error message about the NAT not working when trying to set the masquerade rule. That's because the 'upgrade' updates the kernel, making the running system out-of-date with the files on the disk. The solution to that is make Continue reading