Cloudflare Access now supports RDP
Last fall, the United States FBI warned organizations of an increase in attacks that exploit vulnerabilities in the Remote Desktop Protocol (RDP). Attackers stole sensitive data and compromised networks by taking advantage of desktops left unprotected. Like legacy VPNs, RDP configurations made work outside of the office corporate network possible by opening a hole in it.
Starting today, you can use Cloudflare Access to connect over RDP without sacrificing security or performance. Access enables your team to lock down remote desktops like you do physical ones while using your SSO credentials to authenticate each connection request.
Stronger passwords with identity provider integration
The FBI cited weak passwords and unrestricted port access to RDP ports as serious risks that led to the rise in RDP-based attacks. Cloudflare Access addresses those vulnerabilities by removing them altogether.
When users connect over RDP, they enter a local password to login to the target machine. However, organizations rarely manage these credentials. Instead, users set and save these passwords on an ad-hoc basis outside of the single sign-on credentials used for other services. That oversight leads to outdated, reused, and ultimately weak passwords.
Cloudflare Access integrates with the identity credentials your team already uses. Whether your Continue reading
5G, IoT Security and … Oh, Look, a Dancing Robot!
Security should be a hot topic at MWC 2019. But will it?
MWC Barcelona: 5G, Software, and Security With 100,000 Friends
We here at SDxCentral are also interested in hearing more about the importance of software, network...
Pulse Secure Adds Software-Defined Perimeter, Protects Hybrid IT
Pulse Secure added software-defined perimeter technology to its portfolio, which puts zero-trust...
Ericsson and Juniper 5G Transport, Security Tie-Up Touts Progress
The duo claims 20 contract wins since the partnership was announced last September. This includes a...
Stop the Bots: Practical Lessons in Machine Learning
Bot-powered credential stuffing is a scourge on the modern Internet. These attacks attempt to log into and take over a user’s account by assaulting password forms with a barrage of dictionary words and previously stolen account credentials, with the aim of performing fraudulent transactions, stealing sensitive data, and compromising personal information.
At Cloudflare we’ve built a suite of technologies to combat bots, many of them grounded in Machine Learning. ML is a hot topic these days, but the literature tends to focus on improving the core technology — and not how these learning machines are incorporated into real-world organizations.
Given how much experience we have with ML (which we employ for many security and performance products, in addition to bot management), we wanted to share some lessons learned with regard to how this technology manifests in actual products.
There tend to be three stages every company goes through in the life cycle of infusing machine learning into their DNA. They are:
- Business Intelligence
- Standalone Machine Learning
- Machine Learning Productization
These concepts are a little abstract — so let’s walk through how they might apply to a tangible field we all know and love: dental insurance.
Business Intelligence
Many companies already Continue reading
Fortinet Boosts Security Message for Carrier Push to 5G
The boost is a virtual security processing unit (SPU) technology that powers VNFs for delivering...
Palo Alto Networks Shells Out $560M for SOAR Startup Demisto
The startup will boost Palo Alto Networks’ ability to use artificial intelligence and machine...
Ericsson, Nokia Strike Back at 5G Readiness Concerns
The executive missives come as some European operators have expressed concern that their 5G plans...
Short Take – Long-Tail DoS Attacks
In this Network Collective Short Take, Russ White shares what a long-tail denial of service attack is and why network engineers need to be thinking about them when designing their networks.
Russ White
The post Short Take – Long-Tail DoS Attacks appeared first on Network Collective.
Worth Reading: Blockchain and Trust
One of the rules of sane social media presence should be don’t ever engage with evangelists believing in a particular technology religion, more so if their funding depends on them spreading the gospel. I was called old-school networking guru from ivory tower when pointing out the drawbacks of TRILL, and clueless incompetent (in more polite words) when retweeting a tweet pointing out the realities of carbon footprint of proof-of-work technologies.
Interestingly, just a few days after that Bruce Schneier published a lengthy essay on blockchain and trust, and even the evangelists find it a bit hard to call him incompetent on security topics. Please read what he wrote every time someone comes along explaining how blockchains will save the world (or solve whatever networking problems like VTEP-to-MAC mappings).
SDxCentral Weekly Wrap: Google Pledges $13B for US Data Centers and Offices
SDxCentral Weekly Wrap for Feb. 15, 2019: Google's plan will include geographic and workforce...
Carbonite’s $618.5M Webroot Deal Marries Endpoint Data Protection, Security
The acquisition comes as other data backup companies including Rubrik and Cohesity are also moving...
Oman Data Park Adds Fortinet SD-WAN to Its Managed Services Portfolio
This extends a 7-year partnership between the Oman-based service provider and Fortinet.
Symantec Buys Luminate, Adds Software-Defined Perimeter to Its Cloud Security Arsenal
The acquisition advances Symantec’s strategy of buying born-in-the-cloud security startups and...
Deep Security Startup ShiftLeft Raises $20M Series B
The company’s customers include Nutanix, Raytheon, and Tavant. It has raised almost $30 million...
Juniper’s New 5G On-Ramp Products Include 400 GbE Triton Chip
The new products include a pair of routers that expand Juniper’s Metro Fabric line and a new edge...
SnapRoute CEO Dominic Wilde talks Cloud Native, Containerization, and the Future of Networking
Dominic Wilde, CEO of the Cloud Native-based startup SnapRoute, discusses plans on turning...
Docker Security Update: CVE-2018-5736 and Container Security Best Practices
On Monday, February 11, Docker released an update to fix a privilege escalation vulnerability (CVE-2019-5736) in runC, the Open Container Initiative (OCI) runtime specification used in Docker Engine and containerd. This vulnerability makes it possible for a malicious actor that has created a specially-crafted container image to gain administrative privileges on the host. Docker engineering worked with runC maintainers on the OCI to issue a patch for this vulnerability.
Docker recommends immediately applying the update to avoid any potential security threats. For Docker Engine-Community, this means updating to 18.09.2 or 18.06.2. For Docker Engine- Enterprise, this means updating to 18.09.2, 18.03.1-ee-6, or 17.06.2-ee-19. Read the release notes before applying the update due to specific instructions for Ubuntu and RHEL operating systems.
Summary of the Docker Engine versions that address the vulnerability:
|
Docker Engine Community |
Docker Engine Enterprise |
|
18.09.2 |
18.09.2 |
|
18.06.2 |
18.03.1-ee-6 |
|
|
17.06.2-ee-19 |
To better protect the container images run by Docker Engine, here are some additional recommendations and best practices:
Use Docker Official Images
Official Images are a curated set of Docker repositories hosted on Docker Hub that are designed to: