VMware Cloud on AWS with NSX-T SDDC – Connectivity, Security, and Port Mirroring Demo
VMware Cloud on AWS with NSX-T SDDC – Connectivity, Security, and Port Mirroring Demo
VMware Cloud on AWS with NSX-T SDDC – Networking and Security
Watch the embedded demo below or view on the NSX YouTube channel here to see several cool NSX-T networking and security capabilities within VMware Cloud on AWS. The demo shows connectivity from VMware Cloud on AWS SDDC to on-prem via AWS Direct Connect Private VIF. Access to native AWS services from VMware Cloud on AWS SDDC is also shown. Additionally, Edge security policies, distributed firewall/micro-segmentation, and port mirroring are demonstrated. Continue reading
Webinar: Can Consumers Trust Retailers’ Email? Findings from OTA’s Email Marketing & Unsubscribe Audit
Next Tuesday, 18 December, at 2PM ET (1900 UTC), we’ll be holding a webinar to discuss the results of the Online Trust Alliance’s 5th annual Email Marketing & Unsubscribe Audit.
Two Internet Society organization members from Yes Marketing and Endurance/Constant Contact will co-present with the Internet Society’s Jeff Wilbur, and it should be an interesting discussion that touches on various aspects of email authentication and best practices, online trust, and consumer confidence.
Please register at https://isoc.zoom.us/webinar/register/WN_KQ5DzjOeTEGBF0kjNaff7A. It will be recorded if you can’t make it on Tuesday.
The fifth annual Email Marketing & Unsubscribe Audit analyzed the email marketing practices of 200 of North America’s top online retailers and offered advice on providing choice and control to their consumers as well as technical best practices for retailers and marketers to follow. You can read more about it in Kenneth Olmstead’s recap blog post or view the infographic with key findings.
As always, you can follow along with us on Twitter, Facebook, or LinkedIn. We also have a Facebook event for this webinar at https://www.facebook.com/events/1741572979278130/.
I hope you’ll register and join us on Tuesday, and invite you to share this with anyone you think may be Continue reading
Masergy’s New CEO Is Tasked to Grow Its SDN-Based Offerings
The company was pretty revolutionary with its idea to layer SDN on top of multiple third-party transport before all the SD-WAN vendors conceived of this.
Comcast Is Working on a uCPE That Runs Multiple VNFs With Its SD-WAN
The service provider is hoping to launch a cost-effective uCPE platform that supports more VNFs along with its SD-WAN early next year.
DPDK — One API to Rule Them All?
DPDK has extended its reach beyond packet processing and could be a universal API for other acceleration functions needed for effective NFV.
Napatech and Intel Partner on FPGA Technology for Standard Servers
The big hyperscalers use field programmable gate array technology on standard servers in their data centers. But there’s a trend for other enterprises to emulate these hyperscalers.
Notes about hacking with drop tools
In this report, Kasperky found Eastern European banks hacked with Raspberry Pis and "Bash Bunnies" (DarkVishnya). I thought I'd write up some more detailed notes on this.Drop tools
A common hacking/pen-testing technique is to drop a box physically on the local network. On this blog, there are articles going back 10 years discussing this. In the old days, this was done with $200 "netbook" (cheap notebook computers). These days, it can be done with $50 "Raspberry Pi" computers, or even $25 consumer devices reflashed with Linux.A "Raspberry Pi" is a $35 single board computer, for which you'll need to add about another $15 worth of stuff to get it running (power supply, flash drive, and cables). These are extremely popular hobbyist computers that are used everywhere from home servers, robotics, and hacking. They have spawned a large number of clones, like the ODROID, Orange Pi, NanoPi, and so on. With a quad-core, 1.4 GHz, single-issue processor, 2 gigs of RAM, and typically at least 8 gigs of flash, these are pretty powerful computers.
Typically what you'd do is install Kali Linux. This is a Linux "distro" that contains all the tools hackers want to Continue reading
Pivot3 Adds Encryption, Key Management to HCI Stack
Adding these policy-based security capabilities to the Pivot3 Intelligence Engine enables customers to integrate data encryption and key management into the same workflow for managing applications and storage.
Etcd Joins CNCF’s Growing Cache of Open Source Projects
Etcd is the primary storage location for Kubernetes and needs to be established before Kubernetes can be run on a system.
Arista Works With Red Hat and Tigera on Container Environments for Enterprises
The collaboration focuses on the three biggest container pain areas for enterprises: 1) networking; 2) visibility; and 3) security.
Senegal Kicks Off Enhancing IoT Security Project
On April 4, 2018, the Canadian Multistakeholder Process: Enhancing Internet of Things (IoT) Security held its first convening in partnership with the Canadian Internet Registration Authority (CIRA); CANARIE; Innovation, Science and Economic Development (ISED) Canada; and the Canadian Internet Policy and Public Interest Clinic (CIPIC). Over 80 participants from government, academia, public interest, industry, and other organizations attended the first meeting and many have continued to engage at in-person and virtual meetings ever since. Over the past eight months, this group has experienced significant success in the areas of consumer education, labeling, and network resiliency. And these achievements have been well-noted on a global scale.
A delegation from Senegal came to Canada in July to meet with members of the Enhancing IoT Security oversight committee. The group was comprised of government officials, Senegal Chapter members, and staff from the Internet Society’s African Bureau. The delegation met with Canadian government officials, technologists, public interest groups, and North American Bureau staff to learn more about how and why the IoT security project was initiated, and what the group had accomplished to date. The group discussed the significant successes the Canadian multistakeholder group had already achieved, the challenges it faced, Continue reading
VMware Rolls Out NSX Service Mesh Based on Istio
The NSX Service Mesh beta will initially support Cloud PKS (formerly known as VMware Kubernetes Engine or VKE), but VMware plans to extend it to any Kubernetes environment.
SDxCentral Weekly Wrap: AT&T White Box Routers Carry Live Traffic
SDxCentral Weekly Wrap for Dec. 7, 2018: Huawei deals with a new scandal, Symantec's shakeup continues, and more of what you missed this week.
BT Excludes Huawei From Its 5G Core, Huawei’s CFO Is Arrested in Canada
Huawei's' chief financial officer who is also the daughter of the founder of Huawei, was arrested in Canada at the request of the United States. The reason for the arrest has not been disclosed.
The Rising Costs of Cybersecurity Are Driving IT Modernization
Regardless of size cybersecurity has become a massive source of frustration for organizations all sizes. A greater percentage of IT spending is now being consumed by cybersecurity products and services.
There’s Nothing Universal About the Universal CPE
Achieving standard, commodity uCPEs will be a longer journey than anticipated.
Kubernetes Discloses Major Security Flaw
It affects all Kubernetes-based products and services, and it gives hackers full administrative privileges on any compute node being run in a Kubernetes cluster.
Nokia Threat Report: IoT Botnets Skyrocketed in 2018 and 5G Will Make It Worse
“If you have an IoT device and it has any vulnerability and it’s visible from the Internet, it will be attacked in a number of minutes,” said Kevin McNamee, director of Nokia’s Threat Intelligence Lab and lead author of the report.
Join Us to Discuss Attack Response at Internet Scale
How do we coordinate responses to attacks against Internet infrastructure and users? Internet technology has to scale or it won’t survive for long as the network of networks grows ever larger. But it’s not just the technology, it’s also the people, processes and organisations involved in developing, operating and evolving the Internet that need ways to scale up to the challenges that a growing global network can create.
One such challenge is unwanted traffic, ranging from spam and other forms of messaging-related abuse to multi-gigabit distributed denial of service attacks. Numerous incident response efforts exist to mitigate the effects of these attacks. Some are focused on specific attack types, while others are closed analysis and sharing groups spanning many attack types.
We are helping to bring together operators, researchers, CSIRT team members, service providers, vendors, information sharing and analysis centre members to discuss approaches to coordinating attack response at Internet scale. The Internet Society is sponsoring a two-day “Coordinating Attack Response at Internet Scale (CARIS) Workshop” intended to help build bridges between the many communities working on attack response on the Internet and to foster dialogue about how we can better collaborate.
The workshop will take place on February 28 Continue reading
Juniper’s ATP Appliance Works With Any Third-Party Firewall or Security Data Source
New capabilities allow security teams to create custom data collectors in the appliance using threat data from any Juniper or third-party firewall. This eliminates the need for custom code or pre-defined integrations.