Yahoo data breach affects at least 500 million users

A massive breach at Yahoo compromised account details from at least 500 million users, and the company is blaming the attack on state-sponsored hackers.Names, email addresses, telephone numbers, and hashed passwords may have been stolen as part of the hack, which occurred in late 2014, Yahoo said.The company reported the breach on Thursday, after a stolen database from the company went on sale on the black market last month.However, the hacker behind the sale claimed that the stolen database involved only 200 million users and was likely obtained in 2012.To read this article in full or to leave a comment, please click here

Yahoo data breach affects at least 500 million users

A massive breach at Yahoo compromised account details from at least 500 million users, and the company is blaming the attack on state-sponsored hackers. Names, email addresses, telephone numbers, and hashed passwords may have been stolen as part of the hack, which occurred in late 2014, Yahoo said. The company reported the breach on Thursday, after a stolen database from the company went on sale on the black market last month. However, the hacker behind the sale claimed that the stolen database involved only 200 million users and was likely obtained in 2012.To read this article in full or to leave a comment, please click here

Homeland Security issues call to action on IoT security

U.S. Department of Homeland Security’s Robert Silvers says his purpose in speaking at the Security of Things Forum in Cambridge on Thursday wasn’t to scare anyone, but then he went ahead and called on everyone in the room to “accelerate everything you’re doing” to secure the internet of things. As the Assistant Secretary for Cyber Policy at DHS says, IoT security is a public safety issue that involves protecting both the nation’s physical and cyber infrastructures.Acknowledging a growing national dependency on the internet of things, be it in the medical, utility or transportation fields, Silvers says IoT has his department’s full attention. And a straightforward undertaking it is not, he says.To read this article in full or to leave a comment, please click here

Homeland Security issues call to action on IoT security

U.S. Department of Homeland Security’s Robert Silvers says his purpose in speaking at the Security of Things Forum in Cambridge on Thursday wasn’t to scare anyone, but then he went ahead and called on everyone in the room to “accelerate everything you’re doing” to secure the internet of things. As the Assistant Secretary for Cyber Policy at DHS says, IoT security is a public safety issue that involves protecting both the nation’s physical and cyber infrastructures.Acknowledging a growing national dependency on the internet of things, be it in the medical, utility or transportation fields, Silvers says IoT has his department’s full attention. And a straightforward undertaking it is not, he says.To read this article in full or to leave a comment, please click here

Federal cyber incidents grew an astounding 1,300% between 2006 and 2015

That’s one amazingly scary number: Since 2006 cyber incidents involving the Federal government have grown 1,300%.Another Government Accountability Office report on Federal cybersecurity out this week offers little in the way of optimism for the cyber-safeguard of the massive resources the government has control over.+More on Network World: Network security weaknesses plague federal agencies+“Federal information systems and networks are inherently at risk. They are highly complex and dynamic, technologically diverse, and often geographically dispersed. This complexity increases the difficulty in identifying, managing, and protecting the myriad of operating systems, applications, and devices comprising the systems and networks. Compounding the risk, systems used by federal agencies are often riddled with security vulnerabilities—both known and unknown. For example, the national vulnerability database maintained by the Mitre Corporation has identified 78,907 publicly known cybersecurity vulnerabilities and exposures as of September 15, 2016, with more being added each day,” the GAO wrote.To read this article in full or to leave a comment, please click here

Federal cyber incidents grew an astounding 1,300% between 2006 and 2015

That’s one amazingly scary number: Since 2006 cyber incidents involving the Federal government have grown 1,300%.Another Government Accountability Office report on Federal cybersecurity out this week offers little in the way of optimism for the cyber-safeguard of the massive resources the government has control over.+More on Network World: Network security weaknesses plague federal agencies+“Federal information systems and networks are inherently at risk. They are highly complex and dynamic, technologically diverse, and often geographically dispersed. This complexity increases the difficulty in identifying, managing, and protecting the myriad of operating systems, applications, and devices comprising the systems and networks. Compounding the risk, systems used by federal agencies are often riddled with security vulnerabilities—both known and unknown. For example, the national vulnerability database maintained by the Mitre Corporation has identified 78,907 publicly known cybersecurity vulnerabilities and exposures as of September 15, 2016, with more being added each day,” the GAO wrote.To read this article in full or to leave a comment, please click here

Site that leaked Colin Powell’s emails dumps First Lady’s passport

The site that leaked Colin Powell's stolen emails has also allegedly obtained a scan of Michelle Obama's passport. On Thursday, the site DCLeaks began circulating the passport image on Twitter and leaking it to the press. The image includes the U.S. First Lady's alleged passport number. The site tweeted out the scan after obtaining stolen emails it claims are from a White House aide named Ian Mellul. The files, which are posted on DCLeaks, appear to come from Mellul's Gmail account and date back to February 2015.Although DCLeaks claims to be the work of "American hacktivists," some security experts suspect that the site is a front for Russian state-sponsored hackers.  To read this article in full or to leave a comment, please click here

Site that leaked Colin Powell’s emails dumps First Lady’s passport

The site that leaked Colin Powell's stolen emails has also allegedly obtained a scan of Michelle Obama's passport. On Thursday, the site DCLeaks began circulating the passport image on Twitter and leaking it to the press. The image includes the U.S. First Lady's alleged passport number. The site tweeted out the scan after obtaining stolen emails it claims are from a White House aide named Ian Mellul. The files, which are posted on DCLeaks, appear to come from Mellul's Gmail account and date back to February 2015.Although DCLeaks claims to be the work of "American hacktivists," some security experts suspect that the site is a front for Russian state-sponsored hackers.  To read this article in full or to leave a comment, please click here

What’s Still Good, Bad & Ugly About NFV

It ain't all bad (or ugly), an Oracle OpenWorld session finds.

Ericsson to Cut 3K Jobs in Sweden By Shuttering Manufacturing Sites

The move is expected to save the company $350 million.

Citigroup is cutting costs by making storage simpler

Citigroup is using software-defined storage to build an infrastructure that could last 25 years – while generations of hardware come and go.The financial services company needs to transform its storage architecture to deal with growing and changing demands, says Dan Maslowski, global head of storage and engineered systems. By simplifying its architecture, Citigroup expects to slash its operational expenses, which make up most of its storage costs.Citigroup’s need for storage is growing so fast that if costs don’t go down, the company’s spending on storage might eat up its entire IT budget in a few years, Maslowski told an audience at the Storage Developer Conference in Santa Clara, California, on Tuesday.To read this article in full or to leave a comment, please click here

Cisco Teams with Salesforce on Cloud & IoT

Cisco’s Jasper plays a role in this partnership.

On the ‘net: Author Interview at the LeanPub Blog

Len: Hi, I’m Len Epp from Leanpub, and in this Leanpub podcast I’ll be interviewing Daniel Dib and Russ White. Russ is based in North Carolina and has been working with large-scale networks for more than 20 years and written a number of books, co-authored over 40 software patents, and spoken at many different venues around the world. His blog is called Network and you can find it at ntwrk.guru. He’s currently on the architecture team at LinkedIn, where he works on next-generation data-centric designs, complexity, security, and privacy. —LeanPub Blog

The post On the ‘net: Author Interview at the LeanPub Blog appeared first on 'net work.

56% off Cambridge SoundWorks OontZ Angle 3XL Water Resistant Wireless Bluetooth Speaker – Deal Alert

The OontZ Angle 3XL was designed and engineered by Cambridge SoundWorks to be their most powerful, best sounding speaker yet. Features a powerful 40 Watt AMP, delivering 20 Watts RMS loud enough to fill even large rooms with high quality sound. Perfect for parties, playing outdoors, at the pool and at the beach. Distortion-free even at maximum volume. IPX5 water resistance means it'll be OK with accidental splashes or rain. A built-in USB power bank can charge your iPhone or Smartphone while you're enjoying music. Other features include: Up to 8 hours of battery play time; Built in mic for speakerphone capability; Play from laptops, PCs and non-Bluetooth devices using the included 3.5mm audio cable connected to the aux-in jack. The Angle 3XL is highly rated on Amazon with 4.5 out of 5 stars from over 750 customers (read reviews). Right now its list price has been reduced a generous 56% to just $110. See it now on Amazon.To read this article in full or to leave a comment, please click here

2016 Cloud Automation & DevOps Survey is Live

Take survey and enter to win one of two $200 Amazon.com Gift Cards.

IDG Contributor Network: Is today’s network cost structure indicative of the future?

I’ve been a fan of software-defined networking (SDN) since my first conversation about software-based firewalls for an application deployment in 2004. Our goal was to leverage the concepts of grid computing to grow and shrink the web and application server environments in response to load, and we got the idea to throw the firewall into the mix. What made our approach possible was the ocean’s depth of software development knowledge on our team tempered by a puddle’s depth knowledge of networking.+ Also on Network World: Survey shows growing interest in SDN, where and how companies might deploy the tech +To read this article in full or to leave a comment, please click here

IDG Contributor Network: Is today’s network cost structure indicative of the future?

I’ve been a fan of software-defined networking (SDN) since my first conversation about software-based firewalls for an application deployment in 2004. Our goal was to leverage the concepts of grid computing to grow and shrink the web and application server environments in response to load, and we got the idea to throw the firewall into the mix. What made our approach possible was the ocean’s depth of software development knowledge on our team tempered by a puddle’s depth knowledge of networking.+ Also on Network World: Survey shows growing interest in SDN, where and how companies might deploy the tech +To read this article in full or to leave a comment, please click here

60% off HDMI 2.0 High Speed 4k-Ready Gold Plated 6ft Cable – Deal Alert

If you're looking for cables that can keep up with the high demands of today's video tech, you may want to consider this cable from SecurOMax, currently discounted 60%. This heavy duty, high quality 6ft HDMI 2.0 cable will drive full 4K 60hz 2160P. Something that older HDMI cables just can't pull off. It features more expensive, thicker 28 AWG wiring which enables 18 GBPS speed required for all HDMI 2.0 features. Its connectors are 24K gold-plated, with soldering points covered by a thick aluminum shell to achieve better shielding and lower SNR. Ethernet & audio return channels eliminate extra network and audio cables. All of this while also being backwards compatible. The cable by SecurOMax averages an impressive 4.7 out of 5 stars from over 1,000 customers (91% rate a full 5 stars: read reviews), and right now its price has been reduced significantly to just $11.99. To read this article in full or to leave a comment, please click here

East-West Encryption: The Next Security Frontier?

VMware says it is looking at East-West encryption inside the data center, adding another layer of security to the SDDC.

Worth Reading: Cryptocurrency mining malware infecting NAS’

A malware variant named Mal/Miner-C (also known as PhotoMiner) is infecting Internet-exposed Seagate Central Network Attached Storage (NAS) devices and using them to infect connected computers to mine for the Monero cryptocurrency. Miner-C, or PhotoMiner, appeared at the start of June 2016, when a report revealed how this malware was targeting FTP servers and spreading on its own to new machines thanks to worm-like features that attempted to brute-force other FTP servers using a list of default credentials. —Softpedia

The post Worth Reading: Cryptocurrency mining malware infecting NAS’ appeared first on 'net work.