NetworkingNexus.net

Can credit cards with CVVs that automatically change every hour kill off card fraud?

When shopping online and paying with a credit or debit card, you have to enter the three-digit CVV (card verification value) from the back. These are card-not-present transactions and entering the security code is supposed to help verify that you physically have the card. But cyber thugs have plenty of ways to get hold of your CVV and burn through your money until you happen to notice the purchases and cancel your card. In fact, card-not-present transactions made up 65 percent of all card fraud.A French digital payment security company called Oberthur Technologies (OT) thinks it can do away such fraud by changing static CVVs to dynamic CVVs which change every hour. If a crook gets hold of your card number, his or her shopping spree could last no more than an hour; after the security code changes, the card number would be useless.To read this article in full or to leave a comment, please click here

Data leaks evolving into weapons of business destruction

Most of the recent data breaches involve customer information such as user names and passwords, credit card numbers, and medical histories. The companies hacked are hurt -- they have to contact victims, pay for credit monitoring services and fines, and may lose customers, brand reputation, and market value -- but that is collateral damage.Or it has been.Increasingly, attackers are using data leaks to target the companies themselves, going after proprietary or embarrassing information and releasing it in such a way as to do the most harm.That's a change that companies need to be aware of, said Andrew Serwin, co-chair of the global privacy and data security group at San Francisco-based law firm Morrison & Foerster.To read this article in full or to leave a comment, please click here

ICANN transition moves forward, despite last-minute attempt to block it

The Internet Corporation for Assigned Names and Numbers, the long-time coordinator of the internet's Domain Name System, is independent of U.S. government oversight, at least for now.The U.S. National Telecommunications and Information Administration's planned turnover of ICANN oversight to the wider internet community happened early Saturday morning, despite a last-ditch lawsuit filed by four state attorneys general attempting to block the move.Late Friday, a judge in Texas refused to issue an injunction that would have forced the NTIA to retain its oversight of ICANN's coordination of the Domain Name System root and IP addressing functions.To read this article in full or to leave a comment, please click here

ICANN transition moves forward, despite last-minute attempt to block it

Designing a 21st century business? Ask an 8-year-old

“If you ever happen to find yourself in Indonesia, there are two important things you need to know about the way the internet operates there. The first thing is before anyone can look at anything online all of the content first has to pass through this tiny, disorganized, chaotic server room in Jakarta. The second thing you need to know is that there’s a man in charge of that room” — and he can take anything offline at any time.To read this article in full or to leave a comment, please click here(Insider Story)

IDG Contributor Network: No IoT project is an island. Oracle connects IoT to mainstream enterprise apps

No man is an island.Neither are enterprise IoT projects. Enterprise technology is meant to enhance customer service and improve business efficiency. Internet of Things (IoT) projects have to integrate with other business applications to make this happen. How do you bridge IoT islands to mainland business applications?A recent project by Ephlux with Oracle IoT Cloud Service shows the way. The need The project involved a commercial HVAC contracting service that handled the installation and repair of several thousand air conditioners. The company was struggling to provide good customer service without eroding their profit margins.To read this article in full or to leave a comment, please click here

Deliver Scalable VoLTE and Agile Communications Services

Adopting NFV is critical to CSPs that want to deliver a commercial VoLTE and multimedia rich communications suite services offering that is flexible, scalable, and cost-effective.

IDG Contributor Network: Decoy networks are the secret to deflecting hackers

Attackers have a time advantage over static computer networks because the bad guys can simply hover around the network for long periods, study it and look for an advantage. The computer network is usually just sitting there, dawdling like unfortunate prey silhouetted in a hunter’s rifle scope.The observing hackers can even disappear for a while, return and find nothing’s changed. The vulnerabilities are still in place. Bang! The perp hits when it’s convenient, and it’s all over.The best solution to this time-advantage problem are computer defenses that sense malevolent investigations of the network and then squirt the attack over to a fake network that proffers no intelligence about the genuine network, according to some. They were written about as long ago as 2004 in the International Journal of Digital Evidence (PDF).To read this article in full or to leave a comment, please click here

Designing your business for the 21st century

“Most companies are simply not designed to survive. They become successful on the basis of one big idea or breakthrough product,” says CEO Mike Walsh of Tomorrow, a global consultancy that helps design 21st century businesses. The companies that will thrive in the near future are the ones not only embracing change but breaking the rules. Learn how to leverage disruptive innovation, solve business problems with social networks and apply “the new lean IT mindset” to sharpen your focus on how future customers will think, talk and transact.

IoT malware behind record DDoS attack is now available to all hackers

The source code for a trojan program that infected hundreds of thousands of internet-of-things devices and used them to launch distributed denial-of-service attacks has been published online, paving the way for more such botnets.The code for the trojan, which its creator calls Mirai, was released Friday on an English-language hackers' forum, cybersecurity blogger Brian Krebs reported over the weekend. Krebs' website was the target of a record DDoS attack two weeks ago that was launched from the Mirai botnet.The trojan's creator, who uses the online handle Anna-senpai, said that the decision to release the source code was taken because there's a lot of attention now on IoT-powered DDoS attacks and he wants to get out of this business.To read this article in full or to leave a comment, please click here

IoT malware behind record DDoS attack is now available to all hackers

Down the rabbit hole, part 3: Linux and Tor are key to ensuring privacy, security

So, I’ve decided I need to improve the privacy and security of my life (especially as it relates to computing). And I’ve come to the conclusion that in order to effectively do this, I need to focus on utilizing open source software as much as possible. What next? Let’s start at a very simple, basic level: the operating system of my laptop computers (I don’t actually have a desktop currently, but the same ideas will apply) and how they connect to the internet.To read this article in full or to leave a comment, please click here

Worth Reading: Digital Racket

Has our enslavement to dopamine — to the instant hits of validation that come with a well-crafted tweet or Snapchat streak — made us happier? I suspect it has simply made us less unhappy, or rather less aware of our unhappiness, and that our phones are merely new and powerful antidepressants of a non-pharmaceutical variety. —NY Mag, via Ethan Banks

The post Worth Reading: Digital Racket appeared first on 'net work.

AMD provides upgrade path to Zen with new business PC chips

AMD's new 7th Generation Pro chips have hooks to let PC users easily upgrade to next-generation Zen chips that could come out next year.The new Pro chips, code-named Bristol Ridge, are for business desktops, and will appear in PCs from HP and Lenovo. The ability to easily upgrade is a big deal because it lets users avoid buying new PCs in order to get the Zen chips when they come out.It'll work like this: users buy a desktop with the new AMD Pro chip, but upgrade to Zen later on by replacing chips in the socket.There's a lot to like in the new AMD Pro chips, but there's even more excitement around Zen, which will provide a 40 percent improvement in CPU performance. The new AMD Pro will be compatible with the AM4 socket, which provides the basis for upgrades to Zen.To read this article in full or to leave a comment, please click here

Panda Banker’s Future DGA

Since we last visited the Panda Bankers at the malware zoo, two new versions have emerged: 2.2.6 and 2.2.7. While sifting through the encrypted strings of the latest version, two interesting ones stood out: dgaconfigs DGA, download “%S”. Tracing the first one through the code does indeed lead to a DGA or a domain generation […]

Data center management in the cloud can predict downtime, vendors say

Data center power management vendor Eaton’s newest product has sensors that that the company says will proactively warn customers of when equipment component failures are likely to occur.Eaton’s announcement today of PulseIngisht Analaytics is part of a broader trend in the data center infrastructure management (DCIM) market moving to cloud-based platforms, says 451 Research director for data center technologies Rhonda Ascierto. Vendors such as Eaton, Schneider Electric and Emerson Network Power are evolving their platforms to collect more data their power systems generate and analyze it to provide customers with detailed information about data center performance, and even help predict and prevent downtime from equipment failure.To read this article in full or to leave a comment, please click here

Data center management in the cloud can predict downtime, vendors say

Waratek upgrades Java protection

Waratek is introducing a feature to its Java-protection platform that enables upgrading to the current version of Java without having to install Java updates or touch the apps running within the Java virtual machine.The latest version of its AppSecurity for Java uses secure virtual containers around the entire Java application stack to apply the security and performance features of the current Java 8 platform’s security and performance levels without having to install Java 8, the company says.The alternative would be to replace the Java Runtime Environment (JRE) and upgrade the application code directly. That would involve taking the application offline while the upgrades are performed.To read this article in full or to leave a comment, please click here

Waratek upgrades Java protection

EU gets ready to fine Google in Android antitrust suit

The European Commission is preparing to fine Google for paying smartphone makers to exclusively use its search engine on their mobile devices, according to Reuters.The European Union's antitrust authority filed a so-called statement of objections against Google in April, accusing it of forcing smartphone makers to exclusively use its search engine if they want access to the Play Store, through which phone users can download and purchase other apps.Now the Commission has sent a redacted copy of that statement of objections to complainants, Reuters reported after seeing the document.To read this article in full or to leave a comment, please click here

« Previous 1 … 2,624 2,625 2,626 2,627 2,628 … 3,837 Next »