0

Hackers exploit new zero-day in fully patched Adobe Flash

If you haven’t kicked Adobe Flash to the curb, and you should, then don’t feel secure even if you are running a fully patched version of Flash Player.Although Adobe released a mega-sized patch yesterday, including security fixes for 69 critical vulnerabilities in Flash, Reader and Acrobat, attackers are armed with a zero-day exploit that leaves fully patched versions of Flash Player vulnerable.To read this article in full or to leave a comment, please click here

0

Global Impacts of Recent Leaks

Recent routing leaks remind us why monitoring Internet routing and performance is important and requires effective tools.  Routing leaks are the ‘benign cousin’ of the malicious BGP route hijack.  They happen accidentally, but the result is the same: traffic to affected prefixes is redirected, lost, or intercepted.  And if they happen to you, your online business and brand suffers.

In this blog, we look at examples of a full-table peer leak, an origination leak, and a small peer leak and what happens to traffic when these incidents occur.  As we will see, some events can go on for years, undetected and hence, unremediated, but extremely impactful never the less.  As you read this blog, keep the following  questions in mind.  Would  you know if the events described here were happening to you?  Would you know how to identify the culprit if you did?

 

iTel/Peer1 routing leak

Starting on 10 October at 10:54 UTC, iTel (AS16696) leaked a full routing table (555,010 routes) to Peer 1 (AS13768).  Normally, iTel exports 49 routes to Peer 1;  however, over the course of several minutes, it leaked 436,776 routes from Hurricane Electric (AS6939) and 229,537 Continue reading

0

Alcatel-Lucent Unveils Its Latest Intelligent Fabric Switch

Welcome the OmniSwitch 6900-X72.

0

Savvius Launches Low-Cost Monitoring, Packet Capture Appliance

Savvius has launched a new monitoring appliance, Insight, that integrates with Splunk and can capture packets for forensic analysis.

The post Savvius Launches Low-Cost Monitoring, Packet Capture Appliance appeared first on Packet Pushers.

0

Citrix White Paper: Maximizing Multitenancy with the NetScaler

New Citrix white paper on how to maximize multitenancy and build robust cloud-based data centers. Read more here.

0

Dell & Pluribus Partner to Bring Netvisor to Dell’s Open Switches

A recent impact report from 451 Networks calls the move to port Open Netvisor Linux OS onto Dell’s Open Networking switches “great” for customers. Find out why.

0

Save some bandwidth by turning off TCP Timestamps

Looking at https://tools.ietf.org/html/rfc1323 there is a nice title: 'TCP Extensions for High Performance'. It's worth to take a look at date May 1992. Timestamps option may appear in any data or ACK segment, adding 12 bytes to the 20-byte TCP header. 

Using TCP options, the sender places a timestamp in each data segment, and the receiver reflects these timestamps back in ACK segments. Then a single subtract gives the sender an accurate RTT measurement for every ACK segment.

To prove this let's dig into kernel source:

./include/net/tcp.h:#define TCPOLEN_TSTAMP_ALIGNED    12
./net/ipv4/tcp_output.c:static void tcp_connect_init(struct sock *sk)
  ...
  tp->tcp_header_len = sizeof(struct tcphdr) +
    (sysctl_tcp_timestamps ? TCPOLEN_TSTAMP_ALIGNED : 0);

Some visualizations:

0

Worth Reading: Digital Content and the Fate of Businesses

There are two key differences between buying media in a physical format versus a digital one. First, there’s the technical aspect: Maintaining long-term access to a file requires a hard copy of it—that means, for example, downloading a film, not just streaming from a third party’s server. The second distinction is a bit more complicated, and it has to do with how the law has shaped digital rights in the past 15 years. It helps to think about the experience of a person giving up CDs and using iTunes for music purchases instead. —via the atlantic

Continue reading

0

Datanauts 012: The Scintillating Storage Smorgasbord

The Datanauts and Howard Marks serve up a buffet of storage topics, including the pros and cons of all-flash and hybrid arrays, the ins and outs of cloud and object storage, and what's up with Virtual Volumes.

The post Datanauts 012: The Scintillating Storage Smorgasbord appeared first on Packet Pushers.

0

DockerCon US 2016: June 20-21 in Seattle

Can’t get enough DockerCon? Good news because we are happy to officially announce DockerCon US 2016! The conference will take place in Seattle, at the the beautiful Washington State Convention Center (WSCC) on June 20th and June 21st, 2016. The Docker … Continued

0

John McAfee: What Year One of my Presidency would look like

In the third of a series of interviews from The Irari Report, Ira Winkler and Araceli Treu Gomes learn about what initiatives John McAfee would implement during the first year of his presidency, if he's elected.

0

John McAfee: What the Cyber Party stands for

In the second of a series of interviews from The Irari Report, Ira Winkler and Araceli Treu Gomes learn about John McAfee's Cyber Party and its platform.

0

5 Reasons To Upgrade Your Network Switch

With increasing wireless requirements and other pressures in today's IT environment, you might not want to wait until the next refresh cycle for that campus network switch replacement.

0

SDN’s Northbound Interface Evolves

The northbound interface has been a point of debate in SDN development, but an intent-based interface could accelerate progress.

0

Enterprise vCPE Boasts 156% Return on Investment

Amdocs tells Tier 1s: Get with the program and deploy vCPE.

0

Intel Tempers Its Data Center Forecast for Now

A 15% growth outlook might have been a little much.

0

9 ways to celebrate “Back to the Future” Day

Another made up geeky dayWednesday, Oct. 21, 2015 marks the day in which time-traveler Marty McFly arrives from the past (from the movie “Back to the Future Part II”. The Internet is freaking out about this upcoming “holiday”, and in the tradition of fake geeky holidays like “Star Wars Day” (May 4), Pi Day (March 14) and “Talk like a Pirate Day” (September 19), we now have a day to celebrate everything related to the time-travel movie, which is celebrating its 30th anniversary this year.To read this article in full or to leave a comment, please click here

0

Carriers Share SDN/NFV Experiences & Gripes

DT, Vodafone, Orange, and Verizon tell production tales of NFV.

0

DockerCon EU 2015: More Speakers Announced

It’s been a busy few weeks as we finalize the agenda for DockerCon EU 2015! Today’s round of speakers include four sessions in the Use Case and Wild Card tracks that the Docker team is super excited to announce. Planning on joining us at DockerCon … Continued

0

Magento database tool Magmi has a zero-day vulnerability

An open-source tool for importing content into the Magento e-commerce platform, called Magmi, has a zero-day vulnerability, according to security vendor Trustwave. The directory traversal flaw is in some versions of Magmi, which is used to move large amounts of data into Magento's SQL database. Such a flaw can allow access to other files or directories in a file system. "Successful exploitation results in access to Magento site credentials and the encryption key for the database," wrote Assi Barak, lead security researcher with Trustwave's SpiderLabs.To read this article in full or to leave a comment, please click here