TOP 10 BEST PRACTICES FOR SECURING CLOUD WORKFLOWS

Cloud migration is a double-edged sword. While promising greater scalability, agility, and even new approaches to applications, it also introduces complexity--which means more security risk. Security vulnerabilities exposed in breach after breach have highlighted the risk that comes with the clou...

Ovum recommends Microsoft security to safeguard your hybrid and multi cloud environments

According to a new Ovum report, "Azure Sentinel…positions Microsoft to be a force for change in a security information and events management SIEM market that is ripe for disruption at the moment." As enterprises migrate to the cloud, they’re increasingly operating on-premises and cloud environmen...

Cisco Warns of Critical Nexus 9000 Data Center Flaw

A critical vulnerability in Cisco’s software-defined networking SDN software could allow an unauthenticated, remote attacker to connect to a vulnerable data-center switch and take it over, with the privileges of the root user. The bug CVE-2019-1804, which has a CVSS severity rating of 9.8 out of...

March Release: Q&A with Ari Weil

Shortly after Akamai announced the March 2019 Release with new features and capabilities across its security, performance and media product lines, Akamai's VP of Product Marketing, Ari Weil, took over Akamai's Twitter account for a live March Release Q&A. For those that missed the live event,...

F5 Networks Acquires NGINX For $670 Million

One of the most important software companies NGINX, which is also behind the very popular open-source web server of the same name, is being acquired by its rival, F5 Networks, in a deal valued at about $670 million. While NGINX is not a name that you have ever heard of, the reality is that you us...

What's New in Security - March 2019

Today, Akamai announced the March 2019 Release with new features and capabilities across its security, performance, and media product lines - with a focus on helping customers better manage their cloud migration initiatives. Within security, Akamai has made updates to every product line to help...

Professional Services Simplified - Check out what's new!

In today's fast-moving digital world, we know businesses need to rapidly adapt to meet user expectations and stay competitive. At Akamai, we see a world of unimagined potential, enabled through the unique power of the Akamai Edge. It's this power, backed by the support of our 2000 global experts,...

CVE-2018-1593

IBM Multi-Cloud Data Encryption MDE 2.1 could allow an unauthorized user to manipulate data due to missing file checksums. IBM X-Force ID: 143568...

CVE-2018-1593

IBM Multi-Cloud Data Encryption MDE 2.1 could allow an unauthorized user to manipulate data due to missing file checksums. IBM X-Force ID: 143568...

CVE-2018-1593

CVE-2018-1593 affects IBM Multi-Cloud Data Encryption (MDE) 2.1. The vulnerability stems from missing file checksums, enabling an unauthorized user to manipulate data. Affected versions are MDE 2.1–2.1.0.1. IBM’s bulletin lists remediation: upgrade to MDE 2.1.0.2 (Multiplatform English via Passpo...

GDPR Is Here: Don’t Neglect Public Cloud Security

With organizations aggressively moving workloads to public cloud platforms, such as Amazon’s AWS, protecting these environments is critical for complying with the EU’s General Data Protection Regulation GDPR. GDPR, which went into effect in May, imposes strict requirements on millions of business...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is using components with Known Vulnerabilities

Summary Multi-Cloud Data Encryption MDE has addressed the following vulnerability: Using components with known vulnerabilities Vulnerability Details CVEID: CVE-2017-5637 DESCRIPTION: Apache Zookeeper is vulnerable to a denial of service, caused by the improper handling of the wchp command. By...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is affected by an Information Exposure vulnerability

Summary Multi-Cloud Data Encryption MDE has addressed the following information exposure vulnerability. Vulnerability Details CVEID: CVE-2018-1592 DESCRIPTION: PEN-TEST: Query Parameter in SSL Request CVSS Base Score: 6.5 CVSS Temporal Score: See Not Applicable for the current score CVSS...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is affected by a Denial of service vulnerability

Summary Multi-Cloud Data Encryption MDE has addressed following Denial of service vulnerability Vulnerability Details CVEID: CVE-2018-1589 DESCRIPTION: IBM Multi-Cloud Data Encryption MDE does not properly restrict the size or amount of resources that are requested or influenced by an actor. This...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is affected by an application error.

Summary Security Bulletin: Multi-Cloud Data Encryption MDE has addressed the following application error vulnerability. Vulnerability Details CVEID: CVE-2018-1591 DESCRIPTION: IBM Multi-Cloud Data Encryption MDE generates an error message that includes sensitive information about its environment,...

Security Bulletin: Multi-Cloud Data Encryption (MDE) is affected by a missing checksum vulnerability

Summary Security Bulletin: Multi-Cloud Data Encryption MDE has addressed a missing checksum vulnerability Vulnerability Details CVEID: CVE-2018-1593 DESCRIPTION: IBM Multi-Cloud Data Encryption MDE could allow an unauthorized user to manipulate data due to missing file checksums. CVSS Base Score:...

Akamai 2018 Spring Release, In A Nutshell

Progressing Towards Our Future in The Cloud, Together As organizations continue to fuel and execute on their digital transformation ambitions, they're increasingly finding significant business agility and cost savings by adopting cloud, multi-cloud, or hybrid architectures. Availability, security...

Explained: the cloud

Even if you are reading this post because you have no idea what the cloud is, you might be using it more often than you realize. Twitter, LinkedIn, Dropbox, Google Drive, and Microsoft Office 365 are some of the most well-known cloud apps. Let’s start with a definition of the cloud to get a grip ...

Taking the Fight Where It Belongs

This Guest blog was written by Robert Mahowald, a Group Vice President at IDC who leads IDC's Worldwide Applications research practice, in addition to co-leading IDC's Cloud Services: Global Overview program. A surprising set of facts emerged from the most recent quarterly installment of IDC's...

The Unified Cloud

Throughout the history of cloud computing, 2006 was a momentous year. In 2006 Amazon Web Services released S3, the first pay per GB storage service. By August, they released EC2, allowing you to spin up a server and pay by the hour in the cloud. In the decade that has followed, AWS has emerged as...