2387 matches found
Attack Campaigns Ramp Up for Organizations Down Under
DDoS and AppSec attacks impacting the ANZ region Australia and New Zealand have been in the headlines of late, with several high profile companies seeing prolonged outages and leading to speculation as to whether the region is being specifically targeted? Let’s take a closer look at the types of...
Making the Internet Resilient: Part One
Think how many websites you visit or videos you stream. Do you check your bank account or transfer money, download apps, play music, share updates on social media, or use the internet for any of the thousands of other digital experiences it enables every day?...
The Impact of Third-Party Scripts on the Facebook Outage
A lot has already been written about the Facebook outage earlier this week. In case you missed it if that’s possible, Facebook, Facebook Messenger, Instagram, and WhatsApp were all down for several hours on Monday. Facebook provided an update on the cause of the outage late Monday, citing a...
Forrester: Embrace Zero Trust for Australia’s Essential Eight
Understand why it's important to refine your organization’s approach. See how to enact a security model that protects your business and enables growth...
The Power of Why: Rediscovering Akamai’s Purpose
As I took on the role of Chief Marketing Officer of Akamai earlier this year, I set out to inspire and challenge our teams to build an impactful global campaign that showcases not just what we do, but what we make possible. What quickly became clear is that to be authentic in talking about what w...
blog-www60-61-prod
...
Holiday Readiness, Part Three: What you Should be Thinking About Two Months Out?Performance Optimizations
October is here, and that means we are less than two months away from the busiest weekend of the year. Parts one and two of the Holiday Readiness blog series covered topics ranging from security checklists to disaster recovery strategies and flash crowd management. If you haven?t had a chance to...
Holiday Readiness, Part Three: What you Should be Thinking About Two Months Out—Performance Optimizations
October is here, and that means we are less than two months away from the busiest weekend of the year. Parts one and two of the Holiday Readiness blog series covered topics ranging from security checklists to disaster recovery strategies and flash crowd management. If you haven’t had a chance to...
EAA Client Escalation of Privilege Vulnerability on Windows
This post covers the details of CVE-2021-40683 CVSS 6.5, the vulnerability impacting the Akamai Enterprise Application Access EAA Client running on Windows systems, for which Akamai has provided a patch to its customers...
Attacking a Macro Security Problem with Micro-segmentation
Ransomware is everywhere. And the shift of workloads to the cloud and employees to work-from-home models has only expanded the attack surface, creating new opportunities for attackers to leverage. Companies need Zero Trust solutions that not only defend against threat actors gaining access to...
Monitoring Our Hay Storage with Edge Connect and Machine Learning
What do hay storage, Akamai’s Edge Connect solution, and machine learning have in common? We use the serverless machine learning system to keep our hay storage safe and secure...
Akamai Named a Gartner Magic Quadrant Leader for Web Application and API Protection
This week, Gartner released its new 2021 Magic Quadrant for Web Application and API Protection WAAP report, which replaces the Magic Quadrant for Web Application Firewalls WAF report, and Akamai has been named a Leader. Akamai was named a Leader in the four previous WAF Magic Quadrants...
Autodiscovering the Great Leak
See the most recent research from Amit Serper on a vulnerability in Autodiscover from Microsoft Outlook that affects credential leaks...
What Is a TCP Three-Way Handshake?
The TCP three-way handshake is one of the critical building blocks of the internet. It facilitates the smooth and consistent flow of information across and among different networks without compromising security...
Three Surefire Ways to Boost the Digital Banking Experience
The year 2020 disrupted just about every industry, including retail banking. Locked down at home, consumers were abruptly forced to do all their banking over the internet. The sudden transition profoundly impacted banks and created unprecedented demands on online infrastructure. Some banking site...
Which Online Shopping Experience Should I Try Today?
Do you remember the first time you made an online purchase? Me neither. I?ve made so many online purchases over the years, and I?ve probably made more in the past 18 months than in the past 5 years combined...
Gaming Industry Paves the Way
Currently at $200 billion per year and growing, the gaming industry has grown from humble beginnings in the 1930s during which games like Baffle Ball and pinball were considered a degenerate form of leisure that would lead young men into lives of sin into a massive global phenomenon widely seen a...
What Should I Watch Tonight? I Have Tens of Thousands of On-Demand Media Options
When I was a kid in the late 1970s, the ABC Television Network had the top three most watched shows in the United States, and I was one of those viewers. For example, on Tuesday nights, prime time? started for me at 8 PM with Happy Days and was over at 9:30 PM after Laverne & Shirley and Three?s...
DDoS Chart Toppers—BPS, PPS and RPS Greatest Hits
New to the scene, monster-sized botnet Mēris is raising some eyebrows with giant requests per second rps attacks as shared by Cloudflare 17.2M rps, reported August 19, Yandex peaking at 21.8M rps on September 5, and KrebsOnSecurity 2M rps on September 9. Some commentary came in on Slashdot, The...
Learn How Akamai Enables AI Powered Analytics Tools to Reduce Water Losses
The Accelerator Program, a flagship initiative of Akamai India’s Corporate Social Responsibility Trust, enables early-stage innovations for water conservation. Over the past two years, along with our mentoring partner, the International Center for Clean Water ICCW; an initiative of the Indian...
Kinsing evolves, adds Windows to attack list
The campaign was first seen by the Akamai SIRT on February 16, 2021, and appears to be targeting both Windows and Linux systems. The botnet caught our interest because it has shown to be highly active across a diverse set of geographical regions, including the Americas, Europe, and Asia...
Kinsing evolves, adds Windows to attack list
The campaign was first seen by the Akamai SIRT on February 16, 2021, and appears to be targeting both Windows and Linux systems. The botnet caught our interest because it has shown to be highly active across a diverse set of geographical regions, including the Americas, Europe, and Asia...
Capoae Malware Ramps Up: Uses Multiple Vulnerabilities and Tactics to Spread
Recently, there has been a plethora of UPX packed crypto-mining malware written in Golang targeting Linux systems and web applications popping up in the news. The malware’s primary tactic is to spread by taking advantage of vulnerable systems and weak administrative credentials. Once they’ve been...
Confluence Server Webwork OGNL Injection (CVE-2021-26084): How Akamai Helps You Protect Against Zero-Day Attacks
Recently Atlassian has disclosed a critical RCE Remote Code Execution vulnerability in its Confluence server and Data Center products CVE-2021-26084, which might allow unauthenticated users to execute arbitrary code on vulnerable servers...
Confluence Server Webwork OGNL Injection (CVE-2021-26084): How Akamai Helps You Protect Against Zero-Day Attacks
Recently Atlassian has disclosed a critical RCE Remote Code Execution vulnerability in its Confluence server and Data Center products CVE-2021-26084, which might allow unauthenticated users to execute arbitrary code on vulnerable servers...
Akamai’s Flagship Customer Enablement Program, Akamai University, Wins Gold “Excellence in Learning” Award
The Technical Enablement and Education team, part of Akamai’s Global Services organization, has won a coveted Brandon Hall Group Gold award for “Best Customer Training Program,” for Akamai’s flagship customer training and enablement program, Akamai University...
Now Live: On-Demand Learning and Hands-On Labs at Learn Akamai
I’m excited to announce our new all-inclusive Learning Hub as the single destination for all product learning resources at Akamai. This new Hub gives users the ability to choose the method of learning that suits them best, whether that’s reading through technical documentation, exploring our...
Jest Mocks—Unit Testing for EdgeWorkers
In case you haven’t already been working with EdgeWorkers, it allows you to run JavaScript code across more than 4,200 locations for proximity to users and fast application response times. With more and more application functionality moving to the edge, it’s increasingly important to ensure that...
Holiday Readiness, Part Two: What you Should be Thinking About Three Months Out—Capacity Planning
Welcome back to the Holiday Readiness blog series. We hope part one has kept you busy over the past month as you continue to improve your security posture. If you haven’t finished all of the security checklist items, don’t worry — there is still time before Black Friday and Cyber Monday...
Holiday Readiness, Part Two: What you Should be Thinking About Three Months Out?Capacity Planning
Welcome back to the Holiday Readiness blog series. We hope part one has kept you busy over the past month as you continue to improve your security posture. If you haven?t finished all of the security checklist items, don?t worry ? there is still time before Black Friday and Cyber Monday...
Passwords — Extinction Event Looming?
Passwords are the bane of users and security teams’ lives. Despite years of security teams educating users about not using 123456 as a password, not recycling passwords across multiple personal and professional accounts, and implementing even more rigorous password rules and investments in passwo...
UPX Packed Headaches
Researching malware has many challenges. One of those challenges is obfuscated code and intentionally corrupted binaries. To address challenges like this, we've written a small tool in C that could fix intentionally corrupted binaries automatically. We also plan to open-source the project so othe...
Dogged Persistence -- The Name of the Game for One DDoS Attacker
With DDoS, we typically observe a moderate degree of attacker persistence. DDoS attacks are relatively easy to launch from a number of online booter services, and the availability of cryptocurrencies for payment has made it easy to remain anonymous. Attackers can try their hand at DDoS for little...
Dogged Persistence—The Name of the Game for One DDoS Attacker
With DDoS, we typically observe a moderate degree of attacker persistence. DDoS attacks are relatively easy to launch from a number of online booter services, and the availability of cryptocurrencies for payment has made it easy to remain anonymous. Attackers can try their hand at DDoS for little...
Tokyo Streaming Traffic Runs Rings Around Rio
Written by: Cory Sakakeeny With 35 medals at stake, the last full day of competition during the games in Tokyo generated the highest video streaming traffic for 30-plus customers on the Akamai Intelligent Edge Platform. Medal matches for baseball, basketball, and soccer, along with several track...
Tokyo Streaming Traffic Runs Rings Around Rio
With 35 medals at stake, the last full day of competition during the games in Tokyo generated the highest video streaming traffic for 30-plus customers on the Akamai Intelligent Edge Platform. Medal matches for baseball, basketball, and soccer, along with several track and field finals, drove...
HTTP/2 Request Smuggling
HTTP Request Smuggling also known as an HTTP Desync Attack has experienced a resurgence in security research recently, thanks in large part to the outstanding work by security researcher James Kettle. His 2019 Blackhat presentation on HTTP Desync attacks exposed vulnerabilities with different...
HTTP/2 Request Smuggling
HTTP Request Smuggling also known as an HTTP Desync Attack has experienced a resurgence in security research recently, thanks in large part to the outstanding work by security researcher James Kettle. His 2019 Blackhat presentation on HTTP Desync attacks exposed vulnerabilities with different...
hAFL1 – Our Journey of Fuzzing Hyper-V and Discovering a Critical 0-Day
Within hours from the moment our in-house built fuzzer, hAFL1, started running – it found a critical, CVSS 9.9 RCE vulnerability in Hyper-V’s virtual driver...
Putting Purpose First as an Akamai Co-Op
As I began my CSR Co-op position this year, I wanted to see up-close how a corporate foundation works. What I've found is that the work the Akamai Foundation does around the world is inspiring! Whether it's partnering with STEM educators, responding to the COVID-19 crisis, planning employee...
Akamai's Commitment to Reliability
For more than 20 years, Akamai has worked very hard to earn the trust and confidence of our customers and partners by developing services that can be relied upon to be available and secure at all times. We have scaled our business to handle many trillions of web requests quickly and securely each...
Akamai's Commitment to Reliability
For more than 20 years, Akamai has worked very hard to earn the trust and confidence of our customers and partners by developing services that can be relied upon to be available and secure at all times...
Holiday Readiness: What You Should Be Thinking About Four Months Out
Written by: Michael Hansen This is a blog series about Akamai solutions that can help you manage the surge of traffic both good and bad that will be hitting the retail industry during the holiday season. The beginning of August is upon us, and if you haven't already started thinking about the...
Zero Trust Should Not Give IT a Bad Name
Maybe you've just found out that your company's IT organization is implementing Zero Trust. Does that mean they don't trust you? "Zero Trust" sure sounds that way. Maybe you've read about it online or heard somebody talk about it in terms that equate Zero Trust with the idea that users and device...
Holiday Readiness, Part One: What you Should be Thinking About Four Months Out—Security
The beginning of August is upon us, and if you haven’t already started thinking about the busiest time of the year, now is a good time to do so. Whether you’re an experienced veteran of managing peak traffic or new to the game, Q4 can bring surprises when it comes to performance and security. And...
Zero Trust Should Not Give IT a Bad Name
Maybe you’ve just found out that your company’s IT organization is implementing Zero Trust. Does that mean they don’t trust you? “Zero Trust” sure sounds that way. Maybe you’ve read about it online or heard somebody talk about it in terms that equate Zero Trust with the idea that users and device...
World-Class OTT Streaming from MwareTV with Akamai
Written by: Ina Christova Since the onset of the pandemic, home entertainment has never been more important. Millions of users across the globe have turned to over-the-top OTT streaming and live TV to bring much-needed diversion and exciting content into their lives. MwareTV provides content...
Software-Defined Networking Concept Adoption at Akamai
Akamai engineering has adopted new technology concepts to enhance and expand routing capabilities at the edge. Previously, Akamai's traffic-steering capabilities were mainly focused on DNS-based routing. In this article, we would like to give you an in-depth look at how Akamai has embraced new...
Critical 9.9 Vulnerability in Hyper-V Allowed Attackers to Exploit Azure
Guardicore Labs, in collaboration with SafeBreach Labs, found a critical vulnerability in Hyper-V’s virtual network switch driver vmswitch.sys...
Software-Defined Networking Concept Adoption at Akamai
Akamai engineering has adopted new technology concepts to enhance and expand routing capabilities at the edge. Previously, Akamai’s traffic-steering capabilities were mainly focused on DNS-based routing. In this article, we would like to give you an in-depth look at how Akamai has embraced new...