Saturday, January 31, 2015
If you were to be influenced purely by the more tabloid of tech publications, with headlines screaming about hacked databases, compromised passwords and secret service data probing then you wouldn't touch the cloud with a bargepole. How secure are Dropbox, iCloud, Google Drive and OneDrive. Truth be told, cloud services are not as insecure as the headlines make out. Indeed, there's much to be said for the argument that Dropbox, iCloud, Google Drive and OneDrive have both the money and motivation to make their data stores much more secure than you could hope to achieve on your meagre budget yourself. So let's take a look at these four services...
Saturday, January 24, 2015
Adobe Flash users have been under attack from cybercriminals again, this time courtesy of a zero day exploit kit by the name of Angler. The exploit kit has been readily available on the dark market, and hits vulnerabilities to be found in Flash Players up to 220.127.116.11, as well as the latest release.
Friday, January 23, 2015
Nobody really needs reminding that data security is a priority when it comes to the cloud, do they? Sure, end users remain in the shadows a little as far as security awareness is concerned but recent reports suggest that board level executives are now sitting up and taking note of security concerns. This is, without doubt, a good thing. Unfortunately, it's not quite good enough.
Monday, January 19, 2015
According to François Beaufort who is a French 'Happiness Evangelist' at Google (and no, I didn't make that up), Chromebook users will soon be able to choose what operating system they want. In a publicly shared post from last week, Beaufort states that "in order to support installing and testing custom code on Chrome OS devices, the chromium team is currently adding the ability to easily enable Debugging Features when the device is booted in Developer Mode."
Saturday, January 17, 2015
So Google has admitted defeat and is pulling the Google Glass Explorer Program with pretty much immediate effect. January 19 will be the last day to get the Glass Explorer Edition. In a statement, a Google Glass spokesperson said that "we're ready to put on our big kid shoes and learn how to run" and continued hyping it up with "interest in wearables has exploded and today it's one of the most exciting areas in technology" until almost reaching a climax by stating "we're seeing incredible developments with Glass in the workplace" before finally dropping the closing it down bomb.
Tuesday, January 13, 2015
Microsoft has taken the decision to keep its customers less informed about security issues, if a recent blog by Chris Betz, the senior director of the firm's Security Response Centre, is anything to go by. The post revealed the software giant is to cease to offering users advanced warning about the software updates it plans to roll out during its monthly Patch Tuesday event, unless they pay. "We are making changes to how we distribute ANS [Advanced Notification Services] to customers. Moving forward, we will provide ANS information directly to Premier customers and current organisations involved in our security programs, and will no longer make this information broadly available through a blog post and web page," Betz wrote. If you happen to be part of the premium customer program, or a Microsoft Active Protections Program partner like many security vendors, then you will still get advanced warning. Everyone else can, apparently, go swivel.
Sunday, January 11, 2015
According to the Daily Mirror, a number of official websites connected to French municipalities were hacked at the end of last week to coincide with the Charlie Hebdo massacre and the hostage taking at the Jewish supermarket. The newspaper reported that the home screens of websites belonging to the towns of Jouy-le-Moutier, Piscop, Goussainville, Val D'Oise and Ezanville (all surrounding Paris) were defaced with a Jihadist ISIS black flag and a message which translates as "The Islamic State Stay Inchallah, Free Palestine, Death to France, Death to Charlie." The hacker concerned declares himself to be an Algerian using the name L'APoca-Dz, and is also associated with a number of previous defacements of Israeli connected websites with anti-semitic messages.
Friday, January 09, 2015
Mention doomsday to the average Joe and they will probably conjure up a religiously inspired image of the world coming to an end. Seen through the eyes of the average IT manager, however, the doomsday picture is far more likely to be one of Distributed Denial of Service attacks, data breaches and catastrophic interruptions to the business. These doomsday scenarios are not the stuff of Hollywood screenwriters, they are very real indeed. That said, while they may fulfill the dictionary definition of being ‘a time or event of crisis or great danger’ none have to be the end of days as far as your organisation is concerned. The IT apocalypse can be avoided just as long as you have a plan.
Tuesday, January 06, 2015
Millions of gamers got an unwanted Christmas present, when both the Sony PlayStation Network and Microsoft's Xbox Live were hit by a Distributed Denial of Service (DDoS) attack during the festive break. The attacks should not have surprised anyone, least of all Sony or Microsoft, considering the hacking collective responsible pre-announced its intentions and the dates they would occur a month before.
Monday, January 05, 2015
Cloud Pro recently reported that Amazon was beefing up security of the AWS WorkSpaces DaaS offering by enabling support for multi-factor authentication (MFA). That in itself is great news, but it also begs the question "how can non-WorkSpaces users join the 'more secure' party?" The reality is most platforms and operating systems already support multi-factor authentication. Be that the Pluggable Authentication Module (PAM) plugin for Google's Time-based One-time Password (TOTP) algorithm under Linux or Microsoft's Active Directory support for MFA in Azure, for example. So perhaps the question should be "how can you successfully adopt a MFA strategy in the cloud?" We've been asking just that question of some industry players...