Posts by Gideon Teklu
Monday, March 4, 2013
Evernote’s Operations & Security team has discovered and blocked suspicious activity on the Evernote network that appears to have been a coordinated attempt to access secure areas of the Evernote Service.
As a precaution to protect your data, we have decided to implement a password reset. Please read below for details and instructions.
In our security investigation, we have found no evidence that any of the content you store in Evernote was accessed, changed or lost. We also have no evidence that any payment information for Evernote Premium or Evernote Business customers was accessed.
The investigation has shown, however, that the individual(s) responsible were able to gain access to Evernote user information, which includes usernames, email addresses associated with Evernote accounts and encrypted passwords. Even though this information was accessed, the passwords stored by Evernote are protected by one-way encryption. (In technical terms, they are hashed and salted.)
While our password encryption measures are robust, we are taking additional steps to ensure that your personal data remains secure. This means that, in an abundance of caution, we are requiring all users to reset their Evernote account passwords. Please create a new password by signing into your account on evernote.com.
Click here to read more.
Category: Blog
Friday, March 1, 2013
Rumors are already flying all over the place…
Windows Blue development has passed Milestone 1 (no details as to what that entails). The next milestone is called MP, or “Milestone Preview” because Microsoft will release a preview version of Windows Blue after meeting that milestone. The Milestone Preview will precede the final product by “a few months,” so developers and early adopters can work with it. Win8China claims that RTM is scheduled for June 7, at which point Blue will be made available on MSDN, followed by general availability in August. Blue will be free to Win8 customers.
Windows Blue will be faster, use less power, and run with a new, smaller kernel, version 6.3 (recall that Win8 runs kernel 6.2). The UI hasn’t changed — no Start button, no Aero. Windows Blue will support more screen scaling — presumably for smaller (and larger?) screen sizes. There’s some talk of “multi screen applications,” although in the context it isn’t clear if that refers to Metro apps. Not much change for PC and mouse users.”
What will the next version of Windows have in store for us?
Click here to read more.
Category: Blog
Thursday, February 28, 2013
Check Point® Software Technologies Ltd., the worldwide leader in securing the Internet, today announced a new Threat Emulation Software Blade that prevents infections from undiscovered exploits, zero-day and targeted attacks. This innovative solution quickly inspects suspicious files, emulates how they run to discover malicious behavior and completely prevents malware from entering the network.
Check Point Threat Emulation prevents threats by vetting downloaded files and common email attachments such as Adobe PDFs and Microsoft Office files. Suspicious files are opened inside the Threat Emulation sandbox and are simultaneously monitored for unusual system behavior, including abnormal system registry changes, network connections or system processes – providing real-time assessment of the file’s behavior. If files are found to be malicious they are blocked inline at the gateway.
Check Point Threat Emulation provides customers with flexible deployment options within either dedicated appliances or through cloud-based service. Emulation and reporting can be managed using Check Point’s management console from any gateway, with local device management available for dedicated appliances.
Click here to read more.
Category: News
Monday, February 25, 2013
F5 Networks, Inc., the global leader in Application Delivery Networking, announced F5® Mobile App Manager, a new hybrid cloud solution for mobile application management that enables organizations to safely and cost-effectively support enterprise BYOD initiatives. With F5 Mobile App Manager, enterprises can extend corporate applications and data to employees’ personal mobile devices while leaving all personal content under the control of the device owner.
F5 Mobile App Manager delivers the following benefits to enterprises:
- Improved security – Using the App Wrapper functionality in F5 Mobile App Manager, IT can secure internally developed and third-party applications quickly and easily before making them available to employees on mobile devices. When F5 Mobile App Manager is used with BIG-IP APM, IT can create a secure application VPN for corporate applications. And because BIG-IP APM utilizes the customer’s on-premises identity stores, employee information stays on premises, minimizing the risk of identity theft.
- Improved user experience – Employees are more comfortable knowing that their personal content is completely inaccessible to IT, won’t be automatically wiped in the event a device is lost or stolen, and that device functionality (such as the camera) cannot be restricted. F5 Mobile App Manager also requires minimal storage space on the device, and because enterprise applications don’t run constantly in the background, they help preserve battery life.
- Cost savings and reduced IT overhead – Because F5 Mobile App Manager is a hybrid cloud solution, IT avoids costly hardware and infrastructure investments and saves time by managing and securing enterprise content only rather than entire devices. In addition, organizations that have been using MDM solutions reduce their VPN costs by handling only enterprise-related traffic rather than all mobile traffic (business and personal).
- Scalability – F5 Mobile App Manager can easily be scaled to meet an organization’s growing demand to support employee-owned devices. The proven scale and performance of BIG-IP APM, which supports up to 200,000 concurrent users, ensures that the mobile infrastructure scales cost effectively.
Click here to read more.
Category: Blog
Thursday, February 21, 2013
The Check Point 2013 Security Report sheds light on what is hiding on corporate networks, and the major security risks organizations are exposed to on a daily basis:
Hidden Security Threats
From crimeware to hacktivism, cyberattacks will continue to evolve this year, impacting organizations of all sizes. The research revealed that 63% of organizations were infected with bots, and more than half were infected with new malware at least once a day. The report reveals a list of top threats, including the most infamous botnets, top malware location by country, top vendor vulnerabilities and exposures, and SQL injection events by source country, among other surprising findings.
Risky Web 2.0 Applications
The surge in web 2.0 applications has given criminal hackers unprecedented options to penetrate corporate networks. The research found 91% of organizations used applications with potential security risks. These risky web applications are brought to light in the report, including frequency and usage of anonymizers, P2P applications, file storage and sharing applications, and top social networks – all of which can potentially open a backdoor to enterprise networks.
Data Loss Incidents
Corporate information is more accessible and transferable today than ever before, leading to higher risk of data loss or leakage. More than half of the organizations studied had at least one potential data loss incident. The report exposes the different types of sensitive data leaked and lost, including PCI related information as well as HIPAA–protected health information. It also sheds light on the industries with the highest tendency toward data loss.
Click here to read more.
Category: Blog
Wednesday, November 7, 2012
The VMware security team recently became aware of the public posting of VMware ESX source code dating back to 2004. This source code is related to the source code posted publicly on April 23, 2012 and it’s possible that more related files will be posted in the future. Don’t let this breach leave your VMware users unprotected.
RKON’s Vulnerability Management solutions enable organizations to outsource their risk and compliance management to a trusted third party with years of experience managing large, enterprise networks according to industry best practice.
Contact RKON to find out more information.
Category: News
Thursday, October 25, 2012
Citrix revealed that Project Avalon, which is designed to simplify this transition, will be delivered in two major releases. The Excalibur release, available this quarter as a tech preview, will feature groundbreaking advancements in simplicity, scalability and rich multi-media services needed to deliver Windows apps and desktops to millions of new consumer style mobile devices. The Merlin release, available as a tech preview next year, will focus on Windows as a cloud service, simplifying and automating infrastructure deployment and management across virtual infrastructure, private clouds and public clouds, while enabling self-service subscription for users and departments.
Key Highlights of Excalibur Release:
- FlexCast 2.0 for Simple, Unified Service Delivery
- Reinventing HDX for Mobile and Video
- New HDX EdgeSight for Real-time Analytics and Service Visibility
- Support for Windows Server 2012 and Windows 8
Key Highlights of Merlin Release:
- Self-service Provisioning, Management and Service Orchestration
- Open, Scalable, Any-site, Any-cloud Architecture
- Mix-and-Match Releases for Uninterrupted Service Upgrades
Click here to read more.
Category: Blog
Monday, October 15, 2012
Riverbed is enhancing the Virtual Services Platform (VSP) featured on Steelhead EX appliances through a new integration of VMware vSphere 5. This integration enables applications and services required in branch offices to be operated and managed on the virtual server solution directly on a Steelhead wide area network (WAN) optimization appliance. Locally executed virtual machines running on Steelhead EX appliances can now be centrally managed by the VMware vSphere vCenter™ Server, providing organizations with a single platform for simplified, centralized management of distributed virtual services. This new integration and support enables organizations to instantly provision branch services and storage for increased agility, high availability and improved disaster recovery (DR).
Contact RKON Professional Services for more information about Riverbed Technology solutions.
Click here to read more about Riverbed.
Category: News
Friday, October 12, 2012
F5 Networks now supports VXLAN functionality, enabling organizations to seamlessly support software defined networking (SDN) initiatives by combining VMware and F5 solutions. F5 BIG-IP products can natively take advantage of the benefits of VXLAN in the latest VMware environments, based on VMware vSphere and vCloud Director.
In deploying BIG-IP solutions with VXLAN-based networks, it’s now possible to:
- Simplify the Expansion of Virtual Networks
- Apply Services across Heterogeneous Networks for Optimized Performance
- Improve Application Mobility and Business Continuity
Contact RKON Professional Services for more information about F5 Network solutions.
Click here to read more about F5.
Category: News
Wednesday, October 10, 2012
Palo Alto Networks and Citrix will deliver jointly validated solutions that are designed to simplify how enterprises accelerate application delivery on next-generation networks. Palo Alto Networks brings to the partnership next-generation firewall technology that gives organizations the ability to identify, control, and safely enable applications while at the same time inspecting all content for all threats in real time. Citrix NetScaler delivers complementary network capabilities to deliver any business application, cloud service or virtual desktop with the fastest performance and highest availability. When used together, the two companies deliver native application intelligence, template-based management and high performance to optimize the delivery of any application to any user.
Click here to read more.
Category: News