Weekend Reads 102320

One of the most common ways such access is monetized these days is through ransomware, which holds a victim’s data and/or computers hostage unless and until an extortion payment is made. But in most cases, there is a yawning gap of days, weeks or months between the initial intrusion and the deployment of ransomware within a victim organization.

There is a lot of discussion about the Expedited Policy Development Process (EPDP) Phase 2 report on evaluating a System for Standardized Access/Disclosure (SSAD) to non-public gTLD registration data after the decisions taken by the GNSO Council on September 24th.

Nvidia’s announcement a month ago of a plan to acquire Arm Holdings for $40 billion was followed last week by reports of another towering deal in semiconductors: Advanced Micro Device’s prospective purchase of Xilinx for about $30 billion.

For a long time, datacenter compute has been the very picture of stability – Intel-based servers running enterprise workloads in central facilities. The workloads are changing fast and the datacenter is dissolving, and this is all having a ripple effect throughout the infrastructure, from the servers and storage appliances down to the components, most notability the silicon that is powering the systems.

Booter services continue to provide popular DDoS-as-a-Service platforms and enable anyone (irrespective of their technical ability) to execute DDoS attacks with devastating impact. Since booters are a serious threat to Internet operations and can cause significant financial and reputational damage, they also draw the attention of Law Enforcement Agencies and related counter activities.

The ultimate employee/manager relationship you should strive for is more of a partnership, one in which you and your manager work together to accomplish your mutual goals. In this article, I’ll discuss strategies for doing this.

USA Today reported last week that AT&T stopped selling new DSL to customers on October 1. This is an event that will transform the broadband landscape in a negative way across the country.

A group of experts from Interisle Consulting Group and Illumintel released a paper today, reporting a comprehensive study of the phishing landscape in 2020. The study’s goal was to capture and analyze a large set of information about phishing attacks to better understand how much phishing is taking place, where it is taking place, and better ways to fight them.

A number of high-profile data breaches have resulted directly from misconfigured permissions or unpatched vulnerabilities. For instance, the 2017 Equifax breach was the result of exploiting an unpatched flaw in Apache Struts allowing remote code execution. More recently, the Capital One breach last year stemmed from a misconfigured web application firewall. Verizon’s 2020 DBIR reported that only hacking was more prevalent than misconfiguration errors as the culprit of data breaches.

Unfortunately, making such a sweeping change to office workflow doesn’t just disrupt policies and expectations—it requires important changes to the technical infrastructure as well. Six months ago, we talked about the changes the people who work from home frequently need to make to accommodate telework; today, we’re going to look at the ongoing changes the businesses themselves need to make.

As mobile phones became more popular in the 1980s, more and more cellular network towers had to be built, most of which were relatively utilitarian and industrial-looking affairs. This naturally led to predictable NIMBY (not-in-my-backyard) criticisms from area residents who saw these additions as eyesores. Thus, an array of camouflage techniques emerged in parallel with this expanding technology, pioneered by companies like Larson Camouflage in Tucson, Arizona.

Let’s face it: Our digital public sphere has been failing for some time. Technologies designed to connect us have instead inflamed our arguments and torn our social fabric.

There are a number of sleepy corners of the security industry, but none perhaps as perplexing as the market for data protection. Why? Given recent metrics and clear trends, data protection should be a massive security segment.

Before you roll your eyes and click away because you see something about enterprise AI, read on for just a moment. Because it’s not about the workload or even GPUs. It’s about all the various performance pieces that go along with that shift and what they mean for a larger view of enterprise systems in the more encompassing sense.

Larry Cashdollar needed someone big — someone not afraid of physical retribution. So he called Donovan, an imposing figure at six-four. And Cashdollar says, “I made a mistake.”