Is Microsoft A Risk?
Hewlett Packard Enterprise (HPE) has cast a shade on what it believes to be the biggest risks facing enterprises, and included on that list is Microsoft.
We ain’t surprised, but it is quite a shocking and naked fact when you consider it. The naming and resulting shaming happens in the HPE Cyber Risk Report 2016, which HPE said “identifies the top security threats plaguing enterprises”.
Enterprises, it seems, have myriad problems, of which Microsoft is just one.
“In 2015, we saw attackers infiltrate networks at an alarming rate, leading to some of the largest data breaches to date, but now is not the time to take the foot off the gas and put the enterprise on lockdown,” said Sue Barsamian, senior vice president and general manager for security products at HPE.
“We must learn from these incidents, understand and monitor the risk environment, and build security into the fabric of the organisation to better mitigate known and unknown threats, which will enable companies to fearlessly innovate and accelerate business growth.”
Microsoft earned its place in the enterprise nightmare probably because of its ubiquity. Applications, malware and vulnerabilities are a real problem, and it is Windows that provides the platform for this havoc.
“Software vulnerability exploitation continues to be a primary vector for attack, with mobile exploits gaining traction. Similar to 2014, the top 10 vulnerabilities exploited in 2015 were more than one-year-old, with 68 percent being three years old or more,” explained the report.
“In 2015, Microsoft Windows represented the most targeted software platform, with 42 percent of the top 20 discovered exploits directed at Microsoft platforms and applications.”
It is not all bad news for Redmond, as the Google-operated Android is also put forward as a professional pain in the butt. So is iOS, before Apple users get any ideas.
“Malware has evolved from being simply disruptive to a revenue-generating activity for attackers. While the overall number of newly discovered malware samples declined 3.6 percent year over year, the attack targets shifted notably in line with evolving enterprise trends and focused heavily on monetisation,” added the firm.
“As the number of connected mobile devices expands, malware is diversifying to target the most popular mobile operating platforms. The number of Android threats, malware and potentially unwanted applications have grown to more than 10,000 new threats discovered daily, reaching a total year-over-year increase of 153 percent.
“Apple iOS represented the greatest growth rate with a malware sample increase of more than 230 percent.”
Courtesy-TheInq
Microsoft To Release Advanced Threat Analytics
Comments Off on Microsoft To Release Advanced Threat Analytics
Microsoft is very close to releasing Advanced Threat Analytics (ATA) the security sure-up that it first announced three months ago.
ATA, or MATA as we called it for our own small amusement, is the result of three months’ real world testing, and the culmination of enough user feedback to inform a final release.
That final release will happen in August, which should give you plenty of time to get your head around it.
Hmmm. Microsoft’s Advanced Threat Analytics seems like a very good idea focused on the enterprise.
— Kevin Jones (@vcsjones) May 4, 2015
Idan Plotnik, who leads the ATA team at Microsoft, explained in an Active Directory Team Blog post that the firm is working towards removing blind spots from security analytics, and that this release should provide a strong and hardy tool for the whacking away of hacking.
“Many security monitoring and management solutions fail to show you the real picture and provide false alarms. We’ve taken a different approach with Microsoft ATA,” he said.
“Our secret sauce is our combination of network Deep Packet Inspection, information about the entities from Active Directory, and analysis of specific events.
“With this unique approach, we give you the ability to detect advanced attacks and stolen credentials, and view all suspicious activities on an easy to consume, simple to explore, social media feed like attack timeline.”
The Microsoft approach is an on-premise device that detects and analyses threats as they happen and on a retrospective basis. Plotnik said that it combines machine learning and knowledge about existing techniques and tactics to proactively protect systems.
“ATA detects many kinds of abnormal user behaviour many of which are strong indicators of attacks. We do this by using behavioural analytics powered by advanced machine learning to uncover questionable activities and abnormal behaviour,” he added.
“This gives the ability for ATA to show you attack indicators like anomalous log-ins, abnormal working hours, password sharing, lateral movement and unknown threats.”
A number of features will be added to the preview release, including performance improvements and the ability to deal with more traffic, before general availability next month.
New Data Suggest IT Hiring Increasing
November 21, 2014 by admin
Filed under Around The Net
Comments Off on New Data Suggest IT Hiring Increasing
Whenever IT hiring increases, as it did last month, the default explanation from analysts is this: The economy is improving.
That might be true, and it may well explain the U.S. Department of Labor’s report today that showed the U.S., overall, added 214,000 jobs last month.
Of that total employment gain, IT hiring grew by 7,800 jobs in October, compared with a gain of 6,900 jobs in September, according to TechServe Alliance, an IT industry group.
Another IT labor analyst group, Janco Associates, calculated last month’s IT gains at 9,500 jobs.
Government data can be reported in different ways, depending on which job categories are included in the IT job estimates, and it is why analysts report job numbers differently.
Hiring trends are also affected by Labor Department adjustments, and the government’s adjusted data adds nearly 25,000 telecom jobs over the past two months, according to Janco. Because of this adjustment, Janco termed the recent growth in IT over the past several months “explosive,” while TechServe put last month’s results as “modestly stronger.”
There is no one reason for October’s gain. An improving economy may be at the heart of any answer. Independent of the government numbers, Computer Economics, in a recent report on contingent versus full-time hiring, said it is seeing a drop in the use of contract workers at large companies and more reliance on full-time workers, which is a sign of an improving economy.
Cisco Launches I-O-T Security Contest
Cisco has leant its support to the Internet of Things (IoT) with a security competition.
The “Internet of Things Grand Security Challenge” will be offering prizes of up to $300,000 for innovations designed to close security loopholes surrounding internet-connected objects.
Because the IoT is a loose concept rather than a standard or protocol, the criteria for the solutions are quite far reaching, with a Cisco blog post citing that it will evaluate entries based on:
Feasibility, scalability, performance, and ease-of-use
Applicability to address multiple IoT verticals (manufacturing, mass transportation, healthcare, oil and gas, smart grid, etc.)
Technical maturity/viability of proposed approach
Proposers’ expertise and ability to feasibly create a successful outcome
We now live in a world where even the most benign objects are hackable and the numbers of devices involved will only increase, so it therefore will become imperative that the interconnectivity involved does not overstep boundaries of safety or privacy.
Sierra Wireless recently launched Legato, a Linux distro specifically engineered for the IoT, which actually plays up its capacity for gathering Big Data. Meanwhile the IT industry continues to be excited about the IoT with Intel claiming it will be the next major disrupter in tech.
Winners of Cisco’s security challenge will be announced this Autumn at the Internet of Things World Forum, with six prizes of between $50,000-$75,000 up for grabs, as well as the overall winner’s $300,000 bounty.
Apple Raising Prices In Japan
June 10, 2013 by admin
Filed under Uncategorized
Comments Off on Apple Raising Prices In Japan
Apple Inc increased prices of iPads and iPods in Japan on Friday, becoming the highest-profile brand to join a growing list of foreign companies asking Japanese consumers to pay more as a weakening yen squeezes profit.
Some U.S. companies have inoculated themselves at least temporarily against the yen’s fall through financial hedging instruments, while others are charging customers more.
The yen has fallen more than 20 percent against the U.S. dollar since mid-November when then-opposition leader Shinzo Abe, who is now prime minister, prescribed a dose of radical monetary easing to reverse years of sliding consumer prices as part of a deflation-fighting policy, dubbed “Abenomics.”
The Bank of Japan, under a new Abe-backed governor, in April promised to inject $1.4 trillion into the economy in less than two years to achieve 2 percent inflation in roughly two years.
Price rises are rare in Japan, which has suffered 15 years of low-grade deflation. A few other foreign brands have also raised prices on products, providing an early sign of inflation for Abe and an indication that these companies feel consumer demand is strong enough to withstand the increases.
Still, price rises would have to spread much more widely, especially to lower-end discretionary goods, to show that Abe’s aggressive policies are helping reinvigorate the economy.
Apple, one of the most visible foreign companies in Japan, raised the price of iPads by up to 13,000 yen ($130) at its local stores. The 64-gigabyte iPad will now cost 69,800 yen, up from 58,800 yen a day ago, an Apple store employee said. The 128-gigabyte model will cost 79,800 yen compared with 66,800 yen.
Apple also upped prices of its iPod music players by as much as 6,000 yen and its iPad Mini by 8,000 yen.
Will Cisco Boot Linksys?
Cisco reportedly has hired Barclays to find a buyer for its Linksys business.
Cisco bought Linksys back in 2003 to get into the consumer networking business and the firm has put out some good products, most notably the WRT54G wireless router that was a favourite with technology savvy punters. Now Cisco is looking to offload Linksys as it continues to pull back from the consumer networking market.
Cisco has been cutting jobs and products such as the Flip video camera, as it wants to get back to the high margin enterprise networking business. Back in 2003, Cisco paid $500m for Linksys and got access to an established business that focused on producing consumer network equipment.
A decade later, it is being reported that Cisco will be lucky to get its $500m back. Cisco has been pulling out of its failed attempt to get into the consumer market and is now focusing on flogging both network infrastructure hardware and servers, though it is widely expected to be hit hard as software defined networks become more popular.
Unlike Cisco’s core enterprise business, Linksys products typically have low margins, and with its parent firm’s slowing sales growth, it is not surprising Cisco wants to offload it. Bloomberg’s sources said Cisco might find interest in buying Linksys from television makers, though they wouldn’t provide any more details.
Did Huawei Steal From Cisco?
Huawei has replied to US rival Cisco after the networking firm made allegations about the Chinese company relating to a lawsuit between the two firms.
The case dates back to 2003 and relates to the alleged theft of source code by Huawei from Cisco for use in its networking products. The case was settled confidentially out of court.
Cisco complained about what it saw as a willful distortion of the facts of the case after Huawei’s chief representative in the US, Charles Ding, claimed the outcome was that Cisco stood down over its allegations.
In response, Cisco released excerpts from a report by an independent analyst that was used to form the basis of a settlement, which Cisco said proved Huawei had used its source code in its products.
However, in a statement sent to The INQUIRER, Huawei said it was “disappointed with the continued rhetoric from Cisco” and claimed there was no basis to its argument.
“With respect to the lawsuit which took place about 10 years ago, the fact is the court dismissed the case, upon a joint stipulation of the parties, after the neutral expert’s review. This shows Cisco’s present allegations have no merit,” it said.
Furthermore, the firm also said it didn’t believe Cisco had the right to report elements of the review.
“We don’t think Ding violated the agreement between Cisco and Huawei, which had a negotiated confidentiality provision in it,” it said. “Cisco’s general counsel’s selective and misleading cropping of a confidential report from the Neutral Expert may have violated that provision.”
Huawei added that it would consider releasing more information on the case, though, in an effort to paint a more complete picture of the case.
“However, since Cisco has put selected snippets into the public domain, the truth may require that more than carefully selected quotes be put in the public record. Huawei is exploring the best way to accomplish that goal,” it said.
Cisco Gives Employees The Boot
Network equipment maker Cisco Systems said on Monday that it plans to eliminate about 1,300 jobs as part of ongoing efforts to restructure the company.
“We are performing a focused set of limited restructurings that will collectively impact approximately 2 percent of our global employee population,” the company said in an emailed statement.
These actions are part of a continuous process to simplify the company and assess the economic environment in certain parts of the world, it said.
Cisco had 65,223 employees at the end of its fiscal third quarter, according to its website.
Cisco last year started a plan to cut expenses by $1 billion in an effort to make the company leaner and more efficient.