Category Archive sec_blog

What is post-quantum cryptography? (14/7)

The race is on to create new ways to protect data and communications from the threat posed by super-powerful quantum computers.

https://www.technologyreview.com/s/613946/explainer-what-is-post-quantum-cryptography/

IT managers are struggling to keep up with cyberattacks, are u? (12/7)

A report from Sophos suggests that the attack techniques are varied and often multi-staged which makes it that much harder for security experts to keep their networks intact. Some 20 per cent of the respondents (out of 3,100 surveyed) said they didn’t know how they got breached.

https://www.itproportal.com/news/it-managers-are-struggling-to-keep-up-with-cyberattacks/

Europol and Eurojust team up to identify latest cybercrime trends (6/7)

https://www.neweurope.eu/article/europol-and-eurojust-team-up-to-identify-latest-cybercrime-trends/

Europol and Eurojust published on 05 July a report categorizing the current developments and challenges in combating cybercrime.
The trends are divided in five categories: loss of data, loss of location, challenges associated with national legal frameworks, obstacles to international cooperation, and challenges of public-private partnerships.

將來有國家會告上國際法庭控告另一個國家黑佢電網?

Network Security Firm *Untangle* Launches SD-WAN Router and Micro-Firewall (4/7)

Network security company Untangle this week debuted its Network Security Framework, which includes its new micro-firewall and an SD-WAN router. That new platform also includes Untangle’s existing Linux-based next-generation firewall and its command center, which manages network traffic from a cloud-based console.
Dirk Morris, founder and chief product officer at Untangle, said the framework is a “new approach to network security orchestration, providing customers and partners with a suite of cloud-managed security and connectivity options that work together to fit the needs of small-to-medium businesses and distributed enterprises.”
The micro-firewall product is a lightweight, containerized firewall that runs in a Linux container. It also has an artificial intelligence (AI)-based routing service that uses historical patterns and machine learning to pre-determine network traffic paths. It is purpose-built for small network appliances and IoT devices.
The other addition to the framework is an SD-WAN router. The router is also a lightweight device that intelligently inspects and routes traffic to efficiently use WAN links and offsite security processing.
According to Morris, this is not a managed SD-WAN service, though it can provide secure SD-WAN to hardware providers.
The router can be deployed at a remote location and will route traffic to the next-gen Firewall in the public cloud or to the company headquarters for additional security processing. It also includes the micro-firewall (which provides Layer 7 packet steering to Layer 3 to process traffic) and Untangle Predictive Routing capabilities.
“Our belief is that SD-WAN services that require vendor cloud lock-in often end up costing customers more while increasing latency – ultimately providing limited, if any, value to customers. Instead, our approach is to enable our customers and partners to work with any WAN provider they choose,” he said. Morris added that the router works with other security technologies to provide additional layers of security, if needed.
SD-WAN’s Mounting Pressure on Security Vendors
Untangle is just the most recent security vendor to jump into the SD-WAN market in some regard.
Fortinet, Barracuda, Forcepoint, and WatchGuard all have recently gone to market with SD-WAN products. Masergy, which was traditionally a security vendor, also launched an SD-WAN service in 2016.
In nearly all these cases, the security vendors already had some form of SD-WAN security functionality. Untangle added support for SD-WAN architectures last June as part of its firewall software.
This trend is led by enterprise customers requiring security from their networking architectures, but also by the mounting pressure on security vendors to compete.
“SD-WAN is a huge market opportunity that will snatch business away from established router and firewall vendors and so they have to react to not be replaced,” said Mike Fratto, senior analyst at 451 Research. “If a vendor makes a border appliance and they aren’t adapting to SD-WAN, they will soon be out of business.”
For Untangle, Morris noted that it was venturing toward SD-WAN as network trends increase the complexity of securing the network edge. “Untangle is expanding its product offerings to include solutions for distributed organizations looking for new ways to leverage SD-WAN architectures to reduce complexity and achieve cost savings.”

https://www.sdxcentral.com/articles/news/network-security-firm-untangle-launches-sd-wan-router-and-micro-firewall/2019/03/

Cloudflare疑受網絡攻擊連環死機 連登、高登、立場等一度癱瘓 (2/7)

香港遭受大規模網絡攻擊!在晚上9時50分開始,多個使用Cloudflare域名代理服務的網站都出現無法登入情況,當中包括高登討論區、連登討論區、立場新聞、Baby Kingdom、香港討論區等等。
記者嘗試登錄有關網址,但都只接收到「502 Bad Gateway」的訊息。Cloudflare在香港時間晚上10時15分表示,已經已作出修正,有關網站陸續恢復運作。
Cloudflare其後在本港時間晚上10時57分宣布,已解決問題,現時服務正常運作;目前仍在調查事件起因。
香港資訊科技商會榮譽會長方保僑相信是「國家級」黑客攻擊,從網站「Digital Attack Map」所示,估計有人刻意攻擊本港某些網站,或與不少示威者依靠網絡自發及商討行動有關。
不過,Cloudflare在本港3日凌晨0時許解釋,事件是由於回滾的錯誤軟件部署引起,否認受到攻擊。

https://www.hk01.com/%E7%A4%BE%E6%9C%83%E6%96%B0%E8%81%9E/347430/cloudflare%E7%96%91%E5%8F%97%E7%B6%B2%E7%B5%A1%E6%94%BB%E6%93%8A%E9%80%A3%E7%92%B0%E6%AD%BB%E6%A9%9F-%E9%80%A3%E7%99%BB-%E9%AB%98%E7%99%BB-%E7%AB%8B%E5%A0%B4%E7%AD%89%E4%B8%80%E5%BA%A6%E7%99%B1%E7%98%93

Cloudflare終於被攻破…