(The Hosting News) – IDF/Connect today announces that it has obtained from CA Technologies validation for its SSO/Rest solution for CA SiteMinder®. SSO/Rest opens up exciting new capabilities for SSO infrastructures based on CA SiteMinder, including new integration methods and the ability to protect applications “in the cloud”.
The CA Validation program is designed to provide a standard process to verify technology partners’ integrated products. Specific criteria must be met including confirming a technology partners’ integrated solution correctly installs, configures, and performs as described by the technology partner.
Richard Sand, CEO of IDF/Connect, explains: “SSO/Rest extends the reach of CA SiteMinder into the cloud while preserving the full power of SiteMinder functionality. From the standpoint of the SiteMinder administrator, there is no difference between the application residing in the cloud and applications within the local data center. SSO/Rest effectively solves the challenges of Web Access Management for the cloud”.
The SSO/Rest solution is comprised of the SSO/Rest Gateway and SSO/Rest Agents. The SSO/Rest Gateway provides a complete HTTP REST-based interface to the SiteMinder API. The Gateway has been hardened and secured to safely provide enterprise SSO, authentication, session management, and access management over the Internet and to the public cloud.
The SSO/Rest Agents can be used in public cloud Infrastructure or Platform-as-a-Service environments in lieu of traditional CA SiteMinder agents, so that SiteMinder customers can use their existing SiteMinder infrastructure to manage these applications as if they were located on-premise.
SSO/Rest extends CA SiteMinder support to Web 2.0 and Mobile technologies and enhances its protection of Web 2.0 applications. SSO/Rest also provides richer “internal-facing” services which meet the needs of server-side applications needing a tight SSO integration.
Aaron Berman, CA security product advisor, adds: “Organizations today require maximum flexibility in their single sign-on and access management solutions to meet the changing needs of the enterprise demanded by application owners. SSO/Rest enhances the already flexible approach CA SiteMinder has taken to provide both loosely coupled and tightly coupled architectural solutions, allowing IT to continue to leverage and build upon their SiteMinder implementations with cloud, mobile and web 2.0 applications”
- SSO/Rest employs a flexible infrastructure, using standards-based components and technologies. It can be deployed in any J2EE servlet container (Tomcat, JBoss, WebLogic, Websphere).
- SSO/Rest endpoints can be called by any browser or mobile rich-content framework, such as AJAX, Adobe Flex, and Microsoft Silverlight, It supports plain text, JSON, and XML payloads.
- SSO/Rest supports the most current versions of SiteMinder, simplifying deployment of the solution. It has been tested with CA SiteMinder R12, and R12.5.
- SSO/Rest is available for sale directly from IDF Connect or on CA’s Cloud Commons marketplace
- You can read more about SSO/Rest on the IDF Connect website:http://www.idfconnect.com/products/ssocloud/ssorest/,
About IDF Connect, Inc.
IDF Connect, Inc. is a software products and managed services company based in Wilmington, Delaware, that provides enterprise-grade Identity and Access Management products, solutions, and services engineered specially to provide a homogeneous coexistence of traditional “on-premise” Identity and Access Management technologies with the new Cloud-based infrastructure and applications. IDF/Connect is a member of CA Technologies Technology Partner Program.
(The Hosting News) – Today we are pleased to announce the beta release of IPDb, the Internet Podcast Database. Podcasts have steadily gained in popularity over the past ten years and can be found on a variety of platforms including iTunes, Zune, Stitcher…and now, there’s IPDb – a comprehensive, online searchable podcast database.
For those new to the term “podcast,” it is a blended term joining “pod” from iPod with “cast” from broadcast. The term “podcast” was coined by Ben Hammersley in The Guardian newspaper in a February 2004 article, along with other proposed names. A podcast is a collection of .mp3 files that the listener can follow and download onto a portable .mp3 player with the most popular being the smartphone. Podcasters produce a wide variety of content from novels to movie reviews, how-to podcasts, real estate, gardening, fishing, sports, and science and on just about every topic that anyone wishes to discuss anytime, anywhere. Almost without exception, podcasts are free for people to download and listen.
The advantage of participating with IPDb is to enhance not only the podcast fans’ online experience, but also that of the podcasters. IPDb gives podcasters an opportunity to maintain a celebrity profile and link all their associated podcasts. Another perk for podcast celebrities is to showcase their award-winning podcast with appropriate trophy icons. Podcast fans have the ability to leave valuable feedback and rate podcasts.
During the beta phase of development, all users will not be charged a fee for utilizing the site. After beta testing is complete, podcast fans will continue to have free accounts while PodcastPRO accounts will then cost $9.99/month to maintain their celebrity profile and all associated podcasts. The first 1,000 podcasters who sign up for a Pro account during beta testing will receive a “grandfathered” rate of $5.99/month as well as other perks such as complimentary advertising.
IPDb was a revelation that founder, Serena Travis, received while stuck in Los Angeles traffic last December. She was thinking about some podcasts that she was working on, and then her mind started to wander to other things including developing a profile on IMDb. And then it occurred to her, why not have an online searchable database just for podcasts and podcasters? Travis has created a few podcasts; with her first being Good Morning Scott Valley. “I’ve been hooked on podcasts since 2010 and after I started producing my own in 2011, I knew there was no turning back,” said Travis. She noticed that the key element missing from most other platforms was a strong podcaster’s profile page, “We want to celebrate the podcaster as well as the podcast.”
Chuong Thai, representing Zero Six Media, the firm developing the software and site, has already been getting compliments on the layout and functionality. “We have had several clients comment on the simplicity of the IPDb site – it’s already a favorite even before its official launch!”
IPDb plans to roll out a red carpet event this summer to coincide with the official launch of the web site.
To join the IPDb community, go to beta.ipdb.net and sign up today. It’s purple. It’s people. It’s podcasts!
(The Hosting News) – The FBI’s facial recognition system is said to contain over 52 million images by 2015, a database that many say poses a threat to individuals privacy.
According to the Washington Times, the Electronic Frontier Foundation reported this information through records it obtained from a Freedom of Information Act request about the FBI’s facial recognition database, Next Generation Identification.
The NGI is “capable of processing 55,000 direct photo enrollments daily and of conducting tens of thousands of searches every day,” says the records.
In 2012, the NGI obtained 13.6 million images, and by 2013, the number of images rose to 16 million.
By 2015, the Bureaus’s database is expected to contain 46 million criminal images, 4.3 million civil images, 215,000 images from Repository for Individuals of Special Concern, 750,000 images from a “Special Population Cognizant” category, and 215,000 images from “New Repositories.”
With these images, the federal agency says it will be able to track down terrorists and criminals by facial images and “other forms of biometric identification like palm prints, iris scans, facial imaging, scars, marks, and tattoos.”
WordPress has become so dominant on the blog hosting scene that it is almost unheard of to even consider something else. After all it is free, open source and works well on both small blogs and large news sites. Nevertheless, there are some instances where it might be worth it to explore some alternatives. The following 4 blogging web applications are not WordPress, but they might still be useful.
1. Serendipity – This little blogging platform is great for an online diary, blog or even more. It might sound a little old school, but sometimes that is all you want. Based on PHP and supporting a decent plugin architecture, Serendipity is great for people who need something simple.
2. Drupal – If simple is not even in you vocabulary, you might try to tackle Drupal. In terms of power, it trumps most other content management systems (CMS), and it is fully extensible, allowing you to create one or even multiple blogging platforms and full-content websites. Like the others on the list, it is also free and open source.
3. LifeType – The claim to fame of LifeType is that it can support multiple blogs and users, making it ideal for community efforts, without the overhead that a Drupal installation might require. Free and open source, LifeType supports the standard blogging features you would expect like permalinks, pings and trackbacks.
4. FlatPress – No frills, no thrills, you might call this the economy car of blogging platforms. It is fully functional, but do not expect to be wowed. FlatPress saves your blog posts in simple text files. It does however, support advanced features like a plugin system, widget system, and themes. It might be easy to underestimate, but if you just need a blog, you really cannot go wrong with this.
WordPress is not the only blogger-friendly CMS on the block, but it is the most popular. Chances are, your web host offers one-click installation of WordPress, but you might check to see if any of the above apps or even others not mentioned here are also available. Depending on your needs, you might find one that actually works better for you.
(The Hosting News) – SnapLogic, the Elastic Integration™ company, today announced new findings from a joint survey with TechValidate which focused on the business and technical drivers and barriers for software-as-a-service (SaaS) application and cloud analytics adoption in the enterprise. The survey queried more than 100 U.S. companies with revenues greater than $500 million. Highlighting the demand for the right approach to integrating disparate SaaS applications, 72% of the survey respondents indicated that they have an active cloud application or data integration project. A modern, scalable architecture was recognized as the primary technical requirement for a cloud integration platform, and speed or time to value was the primary business driver.
Data Privacy and Integration Continue to be SaaS Adoption Barriers
- 56% of survey respondents are running four or more SaaS applications.
- 22% said that 25-50% of their business applications will be delivered as a cloud service by 2015.
- 47% noted data privacy concerns as a barrier to SaaS application adoption in their companies, while 43% prioritized application and data integration challenges.
Modern Cloud Integration Platforms Gaining Traction in the Enterprise
- 59% of survey respondents listed speed or time to value as the primary business driver for a cloud integration service. 53% identified flexibility and agility in response to requests and changes and 27% prioritized the SaaS subscription model (operational vs. capital expense).
- In terms of iPaaS technical requirements, 52% said a modern and scalable architecture was the primary requirement, while 41% prioritized the ability to seamlessly handle cloud constructs such as JSON, REST and APIs.
- When asked about the challenges of relying upon legacy on-premises integration tools for cloud integration, 43% took issue with the requirement for costly hardware purchases and software installation and configuration. 37% found on-premise integration tools to be too expensive due to the perpetual licensing model and 35% noted that change management is painful where end point changes mean integration re-work.
Cloud Analytics Demand Increasing but Privacy and Security Remain a Concern
- Just under 50% of respondents listed: Speed or time-to-value, flexibility and agility and easy access to business information as the top business drivers for cloud-based analytics.
- 57% said that data security and privacy concerns remain a barrier to cloud analytics adoption in their companies. 38% noted the inability for cloud-based business intelligence (BI) tools to handle a large variety of data sources as an adoption barrier.
“The results of this TechValidate survey are in line with the conversations we’re having with our customers, partners and prospects,“ said Darren Cunningham, vice president of marketing at SnapLogic. “As SaaS application, analytics and API adoption grows in the enterprise, the ability to connect with other systems is the essential ingredient to long-term customer success. Integration should be a cloud accelerator not a bottleneck, which is why increasingly companies of all sizes are looking for modern, elastic integration alternatives to power their cloud services initiatives.”
“Companies are recognizing the complexities of integration in the face of data sources and initiatives that are evolving at a rapid pace,” said James Haight, research analyst at Blue Hill Research. “Rigid integration solutions have the inherent risk of making integration undertakings a reoccurring holdup. The TechValidate results point out the necessity of future proofing initiatives through choosing solutions that emphasize flexibility and are designed to handle the increasing presence of cloud applications and analytics.”
Learn More About the SnapLogic TechValidate Cloud Integration Survey
Visit http://www.snaplogic.com/techvalidate to download the complete SnapLogic TechValidate survey results and register for an interactive webcast on April 25th at 1pm ET where we’ll review the results and provide an overview of the SnapLogic Integration Cloud.
TechValidate is a trusted third-party research organization that directly interfaces with business and technology end users to collect and validate information about their deployments. More information is available athttp://www.techvalidate.com
SnapLogic is the leader in Elastic Integration, helping companies connect enterprise applications and data in the cloud and on-premise for improved business agility and faster decision-making. With the award-winning SnapLogic Integration Cloud, organizations can more quickly and affordably accelerate the “cloudification” of enterprise IT with a fast, multi-point and modern integration platform as a service (iPaaS). Funded by leading venture investors, including Andreessen Horowitz and Ignition Partners, and co-founded by Gaurav Dhillon, former CEO and co-founder of Informatica, SnapLogic is used by prominent companies in the Global 2000.
For more information, call +1.888.494.1570 or visit http://www.SnapLogic.com
Virtualization makes server deployment must faster than deploying physical servers, and deploying in the cloud can be even faster and easier. Many cloud service providers now offer ready-to-deploy cloud images of popular server operating systems that are fully functional virtual private servers (VPS). Within minutes you can have a cloud-based server that you can use however you like.
Setting up a physical server requires someone to carry a machine to a location in the data center, configure the power to make sure the server can be accommodated, connect all of the power and network cables, ensure that cooling is working correctly, turn on the server, image the server and install and configure any application-specific requirements. All of that can take quite a while. With virtualization, you can cut out a lot of the physical work. Provisioning a virtual machine and even allocating necessary power can now be done from centralized data center software.
Taking automation to the next step, a cloud VPS allows you to provision servers that do not require any power or physical space in your data center. As long as you can afford the hourly, monthly or other payment requirements, you can add as many virtual servers as you need with a few clicks. You can also replicate server images and deploy multiple servers on the fly.
Just as you would with a real remote physical server, you have full administrative access and control over a cloud VPS without needing any on-premise infrastructure. Furthermore, you only need to pay for what you use. If you only have a small web application to run, you can pay for a VPS that only uses 1 GB of RAM rather than the 8, 16, 32 or more that might actually be installed on the physical server. Ultimately, a cloud VPS is affordable, efficient and yet still powerful enough to meet many modern web hosting needs.
(The Hosting News) – The Royal Canadian Mounted Police arrested a 19-year old male on Tuesday for allegedly hacking into Canada’s tax agency, making this the first arrest in connection with the Heartbleed bug, CNN reports.
Stephen Solis-Reyes was arrested at his home in London, Ontario where authorities say he used the Heartbleed bug to gain access to around 900 social insurance numbers from taxpayers in the country forcing the agency to shut down its servers to prevent further theft.
According to a press release from the RCMP, Solis-Reyes is facing one count of Unauthorized Use of Computer and one count of Mischief in Relation to Data.
“The RCMP treated this breach of security as a high priority case and mobilized the necessary resources to resolve the matter as quickly as possible. Investigators from National Division, along with our counterparts in “O” Division have been working tirelessly over the last four days analyzing data, following leads, conducting interviews, obtaining and executing legal authorizations and liaising with our partners,” said Assistant Commissioner Gilles Michaud.
This hack caused the Canada Revenue Agency to delay the tax return deadline by a week from April 30th to May 5th.
Solis-Reyes is expected to appear in an Ottawa court on July 17th, 2014.
With Diplomat Cloud Connector, trading partners or remote offices no longer need a separate OpenPGP solution to encrypt and decrypt files. No FTP or secure FTP servers are needed outside the firewall in order to exchange files. Since Diplomat MFT manages both OpenPGP encryption and file transfer, no other encryption application or file transfer application is needed.
Diplomat Cloud Connector enables:
- Transport session authentication with OpenPGP keys
- Automatic OpenPGP encryption and decryption of files sent between Diplomat MFT and Diplomat Cloud Connector sites
- Checksum file verification
- Checkpoint restart capability
Performance enhancements in Diplomat MFT v6.0 focus on memory management. “Diplomat v6.0 improves memory usage for better overall performance,” says Jim Ford, CTO at Coviant Software. “Based on input from some of our larger customers, we wanted to improve the performance of large jobs that process thousands of files.”
Diplomat MFT v6.0 expands the range of SQL databases that can be used by Diplomat MFT to capture audit data by supporting custom connections to SQL databases.
About Coviant Software
Coviant Software has been a trusted provider of secure file transfer and OpenPGP encryption solutions for 10 years. Coviant Software delivers Managed File Transfer solutions to improve the productivity of file transfer administrators. Diplomat Managed File Transfer software uses Intelligent File Transfer(TM) design with embedded secure file transfer logic, so file transfer experts can quickly design and deploy file transfer jobs with fewer errors and failed transfers.
(The Hosting News) – ownCloud Inc., the company behind the world’s most popular open source file sync and share software, today released its performance testing for ownCloud Enterprise Edition with Red Hat Storage, Red Hat’s open, software-defined storage offering, running on x86 servers that demonstrate the cost and performance efficiency gained by running ownCloud with Red Hat Storage on industry-standard servers.
The performance testing benchmarked 25,000 concurrent users of ownCloud Enterprise Edition and Red Hat Storage running on industry-standard x86 servers. The configuration used illustrates a 2x total cost of ownership (TCO) improvement by converging the application server and storage server tiers onto the same servers, compared to traditional solutions with separate storage server appliances. This enables businesses to scale quickly and cost-effectively with user demand like a public cloud with far greater control of sensitive data and without subsidizing free cloud vendor users.
Red Hat and ownCloud used two twin-node x86 storage servers and four standard 2-socket servers for the performance benchmark. ownCloud Enterprise Edition and Red Hat Storage were installed and benchmarked on first one, and then two twin storage servers, serving as converged storage and application nodes. In addition, a MySQL NDB cluster was installed on two of the 2-socket servers, with another used as a load balancer out front with the final 2-socket server used as a load generator. The results show clear linear scalability when adding converged servers with a sustained load per server of 25,000 active users, demonstrating an architecture that can scale to meet the needs of hundreds of thousands of users.
ownCloud Enterprise Edition — based on ownCloud Community Edition, the world’s most popular open source file sync and share project, with more than 1.3 million users — is deployed fully on premises, enabling integration into existing user management tools, governance processes, and security, monitoring, and back-up tools. ownCloud can also leverage nearly all on site storage, and can be deployed with cloud storage as well — such as Amazon (S3) and OpenStack Object Storage (Swift) – to create a centrally controlled hybrid deployment model.
“Red Hat Storage is a perfect environment for businesses looking to keep control of their data while lowering storage costs and still giving employees file sync and share that they will use,” said Matt Richards, vice president, Products, ownCloud. “The combination of Red Hat Storage and ownCloud Enterprise Edition gives businesses an open, secure and private way for their employees to sync and share secure corporate data.”
With ownCloud Enterprise Edition and Red Hat Storage, enterprises customers can take more control of their files with on-site application servers and storage to manage large big data workloads while integrating easily into existing IT environments. The ownCloud and Red Hat solution gives IT more manageability with sensitive enterprise documents while providing a simple file sync and share experience they demand.
“ownCloud gives enterprise users the ability to share and sync files in an open source and secure way,” said Brent Compton, director, ecosystem, Storage and Big Data, Red Hat. “As illustrated by these benchmark results, the combined ownCloud solution with Red Hat Storage and leading x86 storage servers is very attractive to customers looking for similar scalability and TCO benefits available from public cloud solutions but with increased control and security.”
The combination of Red Hat Storage and ownCloud 6 Enterprise Edition offers organizations a custom-built and scalable way to deploy and manage highly scalable, centrally managed and cost-effective file sync and share capabilities.
For more information, visit here to download the ownCloud and Red Hat Storage Solution Brief.
ownCloud at 2014 Red Hat Summit
Visit ownCloud at Red Hat Summit on April 14-17 at the Moscone Center South in San Francisco, in the Red Hat Storage Partner Booth #605.
Based on the popular ownCloud open source file sync and share community project, ownCloud Inc. was founded in 2011 to give corporate IT greater control of their data — combining greater flexibility, openness and extensibility with on premise servers and storage. Company headquarters are in Lexington, MA, with European headquarters in Nuremberg, Germany. For more information, visit: http://www.owncloud.com.
Red Hat is a trademark of Red Hat, Inc., registered in the U.S. and other countries.
(The Hosting News) – Following the success of the 5-working day lead time for all on-net ROADM-enabled Data Centres within the M25, Vtesse has now extended the same offer to all ROADM-enabled sites throughout the entire UK footprint.
This brings the benefits of fast turn-up (within 5 working days) for high-speed optical services to a total of 32 key Data Centre locations throughout the UK, meaning that Vtesse leads the way in the rapid & flexible delivery of high-speed optical capacity. This pioneering concept of “Cloud Bandwidth” is designed to give networks the flexibility to keep pace with the ever-changing workload demands of the Cloud computing world.
The 5 working-day lead time applies to 1Gb/s and 10Gb/s point-point Optical circuits delivered between ROADM-enabled nodes using Vtesse’s low-latency WDM (Wavelength Division Multiplexing) network. It also applies to 1Gb/s and below Ethernet Private Line, IP Transit and IPVPN services delivered to MPLS-enabled nodes anywhere in the UK.
In addition to the fast turn-up of services, Vtesse Cloud Bandwidth also offers unprecedented flexibility in allowing customers to move any existing circuit or IPVPN service from one on-net site to another with no penalties, and within the same 5-working day lead time provided both sites are ROADM-enabled (or MPLS-enabled for EPL and IPVPN services). Short-term contracts (3 or 6 months) can also be considered in areas where spare capacity exists giving customers a broad range of options for unpredictable bandwidth demands.
Chris Peregrine – Senior Product Marketing Manager Vtesse
Barbro Cranfield – Marketing Manager Vtesse
Since 2000, Vtesse has been delivering Fibre Optic Networks to enterprise organisations. Partners and Data Centres, In 2009, Vtesse opened its first Tier iii designed Data Centre in Hertfordshire. The Vtesse network is expanding rapidly and utilises innovative ROADM technology that enables faster more cost effective deployment to over 120 PoP’s including 60 Major UK Data Centres. Vtesse’s Data Centre is built out on demand and offers totally flexible spacing to meet the needs of Vtesse’s customers, it allows organisations to create their own Data Centre within a Data Centre Facility.
Foxholes Business Park
John Tate Road
(The Hosting News) – On Tuesday Google revised its terms of service, clarifying that the company does in fact scan users private emails, a practice that has the company facing much scrutiny from privacy groups.
The changes state that Google analyzes incoming and outgoing emails, as well as emails stored on Google’s servers, through an automated software service, The Guardian reports.
“We want our policies to be simple and easy for users to understand. These changes will give people even greater clarity and are based on feedback we’ve received over the last few months,” said a Google spokeswoman.
The new policy scans users emails in order to customize search results and tailor advertisements.
“Our automated systems analyse your content (including emails) to provide you personally relevant product features, such as customized search results, tailored advertising, and spam and malware detection. This analysis occurs as the content is sent, received, and when it is stored,” states the revised terms of service.
Google’s last changed its terms of service last November.
(The Hosting News) – Xand, the Northeast’s premier provider of cloud, managed services, colocation, and disaster recovery services, announced today the completion of a multimillion dollar expansion of its Massachusetts facility.
The expansion adds high-density data center space, enhanced cloud computing infrastructure, expanded power and cooling capabilities, new dedicated and shared disaster recovery seating areas, and dual-factor access controls paired with biometric security scanners.
“The expansion of our Massachusetts facility represents Xand’s continued commitment to delivering the best possible security, infrastructure, and availability resources for our clients,” said Xand President and CEO Yatish Mishra. “We have experienced an unprecedented surge in demand for hybrid cloud, colocation, and managed services solutions in the Northeast market, and this investment in our Massachusetts infrastructure ensures that Xand stands ready to meet the region’s demands today and well into the future.”
Located along the Route 495 Technology Corridor in Marlborough, Xand’s Massachusetts facility serves the Greater Boston and Providence metropolitan areas and is strategically positioned safely away from coastal flood plains and urban threat zones. Spurred by growth in demand for cloud, managed services, and hybrid colocation solutions, Xand’s leadership team earmarked the facility for a major expansion in 2013. Construction began in Q3 of that year and was completed in Q1 2014.
A new data center build features 30,000 square feet of raised floor colocation space backed by dedicated generators and robust power feeds. The space is well suited for customized private cages, multi-cabinet designs, and other enterprise infrastructure footprints.
The building’s entrance was also updated during the expansion project, adding state-of-the-art iris scanners and a fully-automated revolving door to control data center access, monitored 24×7 by onsite security staff.
Xand Chief Operations Officer Keith Markley said, “Our strong financial backing and extensive network of design, engineering, electrical, and construction partners were fully leveraged to complete this large project in just a few short months. With the addition of a new data center, new chiller plant, and expanded power and generator resources, this build-out dramatically increases the capabilities of our Marlborough facility.”
Xand is the Northeast’s premier provider of highly resilient cloud, managed services, colocation, and disaster recovery. Its broad user base includes over 1200 clients spanning industries such as healthcare, financial services, education, manufacturing, telecom and technology. Since 1999, Xand has designed, built, and managed IT infrastructure services which allow enterprises to maximize their critical application performance and availability. With data centers spanning New York, Pennsylvania, Connecticut, and Massachusetts, Xand offers colocation, cloud, enterprise hosting, managed services, business continuity, disaster recovery and managed networking throughout the region via best-in-class facilities, engineering expertise, and commitment to customer service excellence. For more information, please visit http://www.xand.com.
(The Hosting News) – ThreatMetrix®, the fastest-growing provider of context-based security and advanced fraud prevention solutions, today announces several strategies for consumers to stay protected following the recentHeartbleed vulnerability, which has potentially exposed millions of passwords, credit card numbers and other personal identifiers. These strategies aim to help businesses and customers avoid being compromised by similar threats in the future.
Last week, a major lapse in Internet security – known as the Heartbleed vulnerability – was uncovered after going undetected for nearly two years. The flaw created an opening in OpenSSL, the most common encryption technology on the Internet. OpenSSL is designed to protect data in transit including email, instant messaging and e-commerce transactions. The vulnerability in OpenSSL enables hackers to access server memory that could allow hijacking of accounts or theft of private keys used to decrypt communications.
Since Heartbleed went undetected for so long, the scope of compromised information is still unclear, but many online businesses are urging users to change their passwords as a precautionary measure.
“Today it’s Heartbleed and tomorrow it will be another data breach or vulnerability,” said Alisdair Faulkner, chief products officer, ThreatMetrix. “Passwords are a static means of security and are frankly obsolete as a stand-alone authentication solution in today’s cybersecurity landscape. Once account login information is obtained, cybercriminals have access to personal data used for committing bank fraud or falsifying credit card transactions – the possibilities are endless. Security should not just rely on point-in-time authentication solutions. Instead, continuous evaluation of trust is required based on what the user is attempting to do.”
The Heartbleed security flaw does not only impact websites, but also mobile applications and networking equipmentthat connects homes and businesses to the Internet (also known as the Internet of Things), such as routers and printers. As more and more devices move online through the Internet of Things, hacks and cybersecurity breaches are becoming more common.
Businesses need to stay one step ahead of threats such as Heartbleed and implement preventative cybersecurity strategies in place of passwords and other forms of static authentication. Suggested strategies include:
- Real-time trust analytics – Move beyond just big-data collection and improve effectiveness of controls with real-time analysis of device, location, identity and behavioral context for every authentication attempt. Real-time trust analytics offer unprecedented identity authentication policies for businesses and enterprises by comparing against global benchmarks derived from peers in their industry, the size and scale of the enterprise, geographic location and more.
- Enhanced mobile identification – Detects jailbroken devices and offers location-based authentication, protecting mobile transactions by indicating when the mobile operating system has been breached and the security of applications has been compromised.
“To protect against future attacks like Heartbleed, businesses need to move beyond legacy verification and authentication solutions and recognize the benefits of leveraging a collective approach to cybersecurity,” said Faulkner. “The ThreatMetrix® Global Trust Intelligence Network (The Network) delivers real-time intelligence, providing customers with consistent risk assessments of data and creating a digital persona of users by mapping their online behaviors and devices.”
In addition to businesses implementing real-time trust analytics and other collective cybersecurity strategies, consumers can also take responsibility for protecting their online identities. Specifically, consumers can protect against threats such as Heartbleed by ensuring location information on social networks is encrypted, using different passwords across sites and not storing passwords on any devices.
ThreatMetrix builds trust on the Internet by offering market-leading advanced fraud prevention and frictionless context-based security solutions. These solutions authenticate consumer and workforce access to mission critical applications using real-time identity and access analytics that leverage the world’s largest trusted identity network.
ThreatMetrix secures enterprise applications against account takeover, payment fraud, fraudulent account registrations, malware, and data breaches. Underpinning the solution is the ThreatMetrix® Global Trust Intelligence Network, which analyzes over 500 million monthly transactions and protects more than 160 million active user accounts across 2,500 customers and 10,000 websites.
The ThreatMetrix solution is deployed across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government and insurance.
For more information, visit http://www.threatmetrix.com or call 1-408-200-5755.
Join the cybersecurity conversation by visiting the ThreatMetrix blog, Facebook, LinkedIn and Twitter pages.
© 2014 ThreatMetrix. All rights reserved. ThreatMetrix, TrustDefender ID, TrustDefender Cloud, TrustDefender Mobile, TrustDefender Client, the TrustDefender Cybercrime Protection Platform, ThreatMetrix Labs, and the ThreatMetrix logo are trademarks or registered trademarks of ThreatMetrix in the United States and other countries. All other brand, service or product names are trademarks or registered trademarks of their respective companies or owners.
(The Hosting News) – Steadfast, a leading provider of managed cloud hosting, dedicated servers, colocation, hybrid hosting, and disaster recovery, announced they will be adding a new office space at 800 S Wells St. in Chicago. An Open House will be held on April 24th at 5:30 pm to celebrate the new space. Throughout the evening, tours of the data center at 725 S Wells will take place every 20 minutes. The company currently has two data center locations in Chicago, at 350 E Cermak and 725 S Wells.
Steadfast is excited to partner with Veeam Software, an Elite VMware Technology Alliance partner and a Microsoft managed partner, to co-host the Open House. Steadfast is expanding their offerings with Veeam.
“Becoming a Veeam Cloud Provider partner has allowed Steadfast to design, build and offer next-level backup and replication solutions for our private cloud, dedicated and colocation customers running Hyper-V and ESXi,” said Karl Zimmerman, president of Steadfast.
“Partnering with Veeam has given Steadfast the tools to design and implement a whole new breed of backup, replication and disaster recovery solutions for our clients. There simply does not exist a better software solution for managing Hyper-V and VMware backups,” Zimmerman said.
“Steadfast becoming a Veeam partner benefits clients across the board,” said Mike Waguespack, senior director of Veeam Software’s Global Cloud Group. “By combining Veeam’s robust data protection software with its own reliable, customizable infrastructure, Steadfast delivers powerful backup and disaster recovery solutions, tailored to each individual business’s needs.”
Founded in 1998, Steadfast is a Chicago-based IT infrastructure provider with fully redundant data centers in Chicago and northern New Jersey. Steadfast’s services include managed cloud hosting, dedicated servers, colocation, hybrid hosting and disaster recovery services. These services are all highly customizable and designed to give customers maximum flexibility. By combining services, enterprises can create unique infrastructures tailored to specific requirements. Steadfast’s customers include organizations of all sizes, from small and medium businesses with single cloud hosting accounts to larger companies with multi-gigabit setups. Steadfast prides itself on its “Always there” philosophy, with comprehensive managed services and support.
For more information about Steadfast, visit http://www.steadfast.net.
To learn more about the Open House, please contact
Marketing Manager, Steadfast
RSVP for the Open House Here: https://steadfast-veeam-openhouse.eventbrite.com
(The Hosting News) – Mozilla has named former Chief Marketing Officer, Chris Beard, interim chief executive officer, announced the company on Monday.
In a blog post from the company, Executive Chairwoman Mitchell Baker said this appointment comes “in the midst of an unexpected leadership transition” within the company.
“Chris has been a Mozillian longer than most. He’s been actively involved with Mozilla since before we shipped Firefox 1.0, he’s guided and directed many of our innovative projects, and his vision and sense of Mozilla is equal to anyone’s. I have relied on his judgement and advice for nearly a decade. This is an excellent time for Chris to bring his understanding of Mozilla to the Board.”
Beard has played a big role in the company throughout the years. He was responsible for the initial launch of Firefox on Android and Firefox OS, along with leading Mozilla’s product and marketing teams.
“Excited to step in as interim CEO to continue shaping the future of the Web for public good w/fellow Mozillians,” said Beard on his Twitter account.
Beard succeeds former CEO, Breandan Eich, who resigned less than two weeks ago due to the public backlash on his $1,000 donation that he made in 2008 in support of Proposition 8, a California law that was in favor of banning same-sex marriage.
News of his donation was first made public in 2012, but did not spark controversy until he was named CEO of the company.
(The Hosting News) – Colocation solutions provider New Continuum Holdings Corporation dba Continuum Data Centers (“Continuum”) announces that its new, Tier III data center, CDC 603 has been certified by the Open-IX (OIX) Association. OIX is a non-profit industry group formed to promote better technical and operational standards for data center interconnection and Internet Exchanges throughout North America. CDC 603 is among the first data centers in the Chicago region to receive certification.
“We are extremely excited to receive data center certification from OIX, and eager to participate in the continued growth of the organization,” said Eli D. Scher, CEO of Continuum. “OIX from our perspective is an ideal platform to compel fiber carriers to build into our facility, and to create a transparent and efficient peering environment in our meet me room.” He continued “the fiber density and diversity we are currently building ultimately serves our customers and makes our facility a more integral part of the IT infrastructure landscape.”
The OIX Association is adopting the European nonprofit model in which exchange operations are spread across multiple data centers in a specific geographic market. The goal is to create a new network of Internet Exchange Points housed in multiple neutral data center facilities that allow participants to interact and exchange content.
“The OIX certification process requires companies to submit relevant information to the Data Center standards committee for their review,” comments Dan Golding, Vice Chair of the Open-IX Association. “Through this process, members of OIX have the opportunity to review, add comments and provide necessary recommendations in order to become compliant. CDC’s transparency throughout this process has resulted in its certification achievement and is commended for its dedication to the technical and operational standards set forth by the Data Center Standards Committee.”
World Class Infrastructure and Robust Network Connectivity
Continuum’s CDC 603 is a world class asset on a 20-acre campus with ample expansion power, land and rich fiber resources. Neighboring Fermilab, the DOE-funded national research institution, and within 5 miles (line of sight) of the Aurora CME, CDC 603 is situated in a highly risk averse environment well outside traditional terrorist and natural disaster threat zones. CDC 603 is ideally suited for production, disaster recovery and content delivery. The facility is built to Tier III standards, and employs best in class technology in all components of its operations.
Continuum maintains the highest standards of transparency and flexibility and complies with various technical requirements and applicable regulatory or industry-specific requirements such as Sarbanes Oxley, HIPAA, and PCI.
Continuum Data Centers (“CDC”) is a multi-tenant data center operator in the western Chicago suburbs. The team at CDC has been at the forefront of the Chicago suburban colocation market for over 10 years, and has a track record of developing world class assets. The Company is currently re-developing to operate an 80,000 square foot, purpose-built, highly efficient Tier III+ facility in West Chicago, IL. CDC develops or seeks to own assets which are differentiated by their geographic location or other inherent traits. In doing so, the Company aims to consistently provide its customers with superior risk aversion profiles. CDC’s team has the experience and expertise to manage the needs of a diverse customer base, including trading and financial firms requiring high-density, efficient computation, as well as Enterprise and Fortune 1000 companies and retail customers requiring primary colocation. To learn more about Continuum, call 877-432-2656 or please visithttp://www.continuumdatacenters.com.
The Open-IX Association (OIX) is an Internet community derived effort to improve the landscape of Internet peering and interconnect in the United States. OIX encourages the development of neutral and distributed Internet exchanges in North America while promoting uniform, cost-efficient standards of performance for interconnections backed by the Internet community. The association aims to promote common and uniform specifications for data transfer and physical connectivity and improve IX performance by developing criteria and methods of measurement to reduce the complexity that restricts interconnection in fragmented markets. The OIX Board is comprised of volunteer representatives from the Internet community in the United States, including Paul L. Andersen; Donald S. Clark; Dan Golding; Martin Hannigan; Keith Mitchell; David Temkin; and Barry Tishgart. More information about OIX can be found by visiting http://www.open-ix.org.
ViUX® customers may choose from [SHARED] or [PRIVATE] Cloud Servers to Host their WordPress Website(s). In either case, ViUX Managed Cloud Hosting is based upon Parallels Cloud Server (PCS) and ultra-fast SSD Cloud Storage running on Dell Cloud-Series (C6220) Servers.
WordPress Shared Hosting from ViUX is perfect for the needs of most… Optimized for WordPress with separate Linux Cloud Servers for: Web (Apache/Nginx); Database (MySQL); and Email (Postfix or SmarterMail Enterprise on Windows) via Parallels® Plesk Automation (PPA) – starting at $3 per month.
WordPress Private Server Hosting (Cloud VPS) from ViUX is ideal for those with business critical needs… Optimized for WordPress with complete customization, access and control at your fingertips. WordPress Linux Private Cloud Servers start at $15 per month for: 512MB of Memory; or $30 per month for: 1GB of Memory – plus Parallels Plesk Panel. In either case, the default CPU and Disk resources are: 1GHz CPU Power on 2 vCPU Cores; and 20GB of Diskspace. Customers may customize the server to meet their exact resource and configuration needs.
For both Shared and Private WordPress Hosting, benefits include: 1-Click WordPress Installation; FREE Migrations; Managed Updates & Security; and much more…
ViUX Systems, Inc. is a privately held North Carolina Corporation established in 2003 with the mission to provide individuals and businesses of all types and sizes with the Web / Internet Technology and Software Solutions required to offer their products and services to the world… with Vision, Understanding, & eXperience in Web Services.
(The Hosting News) – Novosoft LLC, one of the leading providers of data backup software for home and corporate users, has improved functionality of Handy Backup to make disk image backup more convenient and easy. The updated version includes improved speed of disk image backup, enhanced support of GPT partitioned disks, and optimized scheme for time and data amount estimation.
“Handy Backup delivers a fast and easy way to create an image backup of the entire hard drive, or any chosen partition, and supports all types of local and external HDDs. Since disk-based approach to backups provides the most effective data protection against operating system crashes, hardware failures, and other disasters, it is highly recommended for both home and business environments,” – said Aleksey Dolgushev, Head of Handy Backup Business Development Department.
By default, disk image backup functionality is included in all editions of the program, apart from Handy Backup Standard. Users of network editions of the software (Handy Backup Network and Handy Backup Server Network) are also allowed to create disk images of remote workstations, on a client-server scheme.
Handy Backup offers a wide range of storage options: snapshots could be saved to local or remote drives, FTP/SFTP/FTPS, WebDAV servers, popular cloud services such as Amazon S3, Dropbox, HBDrive and others.
Handy Backup is distributed as a shareware, and comes with 30-days free trial period during which all disk image backup features are available without limitations.
About Novosoft LLC
Novosoft was founded in 1992 as an IT-consulting and custom software development company. Nowadays Novosoft delivers its own software solutions designed for home and corporate users. The expertise of the company’s team allows Novosoft to create flexible and effective software products of high demand.
About Handy Backup
Handy Backup is an advanced backup solution for Windows 8/7/Vista/XP and Windows Server 2012/2008/2003. The program provides broad range of useful features for protecting local and remote files, HDD images, MySQL, MS SQL, PostgreSQL, MS Exchange, Oracle, DB2 and other data. Handy Backup is available in several editions suitable for different needs of home and business. More information about Handy Backup can be found on the official website: http://handybackup.net
WebHost Manager (WHM) is a powerful hosting automation control panel that gives you total control over your server and any cPanel hosted websites installed on it. Among the many features of WHM is a tool for monitoring services running on a server, such as the web server (Apache HTTP Server), database server (MySQL) and DNS server (BIND).
Services or daemons, as they are sometimes called, are programs that run when the system boots up and are typically intended to remain running as long as the server is on. Many services are mission critical, so if one of them crashes, your websites may become inoperable, which could lead to loss of valuable business.
To monitor services from WHM, do the following:
- Login to WHM and navigate to “Service Configuration”
- Find “Service Manager”
- Start services by checking the box in the “Enabled” column and monitor them by checking the box in the “Monitor” column.
- Click “Save”
What will happen?
Once you have monitoring enabled, WHM will keep track of those running services you specified. If one of them crashes, WHM will automatically restart it so that you experience minimal downtime. This monitoring tool is meant to function as a safeguard against unexpected service crashes. You should not use it as a workaround for a chronic problem. If you have services that routinely crash, you should find out what the problem actually is and fix it.
For more information about cPanel and WHM, see cPanel’s online documentation.
(The Hosting News) – Although Microsoft announced the end of support for Windows XP in 2008, many organizations failed to switch over their computers by the April 8th deadline, including the U.S. Internal Revenue Service, leaving the company having to pay Microsoft millions of dollars for an extra year of security patches.
According to a report from Computerworld, the IRS upgraded only 47% of its 110,000 computers to Windows 7, leaving around 58,000 computers vulnerable to attacks.
In a statement made on Friday, the agency assured users that the devices that were not upgraded yet were not the ones used in handling tax filings.
“None of our filing season systems or other major business operating systems for taxpayers use Windows XP,” said an IRS spokesperson. “The IRS emphasizes the situation involving Windows will have no impact on taxpayers, including people filing their tax returns in advance of the April 15 deadline.”
Computerworld estimates that the company will spend around $11.6 million for one year of “Customer Support” from Microsoft, roughly $200 per PC, although the IRS disputed that estimate on Friday by stating it would spend less than $500,000.
The IRS is not the only government having to pay for extra XP support; the United Kingdom has paid around $9.2 million for an extra 12 months of support for Windows XP, Exchange 2003, and Office 2003.
The agency said it intends to have all computers upgraded to Windows 7 by the end of 2014.