Blog https://www.akamai.com/blog Visit the Akamai Blog to learn more about what's going on in cybersecurity. Learn about our products and how we provide solutions to our customers. en Akamai Technologies PGBouncer: Connection Pooling for Managed PostgreSQL Databases Learn how enabling PGBouncer reduces connection overhead, frees up server resources for query execution and disk caching, and improves performance at scale. https://www.akamai.com/blog/performance/2026/apr/pgbouncer-connection-pooling-managed-postgresql-databases Katie Sedlar https://www.akamai.com/blog/performance/2026/apr/pgbouncer-connection-pooling-managed-postgresql-databases Thu, 02 Apr 2026 17:00:00 UTC Compliance Won’t Save Healthcare: Reducing the Blast Radius Will https://www.akamai.com/blog/security/2026/apr/compliance-wont-save-healthcare-reducing-blast-radius-will Clint Huffaker https://www.akamai.com/blog/security/2026/apr/compliance-wont-save-healthcare-reducing-blast-radius-will Thu, 02 Apr 2026 12:00:00 UTC How Managed Databases Are Transforming Today’s IT Landscape https://www.akamai.com/blog/developers/2026/apr/managed-databases-transforming-todays-it-landscape Amit Mohanty https://www.akamai.com/blog/developers/2026/apr/managed-databases-transforming-todays-it-landscape Wed, 01 Apr 2026 12:00:00 UTC Digital Transformation in Africa: Security, Scale, and Control https://www.akamai.com/blog/partners/2026/apr/digital-transformation-africa-security-scale-control Imane Nkairi https://www.akamai.com/blog/partners/2026/apr/digital-transformation-africa-security-scale-control Wed, 01 Apr 2026 05:00:00 UTC Akamai Enterprise Application Access Achieves FedRAMP Moderate Authorization https://www.akamai.com/blog/security/2026/mar/enterprise-application-access-fedramp-moderate-authorization Shiran Guez https://www.akamai.com/blog/security/2026/mar/enterprise-application-access-fedramp-moderate-authorization Tue, 31 Mar 2026 12:00:00 UTC Magento Polyshell — The Latest Magento Threat (APSB25-94) https://www.akamai.com/blog/security-research/2026/mar/magento-polyshell-latest-magento-threat-apsb25-94 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2026/mar/magento-polyshell-latest-magento-threat-apsb25-94 Fri, 27 Mar 2026 13:00:00 UTC The Telnyx PyPI Compromise and the 2026 TeamPCP Supply Chain Attacks https://www.akamai.com/blog/security-research/2026/mar/telnyx-pypi-2026-teampcp-supply-chain-attacks Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2026/mar/telnyx-pypi-2026-teampcp-supply-chain-attacks Fri, 27 Mar 2026 13:00:00 UTC Extend Application Security Visibility from Code to Runtime https://www.akamai.com/blog/security/2026/mar/extending-application-security-visibility-code-runtime Sandra Murphy, Danielle Walter & John Leon https://www.akamai.com/blog/security/2026/mar/extending-application-security-visibility-code-runtime Fri, 27 Mar 2026 12:00:00 UTC Akamai Leads the Way: 2026 GigaOm Radar for Microsegmentation Akamai Guardicore Segmentation, a Leader and Fast Mover in the 2026 GigaOm Radar for Microsegmentation report, balances innovation with platform strength. https://www.akamai.com/blog/security/2026/mar/akamai-leads-2026-gigaom-radar-microsegmentation Jacob Abrams https://www.akamai.com/blog/security/2026/mar/akamai-leads-2026-gigaom-radar-microsegmentation Wed, 25 Mar 2026 12:00:00 UTC Machine Learning Operations: Yesterday, Today, and Tomorrow https://www.akamai.com/blog/security/2026/mar/machine-learning-operations-yesterday-today-tomorrow Konstantin Zilberberg https://www.akamai.com/blog/security/2026/mar/machine-learning-operations-yesterday-today-tomorrow Wed, 25 Mar 2026 12:00:00 UTC Microsegmentation and Zero Trust: Control the Blast Radius by Design https://www.akamai.com/blog/security/2026/mar/microsegmentation-zero-trust-control-blast-radius-design Dennis Birchard https://www.akamai.com/blog/security/2026/mar/microsegmentation-zero-trust-control-blast-radius-design Tue, 24 Mar 2026 12:00:00 UTC Farming at the Edge: Where Autonomous Robots and Edge Compute Meet https://www.akamai.com/blog/edge/2026/mar/farming-edge-autonomous-robots-edge-compute-meet MacKenzie Adam https://www.akamai.com/blog/edge/2026/mar/farming-edge-autonomous-robots-edge-compute-meet Mon, 23 Mar 2026 13:00:00 UTC CVE-2026-31979: The Symlink Trap — Root Privilege Escalation in Himmelblau https://www.akamai.com/blog/security-research/2026/mar/cve-2026-31979-symlink-root-privilege-escalation-himmelblau Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2026/mar/cve-2026-31979-symlink-root-privilege-escalation-himmelblau Fri, 20 Mar 2026 13:00:00 UTC Akamai Helps Authorities Disrupt the World’s Largest IoT Botnets The U.S. DOJ recently disrupted several large and powerful DDoS botnets and shut down their related DDoS-for-hire services with Akamai’s help. https://www.akamai.com/blog/security-research/2026/mar/akamai-helps-disrupt-worlds-largest-iot-botnets Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2026/mar/akamai-helps-disrupt-worlds-largest-iot-botnets Thu, 19 Mar 2026 13:00:00 UTC The Top 10 Threats Related to Agent Skills Read about the top 10 critical threats related to Agent Skills that security teams should consider while building and evaluating agents. https://www.akamai.com/blog/security/2026/mar/top-10-threats-related-agent-skills Tamar Didi & Maxim Zavodchik https://www.akamai.com/blog/security/2026/mar/top-10-threats-related-agent-skills Thu, 19 Mar 2026 06:00:00 UTC Join Us at Wasm I/O 2026 Akamai is sponsoring Wasm IO 2026 as part of our commitment to WebAssembly. Get all the details. https://www.akamai.com/blog/developers/2026/mar/join-us-wasm-io-2026 Thorsten Hans https://www.akamai.com/blog/developers/2026/mar/join-us-wasm-io-2026 Tue, 17 Mar 2026 17:00:00 UTC The Agentic Security Crisis: Why You Need to Act Now https://www.akamai.com/blog/trends/2026/mar/agentic-security-crisis-why-you-need-act-now Ram Iyer & Jimmy Mesta https://www.akamai.com/blog/trends/2026/mar/agentic-security-crisis-why-you-need-act-now Tue, 17 Mar 2026 12:00:00 UTC Apps, APIs, and DDoS 2026: The Industrialization of Cyberattack Campaigns https://www.akamai.com/blog/security/2026/mar/apps-apis-ddos-2026-industrialization-cyberattack-campaigns Kimberly Gomez https://www.akamai.com/blog/security/2026/mar/apps-apis-ddos-2026-industrialization-cyberattack-campaigns Tue, 17 Mar 2026 10:00:00 UTC Akamai and Google: Advancing Data-Driven Marketing with Google Tag Gateway for Advertisers https://www.akamai.com/blog/edge/2026/mar/akamai-google-data-driven-marketing-google-tag-gateway Pavel Despot https://www.akamai.com/blog/edge/2026/mar/akamai-google-data-driven-marketing-google-tag-gateway Mon, 16 Mar 2026 12:00:00 UTC Secure the AI Factory: Data Center Security for Accelerated Intelligence https://www.akamai.com/blog/security/2026/mar/secure-ai-factory-data-center-security-accelerated-intelligence Clint Huffaker https://www.akamai.com/blog/security/2026/mar/secure-ai-factory-data-center-security-accelerated-intelligence Mon, 16 Mar 2026 12:00:00 UTC AI in Vulnerability Discovery: A Call for Human Oversight and Caution https://www.akamai.com/blog/security-research/2026/mar/ai-vulnerability-discovery-human-oversight-caution Larry Cashdollar & Kyle Lefton https://www.akamai.com/blog/security-research/2026/mar/ai-vulnerability-discovery-human-oversight-caution Fri, 13 Mar 2026 08:00:00 UTC Fortify Your Network Security from Emerging Geopolitical Cyberthreats https://www.akamai.com/blog/security/2026/mar/fortify-network-security-emerging-geopolitical-cyberthreats Sandeep Rath, Nitin Singla, Ankita Kharya & Ryan Gao https://www.akamai.com/blog/security/2026/mar/fortify-network-security-emerging-geopolitical-cyberthreats Fri, 13 Mar 2026 05:00:00 UTC RSAC 2026: Tag in a Partner for the AI Security Showdown Legacy security wasn't built for autonomous AI. See how Akamai partners are stepping into the ring to build trust and secure the agentic enterprise. https://www.akamai.com/blog/partners/2026/mar/rsac-2026-tag-partner-ai-security-showdown Nick Watkins https://www.akamai.com/blog/partners/2026/mar/rsac-2026-tag-partner-ai-security-showdown Thu, 12 Mar 2026 19:00:00 UTC Build Serverless Functions with Zero Cold Starts: WebAssembly and Spin https://www.akamai.com/blog/developers/2026/mar/build-serverless-functions-zero-cold-starts-webassembly-spin Thorsten Hans https://www.akamai.com/blog/developers/2026/mar/build-serverless-functions-zero-cold-starts-webassembly-spin Thu, 12 Mar 2026 12:00:00 UTC Inside Akamai: How Offload and Performance Drive Speed and Resiliency https://www.akamai.com/blog/performance/2026/mar/inside-akamai-offload-performance-drive-speed-resiliency Patrick Saweikis https://www.akamai.com/blog/performance/2026/mar/inside-akamai-offload-performance-drive-speed-resiliency Wed, 11 Mar 2026 12:00:00 UTC The Mistral–Koyeb Deal and the Shift Toward Architectural Maturity in AI https://www.akamai.com/blog/trends/2026/mar/mistral-koyeb-deal-shift-architectural-maturity-ai Vineeth Varughese https://www.akamai.com/blog/trends/2026/mar/mistral-koyeb-deal-shift-architectural-maturity-ai Wed, 11 Mar 2026 12:00:00 UTC Build Transformative Security with AI-Powered WAF Detections https://www.akamai.com/blog/security/2026/mar/build-transformative-security-ai-powered-waf-detections Danielle Walter https://www.akamai.com/blog/security/2026/mar/build-transformative-security-ai-powered-waf-detections Tue, 10 Mar 2026 12:00:00 UTC Avoid Evasive Scraping with Stronger Content Protection Learn about the enhancements to Akamai Content Protector that stop evasive scraping across web and mobile while minimizing user friction and false positives. https://www.akamai.com/blog/security/2026/mar/avoid-evasive-scraping-stronger-content-protection Emily Lyons https://www.akamai.com/blog/security/2026/mar/avoid-evasive-scraping-stronger-content-protection Tue, 10 Mar 2026 12:00:00 UTC Role-Based Access Control (RBAC) Now Available in Akamai Cloud https://www.akamai.com/blog/cloud/2026/mar/role-based-access-control-rbac-akamai-cloud George Zhukovsky https://www.akamai.com/blog/cloud/2026/mar/role-based-access-control-rbac-akamai-cloud Mon, 09 Mar 2026 12:00:00 UTC How Harmonic Proved High-Performance AI Inference on Akamai GPUs Find out how Harmonic achieved high-performance AI inference on Akamai Cloud with NVIDIA Blackwell GPUs, optimizing for speed and efficiency. https://www.akamai.com/blog/cloud/2026/mar/harmonic-high-performance-ai-inference-akamai-gpus Danielle Cook https://www.akamai.com/blog/cloud/2026/mar/harmonic-high-performance-ai-inference-akamai-gpus Thu, 05 Mar 2026 14:00:00 UTC Why GPU Card Counts Matter for Real AI Workloads Stay ahead with NVIDIA RTX PRO™ 6000 Blackwell Server Edition GPUs in the Akamai Inference Cloud. Discover the right GPU shape for your AI needs. https://www.akamai.com/blog/cloud/2026/mar/why-gpu-card-counts-matter-real-ai-workloads Arshad Khan https://www.akamai.com/blog/cloud/2026/mar/why-gpu-card-counts-matter-real-ai-workloads Tue, 03 Mar 2026 14:00:00 UTC Choose the Right GPU on Akamai Cloud for Your AI Workload https://www.akamai.com/blog/cloud/2026/mar/choose-right-gpu-akamai-cloud-ai-workload Arshad Khan https://www.akamai.com/blog/cloud/2026/mar/choose-right-gpu-akamai-cloud-ai-workload Tue, 03 Mar 2026 13:00:00 UTC Post-Quantum Cryptography Beyond TLS: Remain Quantum Safe https://www.akamai.com/blog/security/2026/mar/post-quantum-cryptography-beyond-tls Jan Schaumann https://www.akamai.com/blog/security/2026/mar/post-quantum-cryptography-beyond-tls Mon, 02 Mar 2026 13:00:00 UTC Zerobot Malware Targets n8n Automation Platform The use of Mirai continues. Read how the Akamai SIRT identified active exploitation of vulnerabilities in the n8n automation platform and Tenda AC1206 routers. https://www.akamai.com/blog/security-research/2026/feb/zerobot-malware-targets-n8n-automation-platform Kyle Lefton https://www.akamai.com/blog/security-research/2026/feb/zerobot-malware-targets-n8n-automation-platform Fri, 27 Feb 2026 19:00:00 UTC Cleaner Compute: Akamai Adds 128 MW of Renewable Energy to the Grid https://www.akamai.com/blog/sustainability/2026/feb/cleaner-compute-akamai-adds-128-mw-renewable-energy-grid Margot Hines https://www.akamai.com/blog/sustainability/2026/feb/cleaner-compute-akamai-adds-128-mw-renewable-energy-grid Thu, 26 Feb 2026 13:00:00 UTC Accelerate Digital Service Delivery in Government Agencies https://www.akamai.com/blog/performance/2026/feb/accelerate-digital-service-delivery-government-agencies Joe Henry https://www.akamai.com/blog/performance/2026/feb/accelerate-digital-service-delivery-government-agencies Wed, 25 Feb 2026 17:00:00 UTC When Uptime Is Non-Negotiable: Rethinking Zero Trust for OT Environments https://www.akamai.com/blog/security/2026/feb/uptime-non-negotiable-rethinking-zero-trust-ot-environments Clint Huffaker https://www.akamai.com/blog/security/2026/feb/uptime-non-negotiable-rethinking-zero-trust-ot-environments Mon, 23 Feb 2026 15:00:00 UTC CVE-2026-26365: Incorrect processing of “Connection: Transfer-Encoding” https://www.akamai.com/blog/security-research/2026/feb/cve-2026-26365-incorrect-processing-connection-transfer-encoding Akamai InfoSec https://www.akamai.com/blog/security-research/2026/feb/cve-2026-26365-incorrect-processing-connection-transfer-encoding Fri, 20 Feb 2026 17:00:00 UTC Inside the Fix: Analysis of In-the-Wild Exploit of CVE-2026-21513 Read how PatchDiff-AI uncovered the root cause of CVE-2026-21513 — an actively exploited MSHTML vulnerability — and how APT28 leveraged it in real-world attacks. https://www.akamai.com/blog/security-research/2026/feb/inside-the-fix-cve-2026-21513-mshtml-exploit-analysis Maor Dahan https://www.akamai.com/blog/security-research/2026/feb/inside-the-fix-cve-2026-21513-mshtml-exploit-analysis Fri, 20 Feb 2026 15:00:00 UTC Adapt, Protect, and Extend: How Partners Can Help Orgs Unlock ROI from AI https://www.akamai.com/blog/partners/2026/feb/adapt-protect-extend-how-partners-help-unlock-roi-ai Ari Weil https://www.akamai.com/blog/partners/2026/feb/adapt-protect-extend-how-partners-help-unlock-roi-ai Thu, 19 Feb 2026 13:00:00 UTC Why Cloud Reliability Depends on Imperfect Software https://www.akamai.com/blog/cloud/2026/feb/part-1-why-cloud-reliability-depends-imperfect-software James Kretchmar https://www.akamai.com/blog/cloud/2026/feb/part-1-why-cloud-reliability-depends-imperfect-software Thu, 19 Feb 2026 08:00:00 UTC Why CEOs' AI Hype Really Isn't Landing with Employees Read about the disconnect between CEO enthusiasm for AI and employee perception of its value, and learn how to build communication that moves adoption forward. https://www.akamai.com/blog/cloud/2026/feb/why-ceos-ai-hype-really-isnt-landing-employees Vineeth Varughese https://www.akamai.com/blog/cloud/2026/feb/why-ceos-ai-hype-really-isnt-landing-employees Wed, 18 Feb 2026 18:00:00 UTC From Clawdbot to OpenClaw: Practical Lessons in Building Secure Agents https://www.akamai.com/blog/security/2026/feb/clawdbot-openclaw-practical-lessons-building-secure-agents Maxim Zavodchik & Alon Ganor https://www.akamai.com/blog/security/2026/feb/clawdbot-openclaw-practical-lessons-building-secure-agents Wed, 18 Feb 2026 17:00:00 UTC Zero Trust Switching: Why Firewalls Alone Can’t Secure AI Workloads https://www.akamai.com/blog/security/2026/feb/zero-trust-switching-firewalls-cant-secure-ai-workloads Clint Huffaker https://www.akamai.com/blog/security/2026/feb/zero-trust-switching-firewalls-cant-secure-ai-workloads Wed, 18 Feb 2026 13:00:00 UTC From Super Bowl to World Cup: How Akamai Delivers the Perfect Event Learn why Akamai is at the core of the biggest online sporting events, and how we help you be successful in the most critical moments. https://www.akamai.com/blog/trends/2026/feb/super-bowl-world-cup-akamai-delivers-perfect-event Justin Liu https://www.akamai.com/blog/trends/2026/feb/super-bowl-world-cup-akamai-delivers-perfect-event Tue, 17 Feb 2026 18:00:00 UTC Understand the Shift Toward AI-Driven Interactions: ​A Guide to MCP https://www.akamai.com/blog/security/2026/feb/leaders-guide-mcp-understand-shift-toward-ai-interactions Maxim Zavodchik & Boris Kirzner https://www.akamai.com/blog/security/2026/feb/leaders-guide-mcp-understand-shift-toward-ai-interactions Thu, 12 Feb 2026 13:00:00 UTC Observing the Anatomy of Peak Traffic https://www.akamai.com/blog/cloud/2026/feb/observing-anatomy-peak-traffic Pavel Despot https://www.akamai.com/blog/cloud/2026/feb/observing-anatomy-peak-traffic Wed, 11 Feb 2026 13:00:00 UTC Industrialized Ransomware: Confronting the New Reality Read about the new ransomware reality and what most security strategies get wrong. Learn how to protect your organization in 2026. https://www.akamai.com/blog/security/2026/feb/industrialized-ransomware-confronting-new-reality Barney Beal https://www.akamai.com/blog/security/2026/feb/industrialized-ransomware-confronting-new-reality Tue, 10 Feb 2026 14:00:00 UTC Your OpenClaw Agent Doesn't Sleep. Your Laptop Does. Move It to the Cloud. https://www.akamai.com/blog/developers/2026/feb/openclaw-agent-doesnt-sleep-laptop-does-move-cloud Lena Hall, Shawn Michels & Tarun Chinmai Sekar https://www.akamai.com/blog/developers/2026/feb/openclaw-agent-doesnt-sleep-laptop-does-move-cloud Mon, 09 Feb 2026 08:00:00 UTC Why Hydrolix Partnered with Akamai to Solve Observability at Scale https://www.akamai.com/blog/cloud/2026/feb/why-hydrolix-partnered-akamai-solve-observability-scale Pavel Despot https://www.akamai.com/blog/cloud/2026/feb/why-hydrolix-partnered-akamai-solve-observability-scale Wed, 04 Feb 2026 13:00:00 UTC Akamai Named a 2026 Gartner Peer Insights™ Customers’ Choice for Network Security https://www.akamai.com/blog/security/2026/jan/akamai-2026-gartner-customers-choice-network-security Jacob Abrams https://www.akamai.com/blog/security/2026/jan/akamai-2026-gartner-customers-choice-network-security Wed, 28 Jan 2026 11:00:00 UTC Enhancements to Akamai API Security, Q4 2025 The Q4 2025 Akamai API Security updates help organizations shift security left, improve coverage, and reduce friction. https://www.akamai.com/blog/security/2026/jan/enhancements-akamai-api-security-q4-2025 Stas Neyman https://www.akamai.com/blog/security/2026/jan/enhancements-akamai-api-security-q4-2025 Tue, 27 Jan 2026 14:00:00 UTC CVE-2026-23864: React and Next.js Denial of Service via Memory Exhaustion https://www.akamai.com/blog/security-research/2026/jan/cve-2026-23864-react-nextjs-denial-of-service Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2026/jan/cve-2026-23864-react-nextjs-denial-of-service Mon, 26 Jan 2026 12:00:00 UTC Akamai Block Storage Makes Block Disk Encryption the Default in Terraform Learn about the early 2026 Terraform update, how the change will affect your workflow, and how to successfully navigate any issues that may arise. https://www.akamai.com/blog/cloud/2026/jan/akamai-block-storage-disk-encryption-default-terraform Jose Malacara & Kong Yang https://www.akamai.com/blog/cloud/2026/jan/akamai-block-storage-disk-encryption-default-terraform Fri, 23 Jan 2026 14:00:00 UTC Why Asia’s Public Sector Is Rethinking Cyber Resilience https://www.akamai.com/blog/security/2026/jan/why-asias-public-sector-is-rethinking-cyber-resilience Reuben Koh https://www.akamai.com/blog/security/2026/jan/why-asias-public-sector-is-rethinking-cyber-resilience Thu, 22 Jan 2026 18:00:00 UTC Valkey: The Future of Open Source In-Memory Data Stores https://www.akamai.com/blog/cloud/2026/jan/valkey-future-open-source-memory-data-stores Amit Mohanty https://www.akamai.com/blog/cloud/2026/jan/valkey-future-open-source-memory-data-stores Wed, 21 Jan 2026 18:00:00 UTC Your New Marketing Assistant: The AI Expert in Akamai Campaign Builder The AI Expert in Akamai Campaign Builder is now available to help you plan, build, and launch smarter campaigns — faster. https://www.akamai.com/blog/partners/2026/jan/marketing-assistant-ai-expert-akamai-campaign-builder Gabriela Grigoras https://www.akamai.com/blog/partners/2026/jan/marketing-assistant-ai-expert-akamai-campaign-builder Tue, 20 Jan 2026 14:00:00 UTC Command Injection in Vivotek Legacy Firmware: What You Need to Know https://www.akamai.com/blog/security-research/2026/jan/command-injection-vivotek-legacy-firmware-need-to-know Larry Cashdollar https://www.akamai.com/blog/security-research/2026/jan/command-injection-vivotek-legacy-firmware-need-to-know Tue, 20 Jan 2026 07:00:00 UTC Dangling DNS: The Most Overlooked Attack Surface in the AI Era Closing DNS gaps is crucial for securing your AI agents. Discover how Akamai DNS Posture Management detects dangling DNS and helps stop overlooked threats. https://www.akamai.com/blog/security/2026/jan/dangling-dns-most-overlooked-attack-surface-ai-era Venkatesh Bachu https://www.akamai.com/blog/security/2026/jan/dangling-dns-most-overlooked-attack-surface-ai-era Fri, 16 Jan 2026 14:00:00 UTC East-West Is the New North-South: Rethink Security for the AI-Driven Data Center https://www.akamai.com/blog/security/2026/jan/east-west-north-south-rethink-security-ai-driven-data-center Clint Huffaker https://www.akamai.com/blog/security/2026/jan/east-west-north-south-rethink-security-ai-driven-data-center Thu, 15 Jan 2026 07:00:00 UTC AI Pulse: How AI Bots and Agents Will Shape 2026 https://www.akamai.com/blog/security/2026/jan/ai-pulse-how-ai-bots-agents-will-shape-2026 Tom Emmons https://www.akamai.com/blog/security/2026/jan/ai-pulse-how-ai-bots-agents-will-shape-2026 Mon, 12 Jan 2026 13:00:00 UTC Why VM Shapes Matter: New Compute Plans Deliver Predictable Performance https://www.akamai.com/blog/cloud/2026/jan/vm-shapes-matter-new-compute-plans-predictable-performance Sarah Walter https://www.akamai.com/blog/cloud/2026/jan/vm-shapes-matter-new-compute-plans-predictable-performance Fri, 09 Jan 2026 13:00:00 UTC CVE-2025-14847: All You Need to Know About MongoBleed https://www.akamai.com/blog/security-research/2025/dec/cve-2025-14847-all-you-need-to-know-about-mongobleed Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/dec/cve-2025-14847-all-you-need-to-know-about-mongobleed Tue, 30 Dec 2025 13:00:00 UTC I Built a RAG Bot to Decode Airline Bureaucracy (So You Don't Have To) https://www.akamai.com/blog/developers/2025/dec/built-rag-bot-decode-airline-bureaucracy Lena Hall https://www.akamai.com/blog/developers/2025/dec/built-rag-bot-decode-airline-bureaucracy Fri, 19 Dec 2025 17:00:00 UTC AI Actor Tilly Norwood and the Impact of Cloud Infrastructure https://www.akamai.com/blog/cloud/2025/dec/ai-actor-tilly-norwood-impact-cloud-infrastructure Vineeth Varughese https://www.akamai.com/blog/cloud/2025/dec/ai-actor-tilly-norwood-impact-cloud-infrastructure Fri, 19 Dec 2025 13:00:00 UTC Akamai Cloud: New G8 Dedicated Hardware and Performance VM Shapes https://www.akamai.com/blog/cloud/2025/dec/akamai-cloud-g8-dedicated-hardware-5th-gen-amd-epyc Sarah Walter https://www.akamai.com/blog/cloud/2025/dec/akamai-cloud-g8-dedicated-hardware-5th-gen-amd-epyc Wed, 17 Dec 2025 17:00:00 UTC Peak Season Isn’t a Season. It’s the World You Operate In. Peak season isn’t seasonal anymore. Learn why modern surges stem from security risks, not traffic, and how Akamai keeps businesses resilient every day. https://www.akamai.com/blog/security/2025/dec/peak-season-is-world-you-operate-in Cheryl Chiodi https://www.akamai.com/blog/security/2025/dec/peak-season-is-world-you-operate-in Wed, 17 Dec 2025 14:00:00 UTC AI Pulse: How AI Bots Surface Your Content https://www.akamai.com/blog/security/2025/dec/ai-pulse-how-ai-bots-surface-your-content Tom Emmons https://www.akamai.com/blog/security/2025/dec/ai-pulse-how-ai-bots-surface-your-content Tue, 16 Dec 2025 17:00:00 UTC Beyond the Buzz: Why Zero Trust Matters More in the Age of AI https://www.akamai.com/blog/security/2025/dec/beyond-buzz-why-zero-trust-matters-more-age-ai Jim Black https://www.akamai.com/blog/security/2025/dec/beyond-buzz-why-zero-trust-matters-more-age-ai Tue, 16 Dec 2025 07:00:00 UTC Stop Overpaying for East-West Traffic Control: Firewalls vs. Security Groups https://www.akamai.com/blog/security/2025/dec/stop-overpaying-east-west-traffic-control-firewalls-security Yoni Nabedrik, Daniel Itzhak & Srinivas Chivukula https://www.akamai.com/blog/security/2025/dec/stop-overpaying-east-west-traffic-control-firewalls-security Fri, 12 Dec 2025 17:00:00 UTC CVE-2025-66516: Detecting and Defending Against Apache Tika XXE Attack https://www.akamai.com/blog/security-research/2025/dec/cve-2025-66516-detecting-defending-apache-tika-xxe-attack Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/dec/cve-2025-66516-detecting-defending-apache-tika-xxe-attack Fri, 12 Dec 2025 07:00:00 UTC How Akamai Is Powering Trust in Tomorrow’s AI-Driven Ecosystem Discover how Akamai powers secure, trusted AI interactions by verifying bots and agents, enabling adaptive trust, and supporting new monetization opportunities. https://www.akamai.com/blog/security/2025/dec/akamai-powering-trust-tomorrows-ai-driven-ecosystem Tsvika Klein https://www.akamai.com/blog/security/2025/dec/akamai-powering-trust-tomorrows-ai-driven-ecosystem Thu, 11 Dec 2025 18:00:00 UTC The Year in Review 2025: AI, APIs, and a Whole Lot of Audacity https://www.akamai.com/blog/security/2025/dec/year-review-2025-ai-apis-audacity Kimberly Gomez https://www.akamai.com/blog/security/2025/dec/year-review-2025-ai-apis-audacity Thu, 11 Dec 2025 11:00:00 UTC CVE-2025-55183 and CVE-2025-55184: Mitigating React/Next.js Vulnerabilities https://www.akamai.com/blog/security-research/2025/dec/cve-2025-55183-55184-mitigating-reactnextjs-vulnerabilities Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/dec/cve-2025-55183-55184-mitigating-reactnextjs-vulnerabilities Thu, 11 Dec 2025 08:00:00 UTC Patch Wednesday: Root Cause Analysis with LLMs https://www.akamai.com/blog/security-research/2025/dec/patch-wednesday-root-cause-analysis-with-llms Maor Dahan https://www.akamai.com/blog/security-research/2025/dec/patch-wednesday-root-cause-analysis-with-llms Wed, 10 Dec 2025 13:00:00 UTC CVE-2025-53841: Guardicore Local Privilege Escalation Vulnerability Get technical details about a security vulnerability (CVE-2025-53841) in Akamai's Guardicore Platform Agent for Windows and clear guidance on mitigation. https://www.akamai.com/blog/security/2025/dec/advisory-cve-2025-53841-guardicore-local-privilege-escalation Akamai InfoSec https://www.akamai.com/blog/security/2025/dec/advisory-cve-2025-53841-guardicore-local-privilege-escalation Tue, 09 Dec 2025 10:00:00 UTC AI Pulse: The First Agentic Cyber Week In 2025, AI bots officially entered Cyber Week. Learn how agents shaped traffic and shopper intent — and why retailers must optimize for AI-driven commerce. https://www.akamai.com/blog/security/2025/dec/ai-pulse-first-agentic-cyber-week Tom Emmons https://www.akamai.com/blog/security/2025/dec/ai-pulse-first-agentic-cyber-week Mon, 08 Dec 2025 14:00:00 UTC Inside the Fix: AI-Powered Root Cause Analysis of CVE-2025-60719 https://www.akamai.com/blog/security-research/2025/dec/inside-fix-ai-root-cause-analysis-cve-2025-60719 Maor Dahan https://www.akamai.com/blog/security-research/2025/dec/inside-fix-ai-root-cause-analysis-cve-2025-60719 Mon, 08 Dec 2025 07:00:00 UTC MSL5 General Availability and MSL4 Product Retirement Akamai Media Services Live 4 will be discontinued on December 31, 2026. The upgraded Akamai Media Services Live 5 is currently in general availability. https://www.akamai.com/blog/edge/2025/dec/msl5-general-availability-msl4-product-retirement Ansley Flanagan https://www.akamai.com/blog/edge/2025/dec/msl5-general-availability-msl4-product-retirement Fri, 05 Dec 2025 23:00:00 UTC Demonstrating Resilience and Scale on Black Friday and Cyber Monday Akamai proved its resilience and scale by handling an 80% increase in traffic during the busiest shopping time of the year: Black Friday and Cyber Monday. https://www.akamai.com/blog/security/2025/dec/resilience-scale-black-friday-cyber-monday Berk Veral https://www.akamai.com/blog/security/2025/dec/resilience-scale-black-friday-cyber-monday Fri, 05 Dec 2025 15:00:00 UTC Reliability Isn't a Feature. It's a Commitment. https://www.akamai.com/blog/cloud/2025/dec/reliability-isnt-a-feature-its-a-commitment Adam Karon https://www.akamai.com/blog/cloud/2025/dec/reliability-isnt-a-feature-its-a-commitment Fri, 05 Dec 2025 09:00:00 UTC DNS Visibility Gap: Misconfigurations That Firewalls Miss in Network Security https://www.akamai.com/blog/security/2025/dec/dns-misconfigurations-firewalls-miss-network-security Ramita Singh https://www.akamai.com/blog/security/2025/dec/dns-misconfigurations-firewalls-miss-network-security Thu, 04 Dec 2025 13:00:00 UTC Advancing Innovation at the Akamai Greater China Partner Summit 2025 https://www.akamai.com/blog/partners/2025/dec/akamai-greater-china-partner-summit-2025 Fiona Zhang https://www.akamai.com/blog/partners/2025/dec/akamai-greater-china-partner-summit-2025 Thu, 04 Dec 2025 10:00:00 UTC Lessons from Smart Switching: Rethinking Security and Performance Microsegmentation built directly into the network infrastructure means that stronger network security no longer equals slower systems. https://www.akamai.com/blog/security/2025/dec/lessons-smart-switching-rethinking-security-performance Clint Huffaker https://www.akamai.com/blog/security/2025/dec/lessons-smart-switching-rethinking-security-performance Wed, 03 Dec 2025 20:00:00 UTC Digital Signatures: Traditional Vs. Post-Quantum Cryptographic Mechanisms Secure your connections against quantum threats. Learn about post-quantum cryptography and digital signatures. https://www.akamai.com/blog/security/2025/dec/digital-signatures-traditional-post-quantum-cryptographic Rich Salz https://www.akamai.com/blog/security/2025/dec/digital-signatures-traditional-post-quantum-cryptographic Wed, 03 Dec 2025 14:00:00 UTC CVE-2025-55182: React and Next.js Server Functions Deserialization RCE https://www.akamai.com/blog/security-research/2025/dec/cve-2025-55182-react-nextjs-server-functions-deserialization-rce Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/dec/cve-2025-55182-react-nextjs-server-functions-deserialization-rce Wed, 03 Dec 2025 07:00:00 UTC Empower CISOs with Visibility, Agility, Compliance, and Strategic ROI Learn how Akamai Prolexic Network Cloud Firewall allows CISOs to manage risk, resilience, and reputation by delivering visibility, agility, and proactive defense. https://www.akamai.com/blog/security/2025/dec/empower-cisos-visibility-agility-compliance-strategic-roi Nitin Singla, Sandeep Rath & Ankita Kharya https://www.akamai.com/blog/security/2025/dec/empower-cisos-visibility-agility-compliance-strategic-roi Tue, 02 Dec 2025 15:00:00 UTC CVE-2025-66373: HTTP Request Smuggling Due to Invalid Chunked Body Size https://www.akamai.com/blog/security/2025/dec/cve-2025-66373-http-request-smuggling-chunked-body-size Akamai https://www.akamai.com/blog/security/2025/dec/cve-2025-66373-http-request-smuggling-chunked-body-size Tue, 02 Dec 2025 10:00:00 UTC Building Distributed Apps? Akamai and Fermyon Are Changing the Game. https://www.akamai.com/blog/cloud/2025/nov/building-distributed-apps-akamai-fermyon-changing-game Ari Weil https://www.akamai.com/blog/cloud/2025/nov/building-distributed-apps-akamai-fermyon-changing-game Mon, 01 Dec 2025 15:00:00 UTC Defend Post-Quantum Cryptography's “Harvest Now, Decrypt Later” with WAAP Prepare for a quantum-safe future. Learn how Akamai App & API Protector helps stop the data leaks that fuel “harvest now, decrypt later” attacks. https://www.akamai.com/blog/security/2025/nov/defend-post-quantum-harvest-now-decrypt-later-waap Danielle Walter https://www.akamai.com/blog/security/2025/nov/defend-post-quantum-harvest-now-decrypt-later-waap Mon, 01 Dec 2025 14:00:00 UTC Full Circle: How Akamai’s Evolution Set the Stage for the AI Inference Era Read how Akamai, a pioneer in CDNs, is undergoing a profound strategic transformation into a diversified cloud and cybersecurity provider in the AI era. https://www.akamai.com/blog/cloud/2025/nov/full-circle-akamais-evolution-set-stage-ai-inference-era Mike Maney https://www.akamai.com/blog/cloud/2025/nov/full-circle-akamais-evolution-set-stage-ai-inference-era Wed, 26 Nov 2025 20:00:00 UTC Belonging at Akamai: My Journey of Inclusion, Growth, and Connection Discover how Akamai’s culture of belonging and inclusion empowers employees and drives innovation in tech. https://www.akamai.com/blog/culture/2025/nov/belonging-akamai-journey-inclusion-growth-connection Ramita Singh https://www.akamai.com/blog/culture/2025/nov/belonging-akamai-journey-inclusion-growth-connection Wed, 26 Nov 2025 14:00:00 UTC Beyond NSX: A Strategic Alternative for VMware Customers Broadcom’s VMware acquisition has driven up costs and complexity. Akamai Guardicore Segmentation offers a modern, secure, and cost-efficient path beyond NSX. https://www.akamai.com/blog/security/2025/nov/beyond-nsx-strategic-alternative-vmware-customers Jacob Abrams https://www.akamai.com/blog/security/2025/nov/beyond-nsx-strategic-alternative-vmware-customers Tue, 25 Nov 2025 14:00:00 UTC Scam Alert: Impersonation of Akamai on Telegram Learn about a persisting scam on Telegram that involves scammers who are pretending to be from Akamai and requesting money. https://www.akamai.com/blog/news/2025/nov/scam-alert-impersonation-akamai-telegram Akamai InfoSec https://www.akamai.com/blog/news/2025/nov/scam-alert-impersonation-akamai-telegram Tue, 25 Nov 2025 00:15:00 UTC Aggregated Rate Limiting Defends Against Large-Scale and DDoS Attacks Discover how Akamai’s new aggregated rate limiting strengthens defenses against large-scale, distributed DDoS attacks, and API abuse with smarter detection. https://www.akamai.com/blog/security/2025/nov/aggregated-rate-limiting-defends-large-scale-ddos Irina McDougall https://www.akamai.com/blog/security/2025/nov/aggregated-rate-limiting-defends-large-scale-ddos Mon, 24 Nov 2025 14:00:00 UTC AI Pulse: How OpenAI Became the Majority Player https://www.akamai.com/blog/security/2025/nov/how-openai-became-the-majority-player Tom Emmons https://www.akamai.com/blog/security/2025/nov/how-openai-became-the-majority-player Mon, 24 Nov 2025 13:00:00 UTC Distributed Edge Inference Changes Everything https://www.akamai.com/blog/cloud/2025/nov/distributed-edge-inference-changes-everything Ari Weil https://www.akamai.com/blog/cloud/2025/nov/distributed-edge-inference-changes-everything Fri, 21 Nov 2025 13:00:00 UTC A Pre-Built CNCF Pipeline: From Git to Running on Kubernetes https://www.akamai.com/blog/cloud/2025/nov/pre-built-cncf-pipeline-git-running-on-kubernetes Prasoon Pushkar https://www.akamai.com/blog/cloud/2025/nov/pre-built-cncf-pipeline-git-running-on-kubernetes Fri, 21 Nov 2025 07:00:00 UTC Bot Management for the Agentic Era https://www.akamai.com/blog/security/2025/nov/bot-management-agentic-era David Sénécal https://www.akamai.com/blog/security/2025/nov/bot-management-agentic-era Thu, 20 Nov 2025 13:00:00 UTC Firmwhere? Rediscovering a Vulnerability in Vivotek Legacy Firmware https://www.akamai.com/blog/security-research/2025/nov/rce-zero-day-in-legacy-vivotek-firmware Larry Cashdollar https://www.akamai.com/blog/security-research/2025/nov/rce-zero-day-in-legacy-vivotek-firmware Thu, 20 Nov 2025 07:00:00 UTC A CMO’s Perspective: Why This Moment Matters in the AI Era Akamai’s CMO describes how the company is radically rethinking and extending the systems needed to unlock AI's true potential. https://www.akamai.com/blog/cloud/2025/nov/cmos-perspective-why-moment-matters-ai-era Kim Salem-Jackson https://www.akamai.com/blog/cloud/2025/nov/cmos-perspective-why-moment-matters-ai-era Wed, 19 Nov 2025 14:00:00 UTC When the Internet Fails Again, Will You Survive a DDoS Attack? https://www.akamai.com/blog/security/2025/nov/when-internet-fails-again-survive-a-ddos-attack Sven Dummer, Sandeep Rath & Ankita Kharya https://www.akamai.com/blog/security/2025/nov/when-internet-fails-again-survive-a-ddos-attack Wed, 19 Nov 2025 11:00:00 UTC What We Do In The Shadow (AI): New Malware Strain Vamps Up https://www.akamai.com/blog/security-research/2025/nov/new-malware-chat-completions-llm-shadow-ai Yonatan Gilvarg https://www.akamai.com/blog/security-research/2025/nov/new-malware-chat-completions-llm-shadow-ai Tue, 18 Nov 2025 07:00:00 UTC AI Pulse: The Rise of AI Search Crawlers https://www.akamai.com/blog/security/2025/nov/ai-pulse-rise-ai-search-crawlers Tom Emmons https://www.akamai.com/blog/security/2025/nov/ai-pulse-rise-ai-search-crawlers Mon, 17 Nov 2025 13:00:00 UTC Zero Trust Security for Mission Partner Environments in Coalition Operations https://www.akamai.com/blog/security/2025/nov/zero-trust-mission-partner-coalition-operations Mike Colson & Jason Turse https://www.akamai.com/blog/security/2025/nov/zero-trust-mission-partner-coalition-operations Fri, 14 Nov 2025 13:00:00 UTC Future-Proofing Retail Security: Preparing for Tomorrow's Cyberthreats Learn about the emerging cybersecurity threats facing retailers and the advanced technologies needed to build adaptive, future-ready security defenses. https://www.akamai.com/blog/security/2025/nov/future-proofing-retail-security-preparing-tomorrows-cyberthreats Jim Black https://www.akamai.com/blog/security/2025/nov/future-proofing-retail-security-preparing-tomorrows-cyberthreats Wed, 12 Nov 2025 14:00:00 UTC Redefine Trust with Web Bot Authentication https://www.akamai.com/blog/security/2025/nov/redefine-trust-web-bot-authentication Rupesh Chokshi https://www.akamai.com/blog/security/2025/nov/redefine-trust-web-bot-authentication Mon, 10 Nov 2025 13:00:00 UTC AI Pulse: AI Bots Are Targeting Commerce, Publishers, and High Tech https://www.akamai.com/blog/security/2025/nov/ai-pulse-ai-bots-commerce-publishers-high-tech Tom Emmons https://www.akamai.com/blog/security/2025/nov/ai-pulse-ai-bots-commerce-publishers-high-tech Mon, 10 Nov 2025 13:00:00 UTC How to Protect Personal Data in Today’s API Economy https://www.akamai.com/blog/partners/2025/nov/how-to-protect-personal-data-todays-api-economy Maegan Reid & Patrick McNeil https://www.akamai.com/blog/partners/2025/nov/how-to-protect-personal-data-todays-api-economy Fri, 07 Nov 2025 13:00:00 UTC AI Explainer: What Is Model Context Protocol? https://www.akamai.com/blog/trends/2025/nov/ai-explainer-what-is-model-context-protocol Michael Merideth https://www.akamai.com/blog/trends/2025/nov/ai-explainer-what-is-model-context-protocol Thu, 06 Nov 2025 13:00:00 UTC Internet Connectivity Issues in Russia https://www.akamai.com/blog/edge/2025/nov/internet-connectivity-issues-in-russia Akamai https://www.akamai.com/blog/edge/2025/nov/internet-connectivity-issues-in-russia Thu, 06 Nov 2025 07:00:00 UTC Online Fraud and Abuse 2025: AI Is in the Driver’s Seat https://www.akamai.com/blog/security-research/2025/nov/online-fraud-abuse-2025-ai-drivers-seat Kimberly Gomez https://www.akamai.com/blog/security-research/2025/nov/online-fraud-abuse-2025-ai-drivers-seat Tue, 04 Nov 2025 11:00:00 UTC AI Pulse: How Big Tech Impacts AI Bot Traffic https://www.akamai.com/blog/security/2025/nov/ai-pulse-big-tech-impacts-ai-bot-traffic Rob Lester https://www.akamai.com/blog/security/2025/nov/ai-pulse-big-tech-impacts-ai-bot-traffic Mon, 03 Nov 2025 13:00:00 UTC Discover the 3 Stages of Cloud Maturity by Taking Our Quiz Discover the three stages of the cloud maturity model and learn how cloud adoption, strategy, and security drive digital transformation. https://www.akamai.com/blog/cloud/2025/oct/three-stages-of-cloud-maturity-quiz Pavel Despot https://www.akamai.com/blog/cloud/2025/oct/three-stages-of-cloud-maturity-quiz Thu, 30 Oct 2025 13:00:00 UTC Benchmarking NVIDIA RTX Pro 6000 Blackwell on Akamai Cloud https://www.akamai.com/blog/cloud/2025/oct/benchmarking-nvidia-rtx-pro-6000-blackwell-akamai-cloud Mo Tabares & Christiaan Lutzer https://www.akamai.com/blog/cloud/2025/oct/benchmarking-nvidia-rtx-pro-6000-blackwell-akamai-cloud Thu, 30 Oct 2025 08:00:00 UTC The State of Agentic AI: Disrupting Publishing and Reshaping Ecommerce Learn how agentic AI is transforming how users and automation interact with the web — changing how people shop, search, and consume content. https://www.akamai.com/blog/security/2025/oct/state-of-agentic-ai-disrupting-publishing-reshaping-ecommerce David Sénécal https://www.akamai.com/blog/security/2025/oct/state-of-agentic-ai-disrupting-publishing-reshaping-ecommerce Wed, 29 Oct 2025 13:00:00 UTC Build AI Agents with Spin and the OpenAI Agents SDK https://www.akamai.com/blog/developers/2025/oct/agents-with-openai-agents-sdk Thorsten Hans https://www.akamai.com/blog/developers/2025/oct/agents-with-openai-agents-sdk Tue, 28 Oct 2025 15:00:00 UTC Enabling AI Everywhere with Akamai Inference Cloud https://www.akamai.com/blog/cloud/2025/oct/enabling-ai-everywhere-with-akamai-inference-cloud Adam Karon https://www.akamai.com/blog/cloud/2025/oct/enabling-ai-everywhere-with-akamai-inference-cloud Tue, 28 Oct 2025 06:00:00 UTC AI: Edge Is All You Need https://www.akamai.com/blog/cloud/2025/oct/ai-edge-all-you-need Jon Alexander https://www.akamai.com/blog/cloud/2025/oct/ai-edge-all-you-need Tue, 28 Oct 2025 05:00:00 UTC AI Pulse: What Circadian Rhythms Reveal About AI Bot Behavior https://www.akamai.com/blog/security/2025/oct/ai-pulse-circadian-rhythms-reveal-ai-bot-behavior Rob Lester https://www.akamai.com/blog/security/2025/oct/ai-pulse-circadian-rhythms-reveal-ai-bot-behavior Mon, 27 Oct 2025 12:00:00 UTC When the Cloud Breaks: Lessons from the AWS Outage https://www.akamai.com/blog/security/2025/oct/when-cloud-breaks-lessons-aws-outage Sandra Murphy https://www.akamai.com/blog/security/2025/oct/when-cloud-breaks-lessons-aws-outage Mon, 27 Oct 2025 06:00:00 UTC The Grim SessionReaper (CVE-2025-54236) Comes to Collect for Halloween https://www.akamai.com/blog/security-research/2025/oct/grim-sessionreaper-cve-2025-54236-comes-collect-halloween Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/oct/grim-sessionreaper-cve-2025-54236-comes-collect-halloween Mon, 27 Oct 2025 05:00:00 UTC Enhancements to Akamai API Security, Q3 2025 The recent Akamai API Security updates improve visibility, automation, coverage, and compliance across the API lifecycle. https://www.akamai.com/blog/security/2025/oct/enhancements-akamai-api-security-q3-2025 Stas Neyman https://www.akamai.com/blog/security/2025/oct/enhancements-akamai-api-security-q3-2025 Thu, 23 Oct 2025 13:00:00 UTC Unlocking Hidden Value: How AI Transforms Media Archives into Revenue Engines https://www.akamai.com/blog/partners/2025/oct/hidden-value-ai-transforms-media-archives-revenue-engines Ira Dworkin & Joseph Glover https://www.akamai.com/blog/partners/2025/oct/hidden-value-ai-transforms-media-archives-revenue-engines Thu, 23 Oct 2025 13:00:00 UTC Navigating the Next Chapter in Corporate Renewable Energy https://www.akamai.com/blog/sustainability/2025/oct/navigating-next-chapter-corporate-renewable-energy Margot Hines https://www.akamai.com/blog/sustainability/2025/oct/navigating-next-chapter-corporate-renewable-energy Wed, 22 Oct 2025 16:00:00 UTC AI Pulse: AI Bot Mitigation Is Increasing Everywhere https://www.akamai.com/blog/security/2025/oct/ai-pulse-bot-mitigation-is-increasing-everywhere Tom Emmons https://www.akamai.com/blog/security/2025/oct/ai-pulse-bot-mitigation-is-increasing-everywhere Mon, 20 Oct 2025 15:00:00 UTC Learning from the LockBit Takedown https://www.akamai.com/blog/security/2024/feb/learning-from-the-lockbit-takedown Dean Houari https://www.akamai.com/blog/security/2024/feb/learning-from-the-lockbit-takedown Thu, 16 Oct 2025 14:00:00 UTC The Differences Between API Gateway and WAAP — and Why You Need Both https://www.akamai.com/blog/security/2024/jun/difference-between-api-gateway-waap-why-you-need-both Danielle Walter https://www.akamai.com/blog/security/2024/jun/difference-between-api-gateway-waap-why-you-need-both Thu, 16 Oct 2025 14:00:00 UTC How to Get Started with NVIDIA cuOpt A simple guide to get started with cuOpt, an open source, GPU-accelerated solver for decision optimization. https://www.akamai.com/blog/cloud/2025/oct/how-to-get-started-nvidia-cuopt Atalay Kutlay https://www.akamai.com/blog/cloud/2025/oct/how-to-get-started-nvidia-cuopt Thu, 16 Oct 2025 12:00:00 UTC How to Automate Your Security Posture for the 47-Day Certificate Era https://www.akamai.com/blog/cloud/2025/oct/how-to-automate-and-strengthen-your-security-posture Brian Fahey https://www.akamai.com/blog/cloud/2025/oct/how-to-automate-and-strengthen-your-security-posture Thu, 16 Oct 2025 06:00:00 UTC Protect Hype Events: Bot-Proof Launches with Akamai and Queue-it https://www.akamai.com/blog/security/2025/oct/protect-hype-events-bot-proof-launches-akamai-queue-it Emily Lyons https://www.akamai.com/blog/security/2025/oct/protect-hype-events-bot-proof-launches-akamai-queue-it Thu, 16 Oct 2025 06:00:00 UTC How to Prevent Command Injection and SQL Injection Attacks over MCP https://www.akamai.com/blog/security/2025/oct/prevent-command-injection-and-sqli-attacks-over-mcp Noam Atias & Maxim Zavodchik https://www.akamai.com/blog/security/2025/oct/prevent-command-injection-and-sqli-attacks-over-mcp Wed, 15 Oct 2025 06:00:00 UTC AI Pulse: OpenAI’s Wild Bot Behavior After GPT-5 The AI Pulse series breaks down traffic trends and what they mean for apps, APIs, and businesses. In this post, read how OpenAI’s bots are changing after GPT-5. https://www.akamai.com/blog/security/2025/oct/ai-pulse-openai-wild-bot-behavior-after-gpt5 Rob Lester https://www.akamai.com/blog/security/2025/oct/ai-pulse-openai-wild-bot-behavior-after-gpt5 Fri, 10 Oct 2025 15:00:00 UTC Linode Kubernetes Engine Optimization: Save on Compute, Storage, and Networking https://www.akamai.com/blog/cloud/2025/oct/linode-kubernetes-engine-optimization Prasoon Pushkar https://www.akamai.com/blog/cloud/2025/oct/linode-kubernetes-engine-optimization Thu, 09 Oct 2025 06:00:00 UTC Akamai Named a Gartner Peer Insights Customers’ Choice for WAAP Six Years in a Row https://www.akamai.com/blog/security/2025/oct/akamai-gartner-customers-choice-waap-2025 Danielle Walter https://www.akamai.com/blog/security/2025/oct/akamai-gartner-customers-choice-waap-2025 Wed, 08 Oct 2025 13:00:00 UTC A Guide to International Post-Quantum Cryptography Standards https://www.akamai.com/blog/security/2025/oct/guide-international-post-quantum-cryptography-standards Jan Schaumann https://www.akamai.com/blog/security/2025/oct/guide-international-post-quantum-cryptography-standards Wed, 08 Oct 2025 12:00:00 UTC AI Inference Hardware Decisions: When to Choose CPUs vs. GPUs https://www.akamai.com/blog/cloud/2025/oct/ai-inference-hardware-decisions Joseph Glover https://www.akamai.com/blog/cloud/2025/oct/ai-inference-hardware-decisions Tue, 07 Oct 2025 16:00:00 UTC Identity-Centric Security: ICAM as a Mission Advantage https://www.akamai.com/blog/security/2025/oct/identity-centric-security-transform-icam-advantage Jacob Abrams & Jim Black https://www.akamai.com/blog/security/2025/oct/identity-centric-security-transform-icam-advantage Fri, 03 Oct 2025 12:00:00 UTC DNS Hijacking 101: How It Happens and What You Can Do to Prevent It https://www.akamai.com/blog/security/2025/oct/dns-hijacking-101-how-it-happens-what-do-prevent-it Sam Preston https://www.akamai.com/blog/security/2025/oct/dns-hijacking-101-how-it-happens-what-do-prevent-it Wed, 01 Oct 2025 12:00:00 UTC The Power of Data Observability: Your Edge in a Fast-Changing World https://www.akamai.com/blog/cloud/2025/sep/power-data-observability-edge-fast-changing-world Andy d'Andilly https://www.akamai.com/blog/cloud/2025/sep/power-data-observability-edge-fast-changing-world Tue, 30 Sep 2025 16:00:00 UTC How to Secure Enterprise Networks by Identifying Malicious IP Addresses https://www.akamai.com/blog/security-research/2025/sep/secure-enterprise-networks-identify-malicious-ip-addresses Ido Sakazi & Yonatan Gilvarg https://www.akamai.com/blog/security-research/2025/sep/secure-enterprise-networks-identify-malicious-ip-addresses Tue, 30 Sep 2025 15:00:00 UTC Conversations and the Media Climate Accord at IBC2025 https://www.akamai.com/blog/sustainability/2025/sep/conversations-media-climate-accord-ibc2025 Mike Mattera https://www.akamai.com/blog/sustainability/2025/sep/conversations-media-climate-accord-ibc2025 Tue, 30 Sep 2025 12:00:00 UTC The State of Enterprise AI: Why Edge Native Is the Fastest Path to ROI https://www.akamai.com/blog/cloud/2025/sep/state-enterprise-ai-why-edge-native-fastest-path-roi Hana Jeddy https://www.akamai.com/blog/cloud/2025/sep/state-enterprise-ai-why-edge-native-fastest-path-roi Tue, 30 Sep 2025 06:00:00 UTC Isolate Your Database: VPC for Managed Databases Is Available Now https://www.akamai.com/blog/cloud/2025/sep/isolate-database-vpc-managed-databases-available-now Prasoon Pushkar https://www.akamai.com/blog/cloud/2025/sep/isolate-database-vpc-managed-databases-available-now Mon, 29 Sep 2025 06:00:00 UTC What 400 Executives Reveal About the Future of AI Adoption Learn how a Forrester study discovered that most companies are already using AI for competitive differentiation, personalization, and customer retention. https://www.akamai.com/blog/cloud/2025/sep/what-400-executives-reveal-future-ai-adoption Vineeth Varughese https://www.akamai.com/blog/cloud/2025/sep/what-400-executives-reveal-future-ai-adoption Thu, 25 Sep 2025 17:00:00 UTC Reliable, Compliant APIs with Akamai Managed Service for API Performance Introducing Akamai’s new product that blends proactive testing, expert analysis, and tailored optimization to help APIs stay reliable, responsive, and compliant. https://www.akamai.com/blog/security/2025/sep/reliable-compliant-apis-akamai-managed-service-api-performance Leslie Stansbury https://www.akamai.com/blog/security/2025/sep/reliable-compliant-apis-akamai-managed-service-api-performance Wed, 24 Sep 2025 10:30:00 UTC 10 Evaluation Points for Your App Platform on Kubernetes https://www.akamai.com/blog/cloud/2025/sep/ten-evaluation-points-app-platform-kubernetes Prasoon Pushkar https://www.akamai.com/blog/cloud/2025/sep/ten-evaluation-points-app-platform-kubernetes Tue, 23 Sep 2025 12:00:00 UTC Akamai Is the 2025 Customers' Choice in Online Fraud Detection https://www.akamai.com/blog/security/2025/sep/akamai-2025-customers-choice-online-fraud-detection Emily Lyons https://www.akamai.com/blog/security/2025/sep/akamai-2025-customers-choice-online-fraud-detection Mon, 22 Sep 2025 06:00:00 UTC From Scraping to Paying: Monetizing AI Bots at the Edge https://www.akamai.com/blog/security/2025/sep/from-scraping-paying-monetizing-ai-bots-edge Emily Lyons https://www.akamai.com/blog/security/2025/sep/from-scraping-paying-monetizing-ai-bots-edge Wed, 17 Sep 2025 12:00:00 UTC Introducing Akamai Partner Connect: Built with You, for You https://www.akamai.com/blog/partners/2025/sep/introducing-akamai-partner-connect Pablo Onnias https://www.akamai.com/blog/partners/2025/sep/introducing-akamai-partner-connect Tue, 16 Sep 2025 10:00:00 UTC Move Over, DDoS: It’s the Era of Distributed Denial of Defense (DDoD) https://www.akamai.com/blog/security/2025/sep/move-over-ddos-era-distributed-denial-of-defense-ddod Sven Dummer, Sandeep Rath & Dennis Birchard https://www.akamai.com/blog/security/2025/sep/move-over-ddos-era-distributed-denial-of-defense-ddod Tue, 16 Sep 2025 06:00:00 UTC How Companies Are Balancing AI Innovation with Risk A new Forrester report, commissioned by Akamai, reveals how companies are pursuing AI innovation at scale without exposure to unacceptable levels of risk. https://www.akamai.com/blog/cloud/2025/sep/how-companies-balancing-ai-innovation-with-risk Ari Weil https://www.akamai.com/blog/cloud/2025/sep/how-companies-balancing-ai-innovation-with-risk Mon, 15 Sep 2025 19:00:00 UTC AI Training Data: Winning in the AI Boom https://www.akamai.com/blog/security/2025/sep/ai-training-data-winning-ai-boom Jagdish Mohite https://www.akamai.com/blog/security/2025/sep/ai-training-data-winning-ai-boom Mon, 15 Sep 2025 12:00:00 UTC Boost the Performance and Security — and Lower the Costs — of AI Apps https://www.akamai.com/blog/security/2025/sep/boost-performance-security-lower-costs-ai-apps Elan Shanker & Christine Ferrusi Ross https://www.akamai.com/blog/security/2025/sep/boost-performance-security-lower-costs-ai-apps Thu, 11 Sep 2025 12:00:00 UTC Understand the Attack Surface: Retail Supply Chain Cybersecurity Risks https://www.akamai.com/blog/security/2025/sep/attack-surface-retail-supply-chain-cybersecurity-risks Jim Black https://www.akamai.com/blog/security/2025/sep/attack-surface-retail-supply-chain-cybersecurity-risks Wed, 10 Sep 2025 12:00:00 UTC Off Your Docker: Exposed APIs Are Targeted in New Malware Strain https://www.akamai.com/blog/security-research/2025/sep/new-malware-targeting-docker-apis-akamai-hunt Yonatan Gilvarg https://www.akamai.com/blog/security-research/2025/sep/new-malware-targeting-docker-apis-akamai-hunt Mon, 08 Sep 2025 06:00:00 UTC Your AI Strategy Is Only as Strong as Your DNS https://www.akamai.com/blog/security/2025/sep/ai-strategy-only-as-strong-as-dns Sandra Murphy https://www.akamai.com/blog/security/2025/sep/ai-strategy-only-as-strong-as-dns Fri, 05 Sep 2025 12:00:00 UTC Certificate Chaos and the Case for Automated Posture Management https://www.akamai.com/blog/security/2025/sep/certificate-chaos-case-automated-posture-management Sandra Murphy & Sven Dummer https://www.akamai.com/blog/security/2025/sep/certificate-chaos-case-automated-posture-management Fri, 05 Sep 2025 10:00:00 UTC Breach Highlights AI and API Vulnerabilities in Software Supply Chains https://www.akamai.com/blog/security/2025/sep/breach-highlights-ai-api-vulnerabilities-software-supply-chains Christine Ferrusi Ross https://www.akamai.com/blog/security/2025/sep/breach-highlights-ai-api-vulnerabilities-software-supply-chains Thu, 04 Sep 2025 16:00:00 UTC Virtualized (In)Security: How Attackers Can Weaponize VBS Enclaves Read about Ori David’s presentation at DEF CON 33 and learn how attackers can abuse VBS enclaves, a Windows security feature, for malicious purposes. https://www.akamai.com/blog/security-research/2025/aug/virtualized-insecurity-attackers-weaponize-vbs-enclaves Ori David https://www.akamai.com/blog/security-research/2025/aug/virtualized-insecurity-attackers-weaponize-vbs-enclaves Thu, 04 Sep 2025 14:00:00 UTC Akamai Enables Post-Quantum Cryptography on the Edge Learn about the latest development in our post-quantum journey: Support for post-quantum cryptography on the Akamai edge. https://www.akamai.com/blog/security/2025/aug/akamai-enables-post-quantum-cryptography-edge Jan Schaumann https://www.akamai.com/blog/security/2025/aug/akamai-enables-post-quantum-cryptography-edge Wed, 03 Sep 2025 19:00:00 UTC These 4 Threats to AI Applications Require New Cybersecurity Strategies Learn about the four threat categories that today’s cybersecurity teams must address to protect their companies’ AI investments. https://www.akamai.com/blog/security/2025/aug/4-threats-ai-applications-new-cybersecurity-strategies Swati Kumar https://www.akamai.com/blog/security/2025/aug/4-threats-ai-applications-new-cybersecurity-strategies Thu, 28 Aug 2025 19:00:00 UTC An Inside Look at our Next Gen Object Storage Launch https://www.akamai.com/blog/developers/2025/aug/an-inside-look-at-our-next-gen-object-storage-launch Jason Tanabe https://www.akamai.com/blog/developers/2025/aug/an-inside-look-at-our-next-gen-object-storage-launch Thu, 28 Aug 2025 10:20:00 UTC Protect Critical Infrastructure: Cybersecurity Strategies for Governments Learn actionable strategies that can help state and local governments protect critical infrastructure and dramatically reduce risk exposure. https://www.akamai.com/blog/security/2025/aug/critical-infrastructure-protection-cybersecurity-strategies-governments Douglas Holland https://www.akamai.com/blog/security/2025/aug/critical-infrastructure-protection-cybersecurity-strategies-governments Wed, 27 Aug 2025 19:00:00 UTC BadSuccessor Is Dead, Long Live BadSuccessor(?) Read about Microsoft’s patch for BadSuccessor — a vulnerability in Windows Server Active Directory — and learn why its underlying mechanics still matter. https://www.akamai.com/blog/security-research/2025/aug/badsuccessor-is-dead-analyzing-badsuccessor-patch Yuval Gordon https://www.akamai.com/blog/security-research/2025/aug/badsuccessor-is-dead-analyzing-badsuccessor-patch Wed, 27 Aug 2025 19:00:00 UTC CVE-2025-54142: HTTP Request Smuggling via OPTIONS + Body Learn how Akamai InfoSec mitigated CVE-2025-54142 — an HTTP request smuggling vulnerability arising from OPTIONS requests with a body. https://www.akamai.com/blog/security-research/2025/aug/advisory-cve-2025-54142-http-request-smuggling-via-options-body Akamai InfoSec https://www.akamai.com/blog/security-research/2025/aug/advisory-cve-2025-54142-http-request-smuggling-via-options-body Wed, 27 Aug 2025 19:00:00 UTC Our New Premium Managed Databases Plan for Resource-Intensive Workloads https://www.akamai.com/blog/developers/2025/aug/our-new-premium-managed-databases-plan-for-resource-intensive-workloads Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2025/aug/our-new-premium-managed-databases-plan-for-resource-intensive-workloads Wed, 27 Aug 2025 10:20:00 UTC Boost EdgeWorker Observability: Set Up Logging With DataStream https://www.akamai.com/blog/developers/2025/aug/boost-edgeworker-observability-set-up-logging-with-datastream AJ Johnson https://www.akamai.com/blog/developers/2025/aug/boost-edgeworker-observability-set-up-logging-with-datastream Tue, 26 Aug 2025 10:20:00 UTC Marginal Emissions Rates: See Carbon Emissions with Clarity in Real Time Learn how Akamai is using marginal emissions rates to improve the transparency and accuracy of our emissions accounting. https://www.akamai.com/blog/sustainability/2025/aug/marginal-emissions-rates-see-carbon-emissions-real-time Katie Robinson https://www.akamai.com/blog/sustainability/2025/aug/marginal-emissions-rates-see-carbon-emissions-real-time Mon, 25 Aug 2025 21:00:07 UTC A New Way to Manage Property Configurations: Dynamic Rule Updates https://www.akamai.com/blog/cloud/2025/aug/manage-property-configurations-dynamic-rule-updates Karthik Prabhu https://www.akamai.com/blog/cloud/2025/aug/manage-property-configurations-dynamic-rule-updates Fri, 22 Aug 2025 12:00:00 UTC Key Takeaways from KubeCon + CloudNativeCon India 2025 https://www.akamai.com/blog/developers/2025/aug/key-takeaways-from-kubecon-cloudnativecon-india-2025 Prasoon Pushkar https://www.akamai.com/blog/developers/2025/aug/key-takeaways-from-kubecon-cloudnativecon-india-2025 Fri, 22 Aug 2025 10:20:00 UTC Stop LLM Attacks: How Security Helps AI Apps Achieve Their ROI AI security is a business problem. Protect your LLM application investment and ROI by connecting your security team with business stakeholders. https://www.akamai.com/blog/security/2025/aug/stop-llm-attacks-security-ai-apps-roi Christine Ferrusi Ross https://www.akamai.com/blog/security/2025/aug/stop-llm-attacks-security-ai-apps-roi Thu, 21 Aug 2025 13:00:00 UTC Akamai Beats Other WAAP Vendors in Third-Party Evaluation https://www.akamai.com/blog/security/2025/aug/akamai-beats-waap-vendors-third-party-evaluation Danielle Walter https://www.akamai.com/blog/security/2025/aug/akamai-beats-waap-vendors-third-party-evaluation Wed, 20 Aug 2025 06:00:00 UTC Benchmarking VPUs and GPUs for Media Workloads https://www.akamai.com/blog/developers/2025/aug/benchmarking-vpus-and-gpus-for-media-workloads Chris Milsted https://www.akamai.com/blog/developers/2025/aug/benchmarking-vpus-and-gpus-for-media-workloads Tue, 19 Aug 2025 10:20:00 UTC Accelerating Secure Enterprise Kubernetes Adoption Learn how LKE-E solves critical problems while providing streamlined adoption, operational simplicity, and cost efficiency at scale. https://www.akamai.com/blog/cloud/2025/aug/accelerate-adoption-enterprise-kubernetes-environments Patrick Jamal https://www.akamai.com/blog/cloud/2025/aug/accelerate-adoption-enterprise-kubernetes-environments Mon, 18 Aug 2025 15:00:00 UTC How Cloud Wrapper Evolved to Optimize Small-Object Caching Learn how Akamai's Cloud Wrapper evolved to optimize small-object caching, reduce egress costs, and boost SEO rankings for web and media assets. https://www.akamai.com/blog/developers/2025/aug/how-cloud-wrapper-evolved-to-optimize-small-object-caching Ansley Flanagan https://www.akamai.com/blog/developers/2025/aug/how-cloud-wrapper-evolved-to-optimize-small-object-caching Mon, 18 Aug 2025 10:20:00 UTC Akamai Named an Overall Leader for API Security by KuppingerCole https://www.akamai.com/blog/news/2025/aug/akamai-overall-leader-for-api-security-kuppingercole Stas Neyman https://www.akamai.com/blog/news/2025/aug/akamai-overall-leader-for-api-security-kuppingercole Fri, 15 Aug 2025 12:00:00 UTC The Edge of Agency: Defending Against the Risks of Agentic AI https://www.akamai.com/blog/security/2025/aug/edge-of-agency-defending-against-risks-agentic-ai Maxim Zavodchik https://www.akamai.com/blog/security/2025/aug/edge-of-agency-defending-against-risks-agentic-ai Fri, 15 Aug 2025 06:00:00 UTC The Reality of Modern Cyberattacks: Lessons from Recent Retail Breaches https://www.akamai.com/blog/security/2025/aug/reality-modern-cyberattacks-lessons-retail-breaches Jim Black https://www.akamai.com/blog/security/2025/aug/reality-modern-cyberattacks-lessons-retail-breaches Thu, 14 Aug 2025 12:00:00 UTC Generative Personalization at the Edge: The Future of E‑Commerce Isn’t (Just) in the Cloud https://www.akamai.com/blog/developers/2025/aug/generative-personalization-at-the-edge Pedro Salvado https://www.akamai.com/blog/developers/2025/aug/generative-personalization-at-the-edge Thu, 14 Aug 2025 10:20:00 UTC Akamai and Bitmovin: Revolutionizing Live and On-Demand Video Streaming Discover how Akamai and Bitmovin’s partnership reduces costs, enhances performance, and delivers personalized video experiences to content providers. https://www.akamai.com/blog/cloud/2025/aug/akamai-bitmovin-revolutionizing-live-on-demand-video-streaming Adam Massaro https://www.akamai.com/blog/cloud/2025/aug/akamai-bitmovin-revolutionizing-live-on-demand-video-streaming Wed, 13 Aug 2025 13:00:00 UTC Agentic AI: How Autonomous Agents are Changing the Game https://www.akamai.com/blog/developers/2025/aug/agentic-ai-how-autonomous-agents-are-changing-the-game Vineeth Varughese https://www.akamai.com/blog/developers/2025/aug/agentic-ai-how-autonomous-agents-are-changing-the-game Wed, 13 Aug 2025 10:20:00 UTC A Coordinated Response to MadeYouReset HTTP/2 Protocol Attacks https://www.akamai.com/blog/security/2025/aug/response-madeyoureset-http2-protocol-attacks Mike Bishop https://www.akamai.com/blog/security/2025/aug/response-madeyoureset-http2-protocol-attacks Wed, 13 Aug 2025 08:00:00 UTC From Discovery to Testing: Akamai and Snyk Deliver Seamless API Security https://www.akamai.com/blog/security/2025/aug/discovery-testing-akamai-snyk-seamless-api-security Stas Neyman https://www.akamai.com/blog/security/2025/aug/discovery-testing-akamai-snyk-seamless-api-security Tue, 12 Aug 2025 12:00:00 UTC Visualize Security Success with the Security Summary Dashboard https://www.akamai.com/blog/security/2025/aug/visualize-success-security-summary-dashboard Jim Black https://www.akamai.com/blog/security/2025/aug/visualize-success-security-summary-dashboard Mon, 11 Aug 2025 12:00:00 UTC CVE-2025-32094: HTTP Request Smuggling Via OPTIONS + Obsolete Line Folding In March 2025, Akamai received a bug bounty report identifying an HTTP Request Smuggling vulnerability that was quickly resolved for all customers. https://www.akamai.com/blog/security/2025/aug/cve-2025-32094-http-request-smuggling Akamai InfoSec https://www.akamai.com/blog/security/2025/aug/cve-2025-32094-http-request-smuggling Wed, 06 Aug 2025 18:00:00 UTC Post-Quantum Cryptography Implementation Considerations in TLS https://www.akamai.com/blog/security/2025/aug/post-quantum-cryptography-implementation-considerations-tls Jan Schaumann https://www.akamai.com/blog/security/2025/aug/post-quantum-cryptography-implementation-considerations-tls Wed, 06 Aug 2025 06:00:00 UTC AI in Cloud Computing: How AI Is Revolutionizing the Landscape Discover how AI in cloud computing is transforming industries. Learn about the differences between cloud AI and edge AI — their benefits, use cases, and solutions. https://www.akamai.com/blog/cloud/2025/aug/ai-cloud-computing-revolutionizing-landscape Pavel Despot https://www.akamai.com/blog/cloud/2025/aug/ai-cloud-computing-revolutionizing-landscape Tue, 05 Aug 2025 13:00:00 UTC Open Source & Fully Managed: Aiven-Powered Databases on Akamai https://www.akamai.com/blog/developers/2025/aug/open-source-fully-managed-aiven-powered-databases-on-akamai Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2025/aug/open-source-fully-managed-aiven-powered-databases-on-akamai Tue, 05 Aug 2025 10:20:00 UTC Why the Right Tool — and the Right Team — Are Essential for DNS Security https://www.akamai.com/blog/security/2025/aug/why-right-tool-right-team-essential-dns-security Derek Hammack https://www.akamai.com/blog/security/2025/aug/why-right-tool-right-team-essential-dns-security Mon, 04 Aug 2025 12:00:00 UTC Why AI Systems Use Vector Databases to Improve Performance and Reduce Costs https://www.akamai.com/blog/developers/2025/aug/why-ai-systems-use-vector-databases-to-improve-performance-and-reduce-costs Amit Mohanty https://www.akamai.com/blog/developers/2025/aug/why-ai-systems-use-vector-databases-to-improve-performance-and-reduce-costs Mon, 04 Aug 2025 10:20:00 UTC Gartner Market Guide: Microsegmentation for Zero Trust and Resilience https://www.akamai.com/blog/security/2025/aug/gartner-market-guide-microsegmentation-zero-trust-resilience Shivangi Sahu https://www.akamai.com/blog/security/2025/aug/gartner-market-guide-microsegmentation-zero-trust-resilience Fri, 01 Aug 2025 12:00:00 UTC 3 Key Areas to Focus on When You're Evaluating AI Security https://www.akamai.com/blog/security/2025/aug/3-key-areas-focus-evaluating-ai-security Berk Veral https://www.akamai.com/blog/security/2025/aug/3-key-areas-focus-evaluating-ai-security Fri, 01 Aug 2025 06:00:00 UTC Publishers: How to Block AI Bots and Reclaim Control of Your Content https://www.akamai.com/blog/security/2025/jul/publishers-how-to-block-ai-bots-reclaim-control-content Mani Sundaram https://www.akamai.com/blog/security/2025/jul/publishers-how-to-block-ai-bots-reclaim-control-content Wed, 30 Jul 2025 13:00:00 UTC The Price of Poor Cybersecurity in 2024: US$3.1 Billion https://www.akamai.com/blog/security/2025/jul/the-price-poor-cybersecurity-2024-31-billion Jim Black https://www.akamai.com/blog/security/2025/jul/the-price-poor-cybersecurity-2024-31-billion Wed, 30 Jul 2025 12:00:00 UTC Surviving the Ransomware Gauntlet: A Test of Resilience https://www.akamai.com/blog/security-research/2025/jul/surviving-ransomware-gauntlet-test-of-resilience Tricia Howard & Maria Vlasak https://www.akamai.com/blog/security-research/2025/jul/surviving-ransomware-gauntlet-test-of-resilience Tue, 29 Jul 2025 10:00:00 UTC Beyond Perimeter Defense: Implementing Zero Trust in Federal Agencies Learn how to address cybersecurity in this new perimeter-less world and get six steps to achieving Least Permissive Trust for federal agencies. https://www.akamai.com/blog/security/2025/jul/beyond-perimeter-defense-implementing-zero-trust-federal-agencies Micah Maryn https://www.akamai.com/blog/security/2025/jul/beyond-perimeter-defense-implementing-zero-trust-federal-agencies Fri, 25 Jul 2025 19:00:00 UTC CISA Recommends Segmentation & Zero Trust to Combat Interlock Ransomware https://www.akamai.com/blog/security/2025/jul/cisa-segmentation-zero-trust-combat-interlock-ransomware Jacob Abrams https://www.akamai.com/blog/security/2025/jul/cisa-segmentation-zero-trust-combat-interlock-ransomware Thu, 24 Jul 2025 06:00:00 UTC Coyote in the Wild: First-Ever Malware That Abuses UI Automation https://www.akamai.com/blog/security-research/2025/jul/active-exploitation-coyote-malware-first-ui-automation-abuse-in-the-wild Tomer Peled https://www.akamai.com/blog/security-research/2025/jul/active-exploitation-coyote-malware-first-ui-automation-abuse-in-the-wild Tue, 22 Jul 2025 13:00:00 UTC Understand the SharePoint RCE: Exploitations, Detections, and Mitigations https://www.akamai.com/blog/security-research/2025/jul/sharepoint-vulnerability-rce-active-exploitation-detections-mitigations Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/jul/sharepoint-vulnerability-rce-active-exploitation-detections-mitigations Tue, 22 Jul 2025 08:00:00 UTC Why Customer Experience Is the New Battleground in Zero Trust Learn why being named a Customer Favorite in Forrester's Zero Trust Wave reveals what we believe really matters in cybersecurity. https://www.akamai.com/blog/security/2025/jul/why-customer-experience-new-battleground-zero-trust Jim Black https://www.akamai.com/blog/security/2025/jul/why-customer-experience-new-battleground-zero-trust Mon, 21 Jul 2025 13:00:00 UTC Why Observability Tools Tend to Fail at Scale Observability is no longer just about catching errors or checking if a server is up. In modern distributed systems, it’s about understanding behavior across dozens, if not thousands, of services, all running in different environments and generating massive amounts of data. https://www.akamai.com/blog/developers/2025/jul/why-observability-tools-tend-to-fail-at-scale Swati Kumar https://www.akamai.com/blog/developers/2025/jul/why-observability-tools-tend-to-fail-at-scale Mon, 21 Jul 2025 10:20:00 UTC How Search Engines, LLMs, and Third-Party Scrapers Affect Bot Management https://www.akamai.com/blog/security/2025/jul/search-engines-llms-third-party-scrapers-bot-management Christine Ferrusi Ross https://www.akamai.com/blog/security/2025/jul/search-engines-llms-third-party-scrapers-bot-management Mon, 21 Jul 2025 06:00:00 UTC Optimizing Government Websites for Peak Traffic Events Learn how to proactively withstand peak traffic events and improve your government website’s performance and security posture. https://www.akamai.com/blog/performance/2025/jul/optimizing-government-websites-peak-traffic-events Chris Eldon & Eric Bach https://www.akamai.com/blog/performance/2025/jul/optimizing-government-websites-peak-traffic-events Fri, 18 Jul 2025 21:00:00 UTC Vulnerable to Bulletproof: Protect TLS via Certificate Posture Management https://www.akamai.com/blog/security/2025/jul/vulnerable-bulletproof-protect-tls-certificate-posture-management Sam Preston https://www.akamai.com/blog/security/2025/jul/vulnerable-bulletproof-protect-tls-certificate-posture-management Fri, 18 Jul 2025 06:00:00 UTC Cloud Cost Conundrum: Rising Expenses Hinder AI Innovation in Europe https://www.akamai.com/blog/cloud/2025/jul/cloud-cost-conundrum-rising-expenses-hinder-ai-innovation-europe Ari Weil https://www.akamai.com/blog/cloud/2025/jul/cloud-cost-conundrum-rising-expenses-hinder-ai-innovation-europe Thu, 17 Jul 2025 09:00:00 UTC One Year of Warm Migrations https://www.akamai.com/blog/developers/2025/jul/one-year-of-warm-migrations Abe Massry https://www.akamai.com/blog/developers/2025/jul/one-year-of-warm-migrations Wed, 16 Jul 2025 10:20:00 UTC AI and LLM Bot Management Has Become a Business-Critical Issue: Do It Right AI bots, agents, and LLM scrapers all want your content. Here’s how to manage them so that they help, not hinder, your business. https://www.akamai.com/blog/security/2025/jul/ai-llm-bot-management-has-become-business-critical-issue Tom Emmons https://www.akamai.com/blog/security/2025/jul/ai-llm-bot-management-has-become-business-critical-issue Tue, 15 Jul 2025 19:00:00 UTC Securing the Frontier - Navigating Security in LLM-Integrated Systems https://www.akamai.com/blog/developers/2025/jul/introducing-akamai-cloud-pulse Prasoon Pushkar https://www.akamai.com/blog/developers/2025/jul/introducing-akamai-cloud-pulse Tue, 15 Jul 2025 13:00:00 UTC From VPN to Zero Trust: Why It’s Time to Retire Traditional VPNs, Part 2 https://www.akamai.com/blog/security/2025/jul/vpn-zero-trust-time-retire-traditional-vpns-part-2 Elad Lev & Jim Black https://www.akamai.com/blog/security/2025/jul/vpn-zero-trust-time-retire-traditional-vpns-part-2 Tue, 15 Jul 2025 12:00:00 UTC Three Ways to Launch Linode Kubernetes Engine Enterprise https://www.akamai.com/blog/developers/2025/jul/three-ways-to-launch-linode-kubernetes-engine-enterprise Gary Gaughan https://www.akamai.com/blog/developers/2025/jul/three-ways-to-launch-linode-kubernetes-engine-enterprise Mon, 14 Jul 2025 13:00:00 UTC An Intentionally Engineered Platform for a More Responsible Internet Learn how Akamai delivers performance, security, and scale on a platform that's also built for sustainability. https://www.akamai.com/blog/sustainability/2025/jul/intentionally-engineered-platform-more-responsible-internet Owen Mattison https://www.akamai.com/blog/sustainability/2025/jul/intentionally-engineered-platform-more-responsible-internet Mon, 14 Jul 2025 13:00:00 UTC The Prompt as a Rulebook - Guiding LLM Agents Beyond Basic Instructions https://www.akamai.com/blog/developers/2025/jul/the-prompt-as-a-rulebook-guiding-llm-agents-beyond-basic-instructions James Brown https://www.akamai.com/blog/developers/2025/jul/the-prompt-as-a-rulebook-guiding-llm-agents-beyond-basic-instructions Thu, 10 Jul 2025 13:00:00 UTC How AI Bots Are Rewriting the Rules of Publishing See how AI bots impact publishers and how Akamai helps you protect, control, and monetize your content as AI reshapes how people find information. https://www.akamai.com/blog/security/2025/jul/how-ai-bots-are-rewriting-rules-publishing Emily Lyons https://www.akamai.com/blog/security/2025/jul/how-ai-bots-are-rewriting-rules-publishing Thu, 10 Jul 2025 13:00:00 UTC Mitigating CitrixBleed 2 (CVE‑2025‑5777) NetScaler Memory Disclosure with App & API Protector https://www.akamai.com/blog/security-research/2025/jul/mitigating-citrixbleed-memory-vulnerability-ase Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/jul/mitigating-citrixbleed-memory-vulnerability-ase Thu, 10 Jul 2025 06:00:00 UTC Secure Your Data with Automated Local Compute Disk & Block Storage Volume Encryption https://www.akamai.com/blog/developers/2025/jul/introducing-automated-local-disk-data-encryption Maddie Presland https://www.akamai.com/blog/developers/2025/jul/introducing-automated-local-disk-data-encryption Wed, 09 Jul 2025 13:00:00 UTC Scalable Video Transcoding on Linode with Kubernetes and Capella https://www.akamai.com/blog/developers/2024/jul/scalable-video-transcoding-with-kubernetes-and-capella Talia Nassi https://www.akamai.com/blog/developers/2024/jul/scalable-video-transcoding-with-kubernetes-and-capella Wed, 09 Jul 2025 10:20:00 UTC Securing the Frontier - Navigating Security in LLM-Integrated Systems In the previous parts of this series, we've explored the exciting new ways Large Language Models (LLMs) can integrate with APIs and act as intelligent As we integrate LLMs deeper into our applications, the attack surface naturally expands. https://www.akamai.com/blog/developers/2025/jul/securing-the-frontier-navigating-security-in-llm-integrated-systems James Brown https://www.akamai.com/blog/developers/2025/jul/securing-the-frontier-navigating-security-in-llm-integrated-systems Wed, 09 Jul 2025 10:20:00 UTC Running Serverless Wasm Functions on the Edge with k3s and SpinKube https://www.akamai.com/blog/developers/2025/jul/spinkube-k3s Matt Butcher https://www.akamai.com/blog/developers/2025/jul/spinkube-k3s Wed, 09 Jul 2025 10:20:00 UTC Introducing wasi-grpc for Spin https://www.akamai.com/blog/developers/2025/sep/introducing-wasi-grpc Brian Hardock https://www.akamai.com/blog/developers/2025/sep/introducing-wasi-grpc Wed, 09 Jul 2025 10:20:00 UTC Announcing Spin 3.4 https://www.akamai.com/blog/developers/2025/aug/announcing-spin-3-4 Brian Hardock https://www.akamai.com/blog/developers/2025/aug/announcing-spin-3-4 Wed, 09 Jul 2025 10:20:00 UTC Thwarting AI Bots with Edge Content Rewriting https://www.akamai.com/blog/developers/2025/oct/thwarting-bots-with-edge-content-rewriting Matt Butcher https://www.akamai.com/blog/developers/2025/oct/thwarting-bots-with-edge-content-rewriting Wed, 09 Jul 2025 10:20:00 UTC The Media Player Is Critical to Streaming — and AMP2 Changes Everything https://www.akamai.com/blog/performance/2025/sep/media-player-critical-streaming-amp2-changes-everything Pavel Despot https://www.akamai.com/blog/performance/2025/sep/media-player-critical-streaming-amp2-changes-everything Wed, 09 Jul 2025 05:00:00 UTC Protect Client-Side Code and Certify the Authenticity of Data Collection https://www.akamai.com/blog/security-research/2025/jul/protect-client-side-code-certify-authenticity-data-collection David Sénécal https://www.akamai.com/blog/security-research/2025/jul/protect-client-side-code-certify-authenticity-data-collection Tue, 08 Jul 2025 13:00:00 UTC The New Toolkit: LLMs, Prompts, and Basic Tool Interaction https://www.akamai.com/blog/developers/2025/jul/the-new-toolkit-llms-prompts-and-basic-tool-interaction James Brown https://www.akamai.com/blog/developers/2025/jul/the-new-toolkit-llms-prompts-and-basic-tool-interaction Thu, 03 Jul 2025 13:00:00 UTC Real Performance Improvements 2025 https://www.akamai.com/blog/performance/2025/jul/real-performance-improvements-2025 Tim Vereecke & Robin Marx https://www.akamai.com/blog/performance/2025/jul/real-performance-improvements-2025 Thu, 03 Jul 2025 12:00:00 UTC Linode Terraform Provider v3.0.0 https://www.akamai.com/blog/developers/2025/jul/linode-terraform-provider-v3-0-0 Linode (Linode) https://www.akamai.com/blog/developers/2025/jul/linode-terraform-provider-v3-0-0 Wed, 02 Jul 2025 13:00:00 UTC Agentic AI Is Here — and It’s Shaping the Future of Bot Defense https://www.akamai.com/blog/security/2025/jul/agentic-ai-here-shaping-future-bot-defense Tsvika Klein https://www.akamai.com/blog/security/2025/jul/agentic-ai-here-shaping-future-bot-defense Wed, 02 Jul 2025 12:00:00 UTC Skip the Complexity: Akamai App Platform Makes Kubernetes Production-Ready - Now in GA https://www.akamai.com/blog/developers/2025/jul/akamai-app-platform-makes-kubernetes-production-ready Sander Rodenhuis (Sander Rodenhuis) https://www.akamai.com/blog/developers/2025/jul/akamai-app-platform-makes-kubernetes-production-ready Tue, 01 Jul 2025 13:00:00 UTC Operationalize Day-2 Services for API Security and Microsegmentation Learn how to turn post-deployment services into a revenue opportunity and provide ongoing value for your customers with industry-leading tools and service playbooks. https://www.akamai.com/blog/partners/2025/jul/operationalize-day-2-services-api-security-microsegmentation Adam Mittler https://www.akamai.com/blog/partners/2025/jul/operationalize-day-2-services-api-security-microsegmentation Tue, 01 Jul 2025 13:00:00 UTC Commitment to Powering Europe’s Digital Sovereignty and Competitiveness Akamai remains committed to supporting our customers’ European digital sovereignty with our suite of robust, secure, and high-performing solutions. https://www.akamai.com/blog/security/2025/jul/commitment-powering-europes-digital-sovereignty-competitiveness Natalie Billingham https://www.akamai.com/blog/security/2025/jul/commitment-powering-europes-digital-sovereignty-competitiveness Tue, 01 Jul 2025 12:00:00 UTC Dangling Danger: Why You Need to Focus on Your DNS Posture Management https://www.akamai.com/blog/security/2025/jun/dangling-danger-why-focus-dns-posture-management Tony Lauro https://www.akamai.com/blog/security/2025/jun/dangling-danger-why-focus-dns-posture-management Mon, 30 Jun 2025 06:00:00 UTC The Paradigm Shift: From Traditional APIs to Language-Driven Integration Large language models (LLMs) are changing the game, offering a new way for systems to interact based on understanding language, not just strict formats. https://www.akamai.com/blog/developers/2025/jun/from-traditional-apis-to-language-driven-integration James Brown https://www.akamai.com/blog/developers/2025/jun/from-traditional-apis-to-language-driven-integration Thu, 26 Jun 2025 13:00:00 UTC Study Reveals API Security Gaps in Asia-Pacific Compliance Programs https://www.akamai.com/blog/security/2025/jun/study-api-security-gaps-asia-pacific-compliance Reuben Koh https://www.akamai.com/blog/security/2025/jun/study-api-security-gaps-asia-pacific-compliance Thu, 26 Jun 2025 12:00:00 UTC Keep Your Tech FLAME Alive: Akamai Trailblazer Maite Vitar https://www.akamai.com/blog/culture/2025/jun/keep-your-tech-flame-alive-akamai-trailblazer-maite-vitar Akamai FLAME Team https://www.akamai.com/blog/culture/2025/jun/keep-your-tech-flame-alive-akamai-trailblazer-maite-vitar Wed, 25 Jun 2025 12:00:00 UTC Cryptominers’ Anatomy: Shutting Down Mining Botnets https://www.akamai.com/blog/security-research/2025/jun/cryptominers-anatomy-shutting-down-mining-botnets Maor Dahan https://www.akamai.com/blog/security-research/2025/jun/cryptominers-anatomy-shutting-down-mining-botnets Tue, 24 Jun 2025 13:00:00 UTC Improve Your Security with Attack Insights in Web Security Analytics https://www.akamai.com/blog/security/2025/jun/improve-security-attack-insights-web-security-analytics Danielle Walter https://www.akamai.com/blog/security/2025/jun/improve-security-attack-insights-web-security-analytics Mon, 23 Jun 2025 06:00:00 UTC Building a Quantum-Safe Internet: The IETF's Plan for TLS Learn about the latest initiatives in post-quantum cryptography, including the IETF’s plan for securing TLS. https://www.akamai.com/blog/trends/2025/jun/building-quantum-safe-internet-ietf-plan-tls Rich Salz https://www.akamai.com/blog/trends/2025/jun/building-quantum-safe-internet-ietf-plan-tls Wed, 18 Jun 2025 15:00:00 UTC Enhancements to Akamai API Security, Q2 2025 Akamai API Security updates 3.48 and 3.49 include Compliance Dashboard enhancements, integration with Zuplo API gateway, and expanded sensor coverage. https://www.akamai.com/blog/security/2025/jun/enhancements-to-akamai-api-security-q2-2025 Stas Neyman https://www.akamai.com/blog/security/2025/jun/enhancements-to-akamai-api-security-q2-2025 Mon, 16 Jun 2025 13:00:00 UTC API Security Under Federal Scrutiny: A Wake-Up Call for CIOs https://www.akamai.com/blog/security/2025/jun/api-security-federal-scrutiny-wake-up-call-cios Stas Neyman https://www.akamai.com/blog/security/2025/jun/api-security-federal-scrutiny-wake-up-call-cios Fri, 13 Jun 2025 12:00:00 UTC Secure Your Enterprise with Robust DNS: A Guide to NIST SP 800-81r3 https://www.akamai.com/blog/security/2025/jun/secure-enterprise-dns-guide-nist-sp-800-81r3 Jim Black https://www.akamai.com/blog/security/2025/jun/secure-enterprise-dns-guide-nist-sp-800-81r3 Thu, 12 Jun 2025 06:00:00 UTC Enhance Your Edge Native Apps with Low Latency Using Multiple EdgeWorkers Learn how Flexible Composition lets you seamlessly deploy multiple EdgeWorkers in a single request for easier-to-build, scalable, edge native applications. https://www.akamai.com/blog/edge/2025/jun/enhance-edge-native-apps-low-latency-multiple-edgeworkers Hitoshi Kaneko & Yo Nishiyama https://www.akamai.com/blog/edge/2025/jun/enhance-edge-native-apps-low-latency-multiple-edgeworkers Wed, 11 Jun 2025 13:00:00 UTC Beyond Implementation: Building a Zero Trust Strategy That Works https://www.akamai.com/blog/security/2025/jun/beyond-implementation-building-zero-trust-strategy-works Shivangi Sahu https://www.akamai.com/blog/security/2025/jun/beyond-implementation-building-zero-trust-strategy-works Wed, 11 Jun 2025 12:00:00 UTC Two Botnets, One Flaw: Mirai Spreads Through Wazuh Vulnerability https://www.akamai.com/blog/security-research/2025/jun/botnets-flaw-mirai-spreads-through-wazuh-vulnerability Kyle Lefton & Daniel Messing https://www.akamai.com/blog/security-research/2025/jun/botnets-flaw-mirai-spreads-through-wazuh-vulnerability Mon, 09 Jun 2025 13:00:00 UTC Innovation, Not Infrastructure: Akamai’s Managed Cloud Services https://www.akamai.com/blog/cloud/2025/jun/innovation-infrastructure-akamai-managed-service-compute Ari Weil https://www.akamai.com/blog/cloud/2025/jun/innovation-infrastructure-akamai-managed-service-compute Fri, 06 Jun 2025 09:00:00 UTC Introducing New Networking Capabilities for LKE-Enterprise Modern enterprise applications require a robust, scalable, and secure networking infrastructure. https://www.akamai.com/blog/developers/2025/jun/introducing-new-networking-capabilities-for-lke-enterprise Prasoon Pushkar https://www.akamai.com/blog/developers/2025/jun/introducing-new-networking-capabilities-for-lke-enterprise Thu, 05 Jun 2025 13:00:00 UTC Fog Computing vs. Edge Computing: Their Roles in Modern Technology Fog computing vs. edge computing: Understand how they compare, their unique benefits, and which is best for your data processing needs in IoT and beyond. https://www.akamai.com/blog/edge/2025/jun/fog-computing-edge-computing-roles-modern-technology Mike Elissen https://www.akamai.com/blog/edge/2025/jun/fog-computing-edge-computing-roles-modern-technology Thu, 05 Jun 2025 13:00:00 UTC Navigating the Future of Scope 2: Balancing Impact and Practicality The Greenhouse Gas Protocol’s Scope 2 revisions demand thoughtful action. Read how we’re prioritizing meaningful, measurable impact over rapid progress. https://www.akamai.com/blog/sustainability/2025/jun/navigating-future-scope-2-balancing-impact-practicality Mike Mattera https://www.akamai.com/blog/sustainability/2025/jun/navigating-future-scope-2-balancing-impact-practicality Thu, 05 Jun 2025 13:00:00 UTC Why It’s Time to Retire Traditional VPNs, Part 1 https://www.akamai.com/blog/security/2025/jun/why-time-retire-traditional-vpns-part-1 Elad Lev & Jim Black https://www.akamai.com/blog/security/2025/jun/why-time-retire-traditional-vpns-part-1 Wed, 04 Jun 2025 12:00:00 UTC Honoring Innovation, Growth, and Collaboration: The Akamai Partner Awards Introducing the Akamai Partner Awards, which recognize excellence — both organizational and individual — in sales, services, marketing, and technical impact. https://www.akamai.com/blog/partners/2025/jun/honoring-innovation-growth-collaboration-akamai-partner-awards Prince Jason Albert https://www.akamai.com/blog/partners/2025/jun/honoring-innovation-growth-collaboration-akamai-partner-awards Tue, 03 Jun 2025 12:00:00 UTC Introducing Akamai DNS Posture Management https://www.akamai.com/blog/security/2025/jun/introducing-akamai-dns-posture-management Sandra Murphy https://www.akamai.com/blog/security/2025/jun/introducing-akamai-dns-posture-management Tue, 03 Jun 2025 06:30:00 UTC The Akamai Innovation Tour: A Journey in Perspective and Partnership “What does innovation mean to you?” Read how one marketer answered that question after attending the 2025 Akamai Innovation Tour. https://www.akamai.com/blog/partners/2025/may/akamai-innovation-tour-journey-perspective-partnership Nick Watkins https://www.akamai.com/blog/partners/2025/may/akamai-innovation-tour-journey-perspective-partnership Fri, 30 May 2025 13:00:00 UTC Damage Control: Why Building Cyber Resilience Is Non-Negotiable It’s only a matter of time before attackers find a crack in your security armour. Learn how to combine resilience with compliance and protect what matters most. https://www.akamai.com/blog/security/2025/may/damage-control-why-building-cyber-resilience-non-negotiable Richard Meeus https://www.akamai.com/blog/security/2025/may/damage-control-why-building-cyber-resilience-non-negotiable Thu, 29 May 2025 13:00:00 UTC App Platform Updates: Customizable Catalog, Git-Based Secrets Management, and Automated Management of K8s Projects In this blog, we’ll shortly touch on App Platform’s new features and improvements, plus we’ll look ahead at some major changes that are in our pipeline. https://www.akamai.com/blog/developers/2025/may/app-platform-updates Sander Rodenhuis (Sander Rodenhuis) https://www.akamai.com/blog/developers/2025/may/app-platform-updates Tue, 27 May 2025 13:00:00 UTC AI in Cybersecurity: How AI Is Impacting the Fight Against Cybercrime AI is transforming cybersecurity. Explore how hackers use AI for cybercrimes and how cybersecurity experts use AI to prevent, detect, and respond to attacks. https://www.akamai.com/blog/security/2025/may/ai-cybersecurity-how-impacting-fight-against-cybercrime Christine Ferrusi Ross https://www.akamai.com/blog/security/2025/may/ai-cybersecurity-how-impacting-fight-against-cybercrime Thu, 22 May 2025 19:00:00 UTC Forget Perfect Prevention — Build Cyber Resilience Instead Discover why shifting from cyberattack prevention to cyber resilience is the key to survival in today’s relentless cyberthreat landscape. https://www.akamai.com/blog/security/2025/may/forget-perfect-prevention-build-cyber-resilience-instead Brent Maynard https://www.akamai.com/blog/security/2025/may/forget-perfect-prevention-build-cyber-resilience-instead Thu, 22 May 2025 11:00:00 UTC The Rise of the LLM AI Scrapers: What It Means for Bot Management Explore the rise of LLM AI scrapers and learn how to adapt to growing bot traffic with data-backed insights from our research. https://www.akamai.com/blog/security/2025/may/rise-llm-ai-scrapers-bot-management Tom Emmons & Rob Lester https://www.akamai.com/blog/security/2025/may/rise-llm-ai-scrapers-bot-management Wed, 21 May 2025 19:00:00 UTC BadSuccessor: Abusing dMSA to Escalate Privileges in Active Directory Akamai researchers found a privilege escalation vulnerability in Windows Server 2025 that allows attackers to compromise any user in Active Directory. https://www.akamai.com/blog/security-research/2025/may/abusing-dmsa-for-privilege-escalation-in-active-directory Yuval Gordon https://www.akamai.com/blog/security-research/2025/may/abusing-dmsa-for-privilege-escalation-in-active-directory Wed, 21 May 2025 14:00:00 UTC Fine-Tuning Your Managed Databases: Optimize Performance with Advanced Parameters Managed database services (DBaaS) provide a powerful and scalable approach to deploying and managing databases without the overhead of manual maintenance. https://www.akamai.com/blog/developers/2025/may/fine-tuning-your-managed-databases Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2025/may/fine-tuning-your-managed-databases Wed, 21 May 2025 13:00:00 UTC Compliance Insights: How to Stop Lateral Movement and Boost Authorization Stop lateral movement before it starts. Learn how to meet security compliance regulations with layered security, microsegmentation, and smart API protection. https://www.akamai.com/blog/security/2025/may/compliance-insights-stop-lateral-movement-boost-authorization John Natale https://www.akamai.com/blog/security/2025/may/compliance-insights-stop-lateral-movement-boost-authorization Mon, 19 May 2025 13:00:00 UTC Scope 3, Category 8: What Akamai Is Doing for Customer Reporting https://www.akamai.com/blog/sustainability/2025/may/what-akamai-is-doing-for-customer-reporting Mike Mattera https://www.akamai.com/blog/sustainability/2025/may/what-akamai-is-doing-for-customer-reporting Mon, 19 May 2025 12:00:00 UTC Locked Out and Held for Ransom: A City's Battle Against Cybercrime Read how having a plan and doing some preparation in advance can lessen the severity of a ransomware attack — or prevent one altogether. https://www.akamai.com/blog/security/2025/may/locked-out-held-ransom-citys-battle-against-cybercrime Douglas Holland https://www.akamai.com/blog/security/2025/may/locked-out-held-ransom-citys-battle-against-cybercrime Thu, 15 May 2025 13:00:00 UTC Comparing Video Processing Units (VPUs), GPUs, and CPUs More users than ever subscribe to on-demand media streaming and engage with live streaming video over the internet, rather than broadcast television. https://www.akamai.com/blog/developers/2025/may/cpu-gpu-video-processing-unit-comparison Maddie Presland https://www.akamai.com/blog/developers/2025/may/cpu-gpu-video-processing-unit-comparison Wed, 14 May 2025 13:00:00 UTC Unlock New Growth Opportunities with Akamai Campaign Builder https://www.akamai.com/blog/partners/2025/may/unlock-new-growth-opportunities-akamai-campaign-builder Gabriela Grigoras https://www.akamai.com/blog/partners/2025/may/unlock-new-growth-opportunities-akamai-campaign-builder Wed, 14 May 2025 12:00:00 UTC A DDoS Attack Just Breached Your Defenses — Now What? https://www.akamai.com/blog/security/2025/may/ddos-attack-breached-your-defenses-now-what Bruce Van Nice, Sandeep Rath, Dennis Birchard & Gabriel Bellas https://www.akamai.com/blog/security/2025/may/ddos-attack-breached-your-defenses-now-what Tue, 13 May 2025 12:00:00 UTC Introducing Linode Interfaces: Better Network Management (Open Beta) Join the beta for Linode Interfaces, a new network management tool offering clearer configurations, better security, and smarter routing. https://www.akamai.com/blog/developers/2025/may/introducing-linode-interfaces Prasoon Pushkar https://www.akamai.com/blog/developers/2025/may/introducing-linode-interfaces Tue, 13 May 2025 10:20:00 UTC Gain Deeper Visibility into Risks to Meet Security Compliance Demands https://www.akamai.com/blog/security/2025/may/gain-visibility-risks-meet-security-compliance-demands John Natale https://www.akamai.com/blog/security/2025/may/gain-visibility-risks-meet-security-compliance-demands Fri, 09 May 2025 12:00:00 UTC Creating A Clear Cloud with Account Service Limits and Quotas https://www.akamai.com/blog/developers/2025/may/creating-a-clear-cloud-with-account-service-limits-and-quotas Maddie Presland https://www.akamai.com/blog/developers/2025/may/creating-a-clear-cloud-with-account-service-limits-and-quotas Thu, 08 May 2025 13:00:00 UTC Kubernetes IngressNightmare: Wake Up and Fight Back with Microsegmentation Discover how to defend Kubernetes from Ingress vulnerabilities with microsegmentation and Zero Trust security from Akamai. Stay protected — inside and out. https://www.akamai.com/blog/security/2025/may/kubernetes-ingressnightmare-wake-up-fight-back-microsegmentation Yaniv Zadok & Jacob Abrams https://www.akamai.com/blog/security/2025/may/kubernetes-ingressnightmare-wake-up-fight-back-microsegmentation Wed, 07 May 2025 13:00:00 UTC Here Comes Mirai: IoT Devices RSVP to Active Exploitation https://www.akamai.com/blog/security-research/2025/may/active-exploitation-mirai-geovision-iot-botnet Kyle Lefton https://www.akamai.com/blog/security-research/2025/may/active-exploitation-mirai-geovision-iot-botnet Tue, 06 May 2025 13:00:00 UTC Distributed AI Inference: Strategies for Success https://www.akamai.com/blog/developers/2025/may/distributed-ai-inference-strategies-for-success Vineeth Varughese https://www.akamai.com/blog/developers/2025/may/distributed-ai-inference-strategies-for-success Fri, 02 May 2025 13:00:00 UTC Bolster Your Regulatory Compliance with Layered Security Measures https://www.akamai.com/blog/security/2025/may/bolster-regulatory-compliance-with-layered-security-measures John Natale https://www.akamai.com/blog/security/2025/may/bolster-regulatory-compliance-with-layered-security-measures Fri, 02 May 2025 12:00:00 UTC Optimize Application Performance Across Germany with New Berlin Distributed Region https://www.akamai.com/blog/developers/2025/may/new-berlin-distributed-compute-region Maddie Presland https://www.akamai.com/blog/developers/2025/may/new-berlin-distributed-compute-region Thu, 01 May 2025 13:00:00 UTC Akamai Firewall for AI: Get Powerful Protection for New LLM App Threats Protect against LLM attacks such as prompt injection, exfiltration and extraction, and toxic AI outputs with Akamai Firewall for AI. https://www.akamai.com/blog/security/2025/apr/protect-against-llm-attacks-with-akamai-firewall-for-ai Christine Ferrusi Ross https://www.akamai.com/blog/security/2025/apr/protect-against-llm-attacks-with-akamai-firewall-for-ai Tue, 29 Apr 2025 13:00:00 UTC Combat Rising Account Abuse: Akamai and Ping Identity Partner Up https://www.akamai.com/blog/security/2025/apr/akamai-and-ping-identity-partner-up Emily Lyons https://www.akamai.com/blog/security/2025/apr/akamai-and-ping-identity-partner-up Mon, 28 Apr 2025 12:00:00 UTC Portability and Developer Control: 5 Key Takeaways from NAB 2025 https://www.akamai.com/blog/developers/2025/apr/5-key-takeaways-from-nab-2025 Pavel Despot https://www.akamai.com/blog/developers/2025/apr/5-key-takeaways-from-nab-2025 Fri, 25 Apr 2025 13:00:00 UTC AI Is Starting to Flex Its Network Security Muscles https://www.akamai.com/blog/security/2025/apr/ai-starting-flex-network-security-muscles Garrett Weber https://www.akamai.com/blog/security/2025/apr/ai-starting-flex-network-security-muscles Fri, 25 Apr 2025 12:00:00 UTC Capture, Replicate, Deploy: Image Service Upgrades Now Available https://www.akamai.com/blog/developers/2025/apr/image-service-improvements-akamai-cdn Maddie Presland https://www.akamai.com/blog/developers/2025/apr/image-service-improvements-akamai-cdn Thu, 24 Apr 2025 10:20:00 UTC Deployments to Dollars: Turning Services into Recurring Revenue https://www.akamai.com/blog/partners/2025/apr/deployments-dollars-turning-services-into-recurring-revenue Adam Mittler https://www.akamai.com/blog/partners/2025/apr/deployments-dollars-turning-services-into-recurring-revenue Thu, 24 Apr 2025 09:00:00 UTC A Sustainability Program with Regional Nuance https://www.akamai.com/blog/sustainability/2025/apr/a-sustainability-program-with-regional-nuance Owen Mattison https://www.akamai.com/blog/sustainability/2025/apr/a-sustainability-program-with-regional-nuance Tue, 22 Apr 2025 12:00:00 UTC The AI-Powered Reboot: Rethinking Defense for Web Apps and APIs https://www.akamai.com/blog/security-research/2025/apr/rethinking-defense-web-apps-api-new-soti Tricia Howard https://www.akamai.com/blog/security-research/2025/apr/rethinking-defense-web-apps-api-new-soti Tue, 22 Apr 2025 10:00:00 UTC Helping Our Customers Develop a Sustainability Strategy https://www.akamai.com/blog/sustainability/2025/apr/helping-our-customers-develop-a-sustainability-strategy Owen Mattison https://www.akamai.com/blog/sustainability/2025/apr/helping-our-customers-develop-a-sustainability-strategy Mon, 21 Apr 2025 12:00:00 UTC Data Is on the Menu — and AI’s Market Price Is High https://www.akamai.com/blog/security/2025/apr/llm-scraper-bots-data-collection Tricia Howard https://www.akamai.com/blog/security/2025/apr/llm-scraper-bots-data-collection Fri, 18 Apr 2025 12:00:00 UTC Akamai API Security Enhancements https://www.akamai.com/blog/security/2025/apr/akamai-api-security-enhancements Stas Neyman https://www.akamai.com/blog/security/2025/apr/akamai-api-security-enhancements Thu, 17 Apr 2025 12:00:00 UTC API Security Is Key to Cyber Resilience in Media and Entertainment For media and entertainment companies, API expansion means a broader attack surface. Security needs to stay a step ahead. https://www.akamai.com/blog/security/2025/apr/api-security-key-to-cyber-resilience-media-entertainment Beata Majek-Adamczyk https://www.akamai.com/blog/security/2025/apr/api-security-key-to-cyber-resilience-media-entertainment Wed, 16 Apr 2025 13:00:00 UTC What Are the Benefits of a Microservices Architecture? https://www.akamai.com/blog/cloud/2025/apr/benefits-of-a-microservices-architecture Pavel Despot https://www.akamai.com/blog/cloud/2025/apr/benefits-of-a-microservices-architecture Tue, 15 Apr 2025 12:00:00 UTC Private Networking in Distributed Compute Regions with VPC https://www.akamai.com/blog/developers/2025/apr/private-networking-distributed-regions-vpc Maddie Presland https://www.akamai.com/blog/developers/2025/apr/private-networking-distributed-regions-vpc Tue, 15 Apr 2025 10:20:00 UTC Sharing Is (Not) Caring: How Shared Credentials Open the Door to Breaches https://www.akamai.com/blog/security-research/2025/apr/sharing-is-caring-third-party-risk-code-shared-credentials Tomer Peled https://www.akamai.com/blog/security-research/2025/apr/sharing-is-caring-third-party-risk-code-shared-credentials Mon, 14 Apr 2025 06:00:00 UTC Cloud Migration Strategy: The Step-By-Step Framework and Benefits https://www.akamai.com/blog/cloud/2024/jun/cloud-migration-strategy Pavel Despot https://www.akamai.com/blog/cloud/2024/jun/cloud-migration-strategy Fri, 11 Apr 2025 13:00:00 UTC What Is DNSSEC, and How Does It Work? https://www.akamai.com/blog/trends/dnssec-how-it-works-key-considerations Sam Preston https://www.akamai.com/blog/trends/dnssec-how-it-works-key-considerations Fri, 11 Apr 2025 12:00:00 UTC It’s All in the Cards: Preventing Payment Abuse for Retailers Carding attacks have become a serious challenge for retailers. Learn how Akamai Account Protector can help organizations defend against payment abuse. https://www.akamai.com/blog/security/2025/apr/its-all-in-the-cards-preventing-payment-abuse-retailers Emily Lyons https://www.akamai.com/blog/security/2025/apr/its-all-in-the-cards-preventing-payment-abuse-retailers Fri, 11 Apr 2025 08:30:00 UTC Consistent Security Everywhere: Akamai Makes Leading WAF Technology CDN-Agnostic https://www.akamai.com/blog/security/2025/apr/akamai-makes-leading-waf-technology-cdn-agnostic Danielle Walter https://www.akamai.com/blog/security/2025/apr/akamai-makes-leading-waf-technology-cdn-agnostic Wed, 09 Apr 2025 10:00:00 UTC Critical Linux RCE Vulnerability in CUPS — What We Know and How to Prepare https://www.akamai.com/blog/security-research/2024/sep/guidance-on-critical-cups-rce Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/sep/guidance-on-critical-cups-rce Tue, 08 Apr 2025 12:00:00 UTC DDoS Attack Trends in 2024 Signify That Sophistication Overshadows Size https://www.akamai.com/blog/security/2025/apr/ddos-attack-trends-2024-signify-sophistication-overshadows-size Sven Dummer, Dennis Birchard, Sandeep Rath & Bruce Van Nice https://www.akamai.com/blog/security/2025/apr/ddos-attack-trends-2024-signify-sophistication-overshadows-size Mon, 07 Apr 2025 12:00:00 UTC Speed with Precision: Early and Accurate Response to Apache Camel CVEs https://www.akamai.com/blog/security/2025/apr/early-and-accurate-response-to-apache-camel-cves Danielle Walter & Tim Cote https://www.akamai.com/blog/security/2025/apr/early-and-accurate-response-to-apache-camel-cves Mon, 07 Apr 2025 09:00:00 UTC Cloud for the Streaming Era: Introducing Accelerated Compute https://www.akamai.com/blog/developers/2025/apr/new-accelerated-compute-netint-vpu-plans Maddie Presland https://www.akamai.com/blog/developers/2025/apr/new-accelerated-compute-netint-vpu-plans Thu, 03 Apr 2025 10:20:00 UTC Unlocking the Next Wave of Edge Computing with Serverless WebAssembly https://www.akamai.com/blog/cloud/2025/apr/unlocking-next-wave-edge-computing-serverless-webassembly Brent Eiler & Matt Butcher https://www.akamai.com/blog/cloud/2025/apr/unlocking-next-wave-edge-computing-serverless-webassembly Tue, 01 Apr 2025 16:00:00 UTC Anatomy of a SYN-ACK Attack https://www.akamai.com/blog/security/anatomy-of-a-syn-ack-attack Chad Seaman https://www.akamai.com/blog/security/anatomy-of-a-syn-ack-attack Tue, 01 Apr 2025 12:00:00 UTC Production-Grade K8s without Complexity: Introducing LKE-Enterprise https://www.akamai.com/blog/developers/2025/mar/launching-lke-enterprise Hana Jeddy https://www.akamai.com/blog/developers/2025/mar/launching-lke-enterprise Mon, 31 Mar 2025 10:20:00 UTC Securing Video Contribution Feeds with Akamai’s Distributed Cloud & CDN https://www.akamai.com/blog/developers/2025/mar/securing-video-contribution-feeds-with-akamais-distributed-cloud-amp-cdn David Eisenbacher https://www.akamai.com/blog/developers/2025/mar/securing-video-contribution-feeds-with-akamais-distributed-cloud-amp-cdn Fri, 28 Mar 2025 10:20:00 UTC Enhancing Public Sector Cybersecurity with Akamai API Security Learn how Akamai's API security solution helps federal agencies identify, protect, and monitor API traffic in real time. https://www.akamai.com/blog/security/2025/mar/enhancing-public-sector-cybersecurity-with-akamai-api-security Stephen Ringo https://www.akamai.com/blog/security/2025/mar/enhancing-public-sector-cybersecurity-with-akamai-api-security Thu, 27 Mar 2025 19:00:00 UTC To Meet Compliance Challenges, Focus on Building Great Security https://www.akamai.com/blog/security/2025/mar/meet-compliance-challenges-focus-building-great-security Tony Lauro https://www.akamai.com/blog/security/2025/mar/meet-compliance-challenges-focus-building-great-security Thu, 27 Mar 2025 12:00:00 UTC AI Inference on Akamai Cloud: Enabling Developers to Accelerate Edge Native Applications https://www.akamai.com/blog/developers/2025/mar/ai-inference-on-akamai-cloud Ari Weil https://www.akamai.com/blog/developers/2025/mar/ai-inference-on-akamai-cloud Thu, 27 Mar 2025 10:20:00 UTC Emissions Transparency: Moving Toward a More Rigorous Verification https://www.akamai.com/blog/sustainability/2025/mar/moving-toward-a-more-rigorous-verification Katie Robinson https://www.akamai.com/blog/sustainability/2025/mar/moving-toward-a-more-rigorous-verification Wed, 26 Mar 2025 12:00:00 UTC Why AI Inference is Driving the Shift from Centralized to Distributed Cloud Computing https://www.akamai.com/blog/developers/2025/mar/why-ai-inference-is-driving-the-shift-from-centralized-to-distributed-cloud-computing Vineeth Varughese https://www.akamai.com/blog/developers/2025/mar/why-ai-inference-is-driving-the-shift-from-centralized-to-distributed-cloud-computing Wed, 26 Mar 2025 10:20:00 UTC Distributed Cloud Solutions and AI: Key Findings from Forrester's 2024 Study https://www.akamai.com/blog/developers/2025/mar/distributed-cloud-solutions-and-ai-key-findings-forrester Santiago Giraldo https://www.akamai.com/blog/developers/2025/mar/distributed-cloud-solutions-and-ai-key-findings-forrester Tue, 25 Mar 2025 15:00:00 UTC Akamai Wins Best Sales Leadership Development Program from Brandon Hall Learn how Akamai's award-winning sales leadership development program transforms sales managers into impactful coaches, driving growth and performance. https://www.akamai.com/blog/news/2025/mar/akamai-wins-best-sales-leadership-brandon-hall Chelsey Pine https://www.akamai.com/blog/news/2025/mar/akamai-wins-best-sales-leadership-brandon-hall Tue, 25 Mar 2025 15:00:00 UTC Akamai’s Channel-First Strategy: Driving Partner Success in 2025 Customer success is Akamai’s priority — and our many industry awards highlight how we've empowered our partners to thrive. See what we have planned for 2025. https://www.akamai.com/blog/partners/2025/mar/akamais-channel-first-strategy-driving-partner-success-2025 Janki Kaura https://www.akamai.com/blog/partners/2025/mar/akamais-channel-first-strategy-driving-partner-success-2025 Mon, 24 Mar 2025 13:00:00 UTC Detecting and Mitigating an Authorization Bypass Vulnerability in Next.js https://www.akamai.com/blog/security-research/2025/mar/march-authorization-bypass-critical-nextjs-detections-mitigations Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/mar/march-authorization-bypass-critical-nextjs-detections-mitigations Mon, 24 Mar 2025 08:00:00 UTC Why AI Demands a New Security Playbook Understand the new AI security threats and how Akamai can help you develop a risk mitigation strategy. https://www.akamai.com/blog/security/2025/mar/why-ai-demands-a-new-security-playbook Rupesh Chokshi https://www.akamai.com/blog/security/2025/mar/why-ai-demands-a-new-security-playbook Fri, 21 Mar 2025 13:00:00 UTC Akamai Named a Leader in the Latest Forrester Report for WAF Solutions https://www.akamai.com/blog/security/2025/mar/akamai-named-leader-latest-forrester-report-waf-solution Danielle Walter https://www.akamai.com/blog/security/2025/mar/akamai-named-leader-latest-forrester-report-waf-solution Thu, 20 Mar 2025 13:00:00 UTC No Lag, All Frag: Level Up Your Gaming with Xonotic, K3s, and Edge Computing https://www.akamai.com/blog/developers/2025/mar/no-lag-all-frag Michael Archer https://www.akamai.com/blog/developers/2025/mar/no-lag-all-frag Thu, 20 Mar 2025 10:20:00 UTC Detecting and Mitigating Apache Tomcat CVE-2025-24813 https://www.akamai.com/blog/security-research/2025/mar/march-apache-tomcat-path-equivalence-traffic-detections-mitigations Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/mar/march-apache-tomcat-path-equivalence-traffic-detections-mitigations Thu, 20 Mar 2025 08:00:00 UTC The Hidden Costs and Ethical Pitfalls of Content Scraping Read about the significant hidden costs and ethical pitfalls of content scraping — and learn how to protect your website. https://www.akamai.com/blog/security/2025/mar/the-hidden-costs-and-ethical-pitfalls-of-content-scraping Jagdish Mohite https://www.akamai.com/blog/security/2025/mar/the-hidden-costs-and-ethical-pitfalls-of-content-scraping Wed, 19 Mar 2025 15:00:00 UTC Cryptominers’ Anatomy: Analyzing Cryptominers https://www.akamai.com/blog/security-research/2025/mar/cryptominer-analyzing-samples-active-campaigns Maor Dahan https://www.akamai.com/blog/security-research/2025/mar/cryptominer-analyzing-samples-active-campaigns Wed, 19 Mar 2025 06:00:00 UTC Negative Exposure: Edimax Network Cameras Used to Spread Mirai Mirai continues to plague organizations. Read how the Akamai SIRT identified a new command injection vulnerability that’s targeting Edimax devices. https://www.akamai.com/blog/security-research/2025/mar/march-edimax-cameras-command-injection-mirai Kyle Lefton & Larry Cashdollar https://www.akamai.com/blog/security-research/2025/mar/march-edimax-cameras-command-injection-mirai Thu, 13 Mar 2025 19:00:00 UTC Detecting and Mitigating the Apache Camel Vulnerabilities Akamai researchers have created detection scripts and additional details for the Apache Camel vulnerabilities CVE-2025-27636 and CVE-2025-29891. https://www.akamai.com/blog/security-research/2025/mar/march-apache-camel-vulnerability-detections-and-mitigations Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2025/mar/march-apache-camel-vulnerability-detections-and-mitigations Tue, 11 Mar 2025 16:00:00 UTC From Good to Great: Mastering Day-2 Network Security Policy https://www.akamai.com/blog/security/2025/mar/segmentation-network-security-policy-akamai-hunt Zohar Furman https://www.akamai.com/blog/security/2025/mar/segmentation-network-security-policy-akamai-hunt Tue, 11 Mar 2025 13:00:00 UTC Behind the Scenes: Introducing the Akamai Design System We recently made some design changes to our UI to improve the user experience. Lead Senior Software Engineer Jaalah Ramos expands on the “why” in this Q&A. https://www.akamai.com/blog/developers/2025/mar/akamai-design-system-cloud-ui Maddie Presland https://www.akamai.com/blog/developers/2025/mar/akamai-design-system-cloud-ui Mon, 10 Mar 2025 10:20:00 UTC Magecart: How Akamai Protected a Global Retailer Against a Live Attack https://www.akamai.com/blog/security/2025/mar/how-akamai-protected-global-retailer-against-live-attack Gal Meiri https://www.akamai.com/blog/security/2025/mar/how-akamai-protected-global-retailer-against-live-attack Fri, 07 Mar 2025 13:00:00 UTC Scale Transcoding and AI Workloads with GPU Kubernetes Clusters https://www.akamai.com/blog/developers/2025/mar/scale-transcoding-ai-workloads-gpu-kubernetes-clusters Hana Jeddy https://www.akamai.com/blog/developers/2025/mar/scale-transcoding-ai-workloads-gpu-kubernetes-clusters Fri, 07 Mar 2025 10:20:00 UTC Mastering Kubernetes: From Troubleshooting to Simplicity https://www.akamai.com/blog/developers/2025/mar/mastering-kubernetes-from-troubleshooting-to-simplicity Billy Thompson https://www.akamai.com/blog/developers/2025/mar/mastering-kubernetes-from-troubleshooting-to-simplicity Tue, 04 Mar 2025 10:20:00 UTC Why Are Airlines a Prime Target for Cyberattacks? https://www.akamai.com/blog/security/2025/mar/why-are-airlines-prime-target-for-cyberattacks Jim Black & Eric Rubenov https://www.akamai.com/blog/security/2025/mar/why-are-airlines-prime-target-for-cyberattacks Tue, 04 Mar 2025 07:00:00 UTC Lightning-Fast Requests with Early Data https://www.akamai.com/blog/edge/2025/feb/lightning-fast-requests-with-early-data Robin Marx & Rafal Myszka https://www.akamai.com/blog/edge/2025/feb/lightning-fast-requests-with-early-data Fri, 28 Feb 2025 13:00:00 UTC Strengthening Our Emissions Accounting Process https://www.akamai.com/blog/sustainability/2025/feb/strengthening-our-emissions-accounting-process-blog Margot Hines https://www.akamai.com/blog/sustainability/2025/feb/strengthening-our-emissions-accounting-process-blog Thu, 27 Feb 2025 18:00:00 UTC PCI DSS v4.0.1: The Changes You Need to Know to Qualify for SAQ A What's changed in PCI DSS v4.0.1? Get a breakdown of what these new requirements mean and how Akamai’s solutions can help. https://www.akamai.com/blog/security/2025/feb/pci-dss-v4-0-1-changes-qualify-saq-a Mark Carrizosa , Boris Kirzner & Emily Lyons https://www.akamai.com/blog/security/2025/feb/pci-dss-v4-0-1-changes-qualify-saq-a Wed, 26 Feb 2025 14:00:00 UTC Zero Trust Network Access Without the Performance Penalty https://www.akamai.com/blog/security/2025/feb/zero-trust-network-access-without-performance-penalty Jim Black https://www.akamai.com/blog/security/2025/feb/zero-trust-network-access-without-performance-penalty Wed, 26 Feb 2025 13:00:00 UTC DevOpsDays 2025 https://www.akamai.com/blog/developers/2025/feb/devopsdays-2025 Billy Thompson https://www.akamai.com/blog/developers/2025/feb/devopsdays-2025 Wed, 26 Feb 2025 10:20:00 UTC Abusing VBS Enclaves to Create Evasive Malware https://www.akamai.com/blog/security-research/2025/feb/abusing-vbs-enclaves-evasive-malware Ori David https://www.akamai.com/blog/security-research/2025/feb/abusing-vbs-enclaves-evasive-malware Tue, 25 Feb 2025 14:00:00 UTC Accelerate Your Business Success with Akamai Enhanced Partner Portal https://www.akamai.com/blog/partners/2025/feb/accelerate-with-akamai-enhanced-partner-portal Marcello Scippa https://www.akamai.com/blog/partners/2025/feb/accelerate-with-akamai-enhanced-partner-portal Thu, 20 Feb 2025 13:00:00 UTC Deepseek: Why it Matters and What the Press Got Wrong https://www.akamai.com/blog/developers/2025/feb/deepseek-why-it-matters-and-what-the-press-got-wrong Robert Blumofe https://www.akamai.com/blog/developers/2025/feb/deepseek-why-it-matters-and-what-the-press-got-wrong Wed, 19 Feb 2025 10:20:00 UTC How to Recognize AI Attacks and Strategies for Securing Your AI Applications https://www.akamai.com/blog/security/2025/feb/attacks-and-strategies-for-securing-ai-applications Ziv Eli & Gal Meiri https://www.akamai.com/blog/security/2025/feb/attacks-and-strategies-for-securing-ai-applications Wed, 19 Feb 2025 07:00:00 UTC Protect Your Critical Assets with Akamai Guardicore DNS Firewall Enhance your network security and protect servers, workloads, and IoT devices with Akamai Guardicore DNS Firewall. https://www.akamai.com/blog/security/2025/feb/protect-critical-assets-with-akamai-guardicore-dns-firewall Jim Black https://www.akamai.com/blog/security/2025/feb/protect-critical-assets-with-akamai-guardicore-dns-firewall Tue, 18 Feb 2025 14:00:00 UTC Introducing New Akamai Object Storage Endpoints https://www.akamai.com/blog/developers/2025/feb/introducing-new-akamai-object-storage-endpoints Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2025/feb/introducing-new-akamai-object-storage-endpoints Tue, 18 Feb 2025 10:20:00 UTC Distributed AI Inferencing — The Next Generation of Computing https://www.akamai.com/blog/cloud/2025/feb/distributed-ai-inferencing-next-generation-of-computing Vineeth Varughese https://www.akamai.com/blog/cloud/2025/feb/distributed-ai-inferencing-next-generation-of-computing Thu, 13 Feb 2025 16:00:00 UTC Managed Databases as Code Using Terraform https://www.akamai.com/blog/developers/2025/feb/managed-databases-as-code-using-terraform Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2025/feb/managed-databases-as-code-using-terraform Thu, 13 Feb 2025 10:20:00 UTC Introducing Akamai Managed Service for API Security https://www.akamai.com/blog/security/2025/feb/introducing-akamai-managed-service-for-api-security Stas Neyman https://www.akamai.com/blog/security/2025/feb/introducing-akamai-managed-service-for-api-security Thu, 13 Feb 2025 08:00:00 UTC Arming the Defenders: A SOTI Report for Those Who Protect the Enterprise Defenders, this one is for you. Read this SOTI report to get actionable insights from cybersecurity experts who battle cyberthreats every day. https://www.akamai.com/blog/security-research/2025/feb/arming-defenders-soti-report-for-protecting-enterprises Mitch Mayne https://www.akamai.com/blog/security-research/2025/feb/arming-defenders-soti-report-for-protecting-enterprises Tue, 11 Feb 2025 14:00:00 UTC Exploring a VPN Appliance: A Researcher’s Journey https://www.akamai.com/blog/security-research/2025/feb/fortinet-critical-vulnerabilities Ben Barnea https://www.akamai.com/blog/security-research/2025/feb/fortinet-critical-vulnerabilities Tue, 11 Feb 2025 13:00:00 UTC Cryptominers’ Anatomy: Cryptomining Internals https://www.akamai.com/blog/security-research/2025/feb/cryptominer-anatomy-internals Maor Dahan https://www.akamai.com/blog/security-research/2025/feb/cryptominer-anatomy-internals Thu, 06 Feb 2025 14:00:00 UTC Cache Hit Ratio: The Key Metric for Happier Users and Lower Expenses https://www.akamai.com/blog/edge/2025/feb/the-key-metric-for-happier-users Mike Elissen https://www.akamai.com/blog/edge/2025/feb/the-key-metric-for-happier-users Mon, 03 Feb 2025 13:00:00 UTC Harnessing Artificial Intelligence for a Superior Web Application Firewall https://www.akamai.com/blog/security/2025/feb/harnessing-artificial-intelligence-for-superior-web-application-firewall Maxim Zavodchik & Tom Emmons https://www.akamai.com/blog/security/2025/feb/harnessing-artificial-intelligence-for-superior-web-application-firewall Mon, 03 Feb 2025 13:00:00 UTC Active Exploitation: New Aquabot Variant Phones Home https://www.akamai.com/blog/security-research/2025/jan/new-aquabot-mirai-variant-exploiting-mitel-phones Kyle Lefton & Larry Cashdollar https://www.akamai.com/blog/security-research/2025/jan/new-aquabot-mirai-variant-exploiting-mitel-phones Tue, 28 Jan 2025 14:00:00 UTC Continuing the Sustainability Conversation https://www.akamai.com/blog/sustainability/2025/jan/continuing-the-sustainability-conversation Mike Mattera https://www.akamai.com/blog/sustainability/2025/jan/continuing-the-sustainability-conversation Mon, 27 Jan 2025 13:00:00 UTC Exploit Me, Baby, One More Time: Command Injection in Kubernetes Log Query A vulnerability in Kubernetes allows remote code execution. Read how abusing Log Query can lead to a complete takeover of all Windows nodes in a cluster. https://www.akamai.com/blog/security-research/2025/jan/kubernetes-log-query-rce-windows Tomer Peled https://www.akamai.com/blog/security-research/2025/jan/kubernetes-log-query-rce-windows Fri, 24 Jan 2025 14:00:00 UTC You Can’t Improve What You Can’t See: API Monitoring Is Crucial https://www.akamai.com/blog/developers/2025/jan/you-cant-improve-what-you-cant-see-api-monitoring-is-crucial Mayur Upadhyaya https://www.akamai.com/blog/developers/2025/jan/you-cant-improve-what-you-cant-see-api-monitoring-is-crucial Tue, 21 Jan 2025 10:20:00 UTC DNS Silently Powers the Internet As a part of almost every internet transaction, the Domain Name System is powerful, lightweight, and ubiquitous — and delivers value for a modest investment. https://www.akamai.com/blog/security/2025/jan/dns-silently-powers-the-internet Bruce Van Nice https://www.akamai.com/blog/security/2025/jan/dns-silently-powers-the-internet Fri, 17 Jan 2025 14:00:00 UTC Akamai Named a Major Player in IDC MarketScape: Worldwide Public Cloud IaaS 2025 Assessment https://www.akamai.com/blog/cloud/2025/jan/akamai-named-a-major-player-in-idc-marketscape Ari Weil https://www.akamai.com/blog/cloud/2025/jan/akamai-named-a-major-player-in-idc-marketscape Thu, 16 Jan 2025 17:00:00 UTC Akamai API Security Release 3.41 https://www.akamai.com/blog/security/2025/jan/akamai-api-security-release-3-41 Stas Neyman https://www.akamai.com/blog/security/2025/jan/akamai-api-security-release-3-41 Thu, 16 Jan 2025 13:00:00 UTC Akamai’s Tailored Approach to Net Zero https://www.akamai.com/blog/sustainability/2025/jan/akamai-tailored-approach-to-net-zero Mike Mattera https://www.akamai.com/blog/sustainability/2025/jan/akamai-tailored-approach-to-net-zero Wed, 15 Jan 2025 13:00:00 UTC Live Streaming with Akamai’s Distributed Compute Regions https://www.akamai.com/blog/developers/2025/jan/live-streaming-with-akamais-distributed-compute-regions Nazir Kabani https://www.akamai.com/blog/developers/2025/jan/live-streaming-with-akamais-distributed-compute-regions Wed, 15 Jan 2025 10:20:00 UTC Object Storage Use Cases in Focus: New Endpoints for Higher Capacity and Speed https://www.akamai.com/blog/developers/2025/jan/object-storage-use-cases-in-focus-new-endpoints-for-higher-capacity-and-speed Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2025/jan/object-storage-use-cases-in-focus-new-endpoints-for-higher-capacity-and-speed Tue, 14 Jan 2025 10:20:00 UTC Data Security: Challenges, Solutions, and the Path Forward Learn why a more proactive, integrated, and dynamic approach to data security is crucial to effectively safeguard your business in today’s digital landscape. https://www.akamai.com/blog/security/2025/jan/data-security-challenges-solutions-and-the-path-forward Jagdish Mohite https://www.akamai.com/blog/security/2025/jan/data-security-challenges-solutions-and-the-path-forward Wed, 08 Jan 2025 15:00:00 UTC How Your Business Can Benefit From Combining a DAM and CDN https://www.akamai.com/blog/developers/2025/jan/how-your-business-can-benefit-from-combining-a-dam-and-cdn Jean-François Lecas https://www.akamai.com/blog/developers/2025/jan/how-your-business-can-benefit-from-combining-a-dam-and-cdn Tue, 07 Jan 2025 10:20:00 UTC Making an Impact: Beach Cleanup and Reforestation Event Akamai volunteers in Costa Rica came together to remove trash from the beach and plant trees — and they learned how their everyday choices affect the planet. https://www.akamai.com/blog/sustainability/2025/jan/making-an-impact-beach-cleanup-and-reforestation-event brojas@akamai.com (Braulio Rojas) https://www.akamai.com/blog/sustainability/2025/jan/making-an-impact-beach-cleanup-and-reforestation-event Mon, 06 Jan 2025 14:00:00 UTC Major Enhancements to Akamai API Security, Q4 2024 The Akamai API Security updates 3.38, 3.39, and 3.40 include configurable blocking, the automatic creation of posture findings from runtime incidents, and more. https://www.akamai.com/blog/security/2024/dec/major-enhancements-akamai-api-security-q4-2024 Stas Neyman https://www.akamai.com/blog/security/2024/dec/major-enhancements-akamai-api-security-q4-2024 Fri, 20 Dec 2024 14:00:00 UTC Protecting Unmanaged Devices with Armis and Akamai https://www.akamai.com/blog/security/2024/dec/protecting-unmanaged-devices-with-armis-and-akamai Jacob Abrams https://www.akamai.com/blog/security/2024/dec/protecting-unmanaged-devices-with-armis-and-akamai Fri, 20 Dec 2024 13:00:00 UTC DigiEver Fix That IoT Thing! https://www.akamai.com/blog/security-research/2024/dec/digiever-fix-that-iot-thing Kyle Lefton, Daniel Messing & Larry Cashdollar https://www.akamai.com/blog/security-research/2024/dec/digiever-fix-that-iot-thing Thu, 19 Dec 2024 15:00:00 UTC AVANT and Akamai: Solving Security Challenges for Financial Services Read why AVANT’s Trusted Advisors recommend to their clients Akamai’s award-winning solutions in cloud computing, cybersecurity, and application protection. https://www.akamai.com/blog/partners/2024/dec/avant-akamai-solving-security-challenges-financial-services Kathleen Moore https://www.akamai.com/blog/partners/2024/dec/avant-akamai-solving-security-challenges-financial-services Thu, 19 Dec 2024 14:00:00 UTC The Benefits of Serverless Computing Architecture https://www.akamai.com/blog/cloud/2024/dec/the-benefits-of-serverless-computing-architecture Mike Elissen https://www.akamai.com/blog/cloud/2024/dec/the-benefits-of-serverless-computing-architecture Wed, 18 Dec 2024 13:00:00 UTC Empowering Women in Cybersecurity: Lessons from the FS-ISAC Women’s Networking Event Discover strategies for empowering women in cybersecurity, gleaned from lessons learned at the 2024 FS-ISAC women’s networking event. https://www.akamai.com/blog/news/2024/dec/lessons-from-the-fs-isac-womens-networking-event Lisa Beegle https://www.akamai.com/blog/news/2024/dec/lessons-from-the-fs-isac-womens-networking-event Tue, 17 Dec 2024 14:00:00 UTC Akamai’s Perspective on December’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/dec/akamai-perspective-patch-tuesday-december-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/dec/akamai-perspective-patch-tuesday-december-2024 Fri, 13 Dec 2024 14:00:00 UTC Akamai Technical Academy and Coursera: A Year of STEM Education Success https://www.akamai.com/blog/culture/2024/dec/a-year-of-stem-education-success Carrie Bergman, Jamie Ng & Shirley Jiang https://www.akamai.com/blog/culture/2024/dec/a-year-of-stem-education-success Fri, 13 Dec 2024 13:00:00 UTC What To Do When You’re Under a DDoS Attack: A Guide to Action https://www.akamai.com/blog/security/2024/dec/what-to-do-under-a-ddos-attack Sven Dummer & Sandeep Rath https://www.akamai.com/blog/security/2024/dec/what-to-do-under-a-ddos-attack Thu, 12 Dec 2024 13:00:00 UTC Teaching an Old Framework New Tricks: The Dangers of Windows UI Automation https://www.akamai.com/blog/security-research/2024/dec/windows-ui-automation-attack-technique-evades-edr Tomer Peled https://www.akamai.com/blog/security-research/2024/dec/windows-ui-automation-attack-technique-evades-edr Wed, 11 Dec 2024 14:00:00 UTC Supporting Cloud Growth in Japan: Tokyo Expansion https://www.akamai.com/blog/developers/2024/dec/tokyo-core-compute-region-expansion Maddie Presland https://www.akamai.com/blog/developers/2024/dec/tokyo-core-compute-region-expansion Wed, 11 Dec 2024 10:20:00 UTC Bot Reporting: 4 Key Differences to Consider Get a detailed look at Akamai’s bot reporting and the important advantages it offers to organizations that are looking to improve their bot defenses. https://www.akamai.com/blog/security/2024/dec/bot-reporting-4-key-differences-to-consider Christine Ferrusi Ross https://www.akamai.com/blog/security/2024/dec/bot-reporting-4-key-differences-to-consider Tue, 10 Dec 2024 17:00:00 UTC What You Should Know About BreakingWAF BreakingWAF is not a vulnerability stemming from WAF solutions — it is a misconfiguration vulnerability that can be addressed during customer onboarding. https://www.akamai.com/blog/security-research/2024/dec/what-you-should-know-about-breakingwaf Akamai Security Research https://www.akamai.com/blog/security-research/2024/dec/what-you-should-know-about-breakingwaf Tue, 10 Dec 2024 12:15:00 UTC The Economic Impact of Akamai Guardicore Segmentation https://www.akamai.com/blog/security/2024/nov/the-economic-impact-of-akamai-guardicore-segmentation Jacob Abrams https://www.akamai.com/blog/security/2024/nov/the-economic-impact-of-akamai-guardicore-segmentation Mon, 09 Dec 2024 13:00:00 UTC Akamai IP Accelerator: A Holistic Approach to Security and Performance https://www.akamai.com/blog/security/2024/dec/a-holistic-approach-to-security-and-performance Nitin Singla & Sandra Murphy https://www.akamai.com/blog/security/2024/dec/a-holistic-approach-to-security-and-performance Fri, 06 Dec 2024 13:00:00 UTC How Holiday Season Traditions Affect Internet Traffic Trends https://www.akamai.com/blog/edge/2024/dec/how-holiday-season-traditions-affect-internet-traffic-trends Josh Johnson https://www.akamai.com/blog/edge/2024/dec/how-holiday-season-traditions-affect-internet-traffic-trends Thu, 05 Dec 2024 13:00:00 UTC Pad Credit Card Info to Protect Customers' Wallets We take a look at a recently-assessed API, to see how it avoided the problem that helped the Allies beat the Axis powers in World War II. https://www.akamai.com/blog/developers/2024/dec/pad-credit-card-information-to-protect-your-customers-wallets Alex Leung https://www.akamai.com/blog/developers/2024/dec/pad-credit-card-information-to-protect-your-customers-wallets Thu, 05 Dec 2024 10:20:00 UTC Resilient by Design: Akamai’s Data-Driven Path to Climate Adaptation Learn how Akamai is using the challenges of climate change as opportunities for innovation and progress to weave climate resilience into our long-term strategy. https://www.akamai.com/blog/sustainability/2024/nov/resilient-by-design-akamais-data-driven-path-to-climate-adaptation Mike Mattera https://www.akamai.com/blog/sustainability/2024/nov/resilient-by-design-akamais-data-driven-path-to-climate-adaptation Wed, 04 Dec 2024 14:00:00 UTC The Year in Review 2024: Today’s Insights, Tomorrow’s Outlook https://www.akamai.com/blog/security-research/2024/dec/2024-december-today-insights-tomorrow-outlook-2025 Mitch Mayne https://www.akamai.com/blog/security-research/2024/dec/2024-december-today-insights-tomorrow-outlook-2025 Tue, 03 Dec 2024 11:20:00 UTC Just Right: New GPUs Now Available https://www.akamai.com/blog/developers/2024/dec/new-gpus-nvidia-rtx-4000-ada-generation Maddie Presland https://www.akamai.com/blog/developers/2024/dec/new-gpus-nvidia-rtx-4000-ada-generation Tue, 03 Dec 2024 10:20:00 UTC Battling the Emotional Toxicity Within Games: How to Digitally Thrive https://www.akamai.com/blog/security-research/2024/oct/mental-health-and-financial-strain-hidden-costs-of-games Tricia Howard https://www.akamai.com/blog/security-research/2024/oct/mental-health-and-financial-strain-hidden-costs-of-games Mon, 02 Dec 2024 14:00:00 UTC The Shift to the Edge Continues to Accelerate The IDC MarketScape report evaluated providers in the edge delivery services category. Read why Akamai was chosen as a Leader. https://www.akamai.com/blog/edge/2024/nov/the-shift-to-the-edge-continues-to-accelerate Ari Weil https://www.akamai.com/blog/edge/2024/nov/the-shift-to-the-edge-continues-to-accelerate Mon, 02 Dec 2024 13:00:00 UTC What’s New for Developers: November 2024 As the holiday season approaches and we bid farewell to another year, there’s no slowing down in developer content and releases. https://www.akamai.com/blog/developers/2024/nov/whats-new-for-developers-november-2024 Jessica Capuano Mora https://www.akamai.com/blog/developers/2024/nov/whats-new-for-developers-november-2024 Mon, 02 Dec 2024 11:20:00 UTC Large Loss of Money? Choose Your LLM Security Solution Wisely. https://www.akamai.com/blog/security/2024/nov/llm-security-financial-impact Maxim Zavodchik, Alex Marks-Bluth & Neeraj Pradeep https://www.akamai.com/blog/security/2024/nov/llm-security-financial-impact Wed, 27 Nov 2024 14:00:00 UTC Akamai Leads the Way in API Security: GigaOm Radar for API Security Report https://www.akamai.com/blog/news/2024/nov/akamai-leads-the-way-in-api-security-gigaom-radar Stas Neyman https://www.akamai.com/blog/news/2024/nov/akamai-leads-the-way-in-api-security-gigaom-radar Wed, 27 Nov 2024 13:00:00 UTC Frankfurt Expansion Now Available for All Customers Over the past year, Akamai’s core and distributed cloud architecture has grown significantly to better serve our customers requiring greater availability, lower latency, and more freedom of choice when it comes to how and where they run applications and workloads. https://www.akamai.com/blog/developers/2024/nov/frankfurt-core-compute-region-expansion Maddie Presland https://www.akamai.com/blog/developers/2024/nov/frankfurt-core-compute-region-expansion Tue, 26 Nov 2024 14:00:00 UTC Keep Your Tech Flame Alive: Akamai Trailblazer Agata Cupriak https://www.akamai.com/blog/culture/2024/nov/keep-your-tech-flame-alive-agata-cupriak Akamai FLAME Team https://www.akamai.com/blog/culture/2024/nov/keep-your-tech-flame-alive-agata-cupriak Tue, 26 Nov 2024 13:00:00 UTC Experiencing Verge for the First Time https://www.akamai.com/blog/sustainability/2024/nov/experiencing-verge-for-the-first-time Owen Mattison https://www.akamai.com/blog/sustainability/2024/nov/experiencing-verge-for-the-first-time Mon, 25 Nov 2024 07:00:00 UTC The Secret to Reducing Compliance Risk in Financial Services: Visibility Enhanced visibility is key to managing compliance risk in financial services. Discover how a unified view can improve resilience, protect data, and build trust. https://www.akamai.com/blog/security/2024/nov/secret-to-reducing-compliance-risk-financial-services-visibility Steve Winterfeld https://www.akamai.com/blog/security/2024/nov/secret-to-reducing-compliance-risk-financial-services-visibility Fri, 22 Nov 2024 20:00:00 UTC Managing AI Bots as Part of Your Overall Bot Management Strategy Learn about the potential impacts of AI bots and the importance of having a holistic bot management strategy. https://www.akamai.com/blog/security/2024/nov/managing-ai-bots-part-overall-bot-management-strategy Ilia Bromberg & Christine Ferrusi Ross https://www.akamai.com/blog/security/2024/nov/managing-ai-bots-part-overall-bot-management-strategy Wed, 20 Nov 2024 20:00:00 UTC Segmenting Hybrid Clouds: What to Look for in a Solution Learn how to select a microsegmentation solution to fortify your organization’s cloud security strategies and protect your assets across multiple public clouds. https://www.akamai.com/blog/security/2024/nov/segmenting-hybrid-clouds-what-to-look-for-in-solution Jacob Abrams https://www.akamai.com/blog/security/2024/nov/segmenting-hybrid-clouds-what-to-look-for-in-solution Tue, 19 Nov 2024 14:00:00 UTC Everything You Need to Know About Edge Networks https://www.akamai.com/blog/edge/2024/nov/everything-you-need-to-know-about-edge-networks Mike Elissen https://www.akamai.com/blog/edge/2024/nov/everything-you-need-to-know-about-edge-networks Tue, 19 Nov 2024 13:00:00 UTC More Power at the Edge: Introducing Distributed Compute Regions For edge-native applications, performance is closely tied to the location of cloud services. https://www.akamai.com/blog/developers/2024/nov/introducing-distributed-compute-regions Maddie Presland https://www.akamai.com/blog/developers/2024/nov/introducing-distributed-compute-regions Mon, 18 Nov 2024 14:00:00 UTC Five Ways to Prevent and Protect Against Ransomware Attacks https://www.akamai.com/blog/security/2024/nov/five-ways-to-protect-against-ransomware-attacks Jacob Abrams https://www.akamai.com/blog/security/2024/nov/five-ways-to-protect-against-ransomware-attacks Mon, 18 Nov 2024 14:00:00 UTC Akamai’s Perspective on November’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/nov/akamai-perspective-patch-tuesday-november-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/nov/akamai-perspective-patch-tuesday-november-2024 Fri, 15 Nov 2024 14:00:00 UTC Akamai Managed Database Services: Powered by Aiven Akamai has partnered with Aiven, a leading global managed database provider, to offer customers a streamlined way to offload the complexities of database setup, configuration, patching, backups, and scaling. https://www.akamai.com/blog/developers/2024/nov/akamai-managed-database-services-powered-by-aiven Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2024/nov/akamai-managed-database-services-powered-by-aiven Thu, 14 Nov 2024 14:00:00 UTC The Definitive Guide to Linux Process Injection https://www.akamai.com/blog/security-research/2024/nov/the-definitive-guide-to-linux-process-injection Ori David https://www.akamai.com/blog/security-research/2024/nov/the-definitive-guide-to-linux-process-injection Thu, 14 Nov 2024 14:00:00 UTC Study Reveals Security Teams Feel the Impact of Rising API Threats API abuse is increasing at an alarming rate. Read this post to learn the four areas of focus for organizations that are seeking to protect their APIs. https://www.akamai.com/blog/security/2024/nov/study-reveals-security-teams-feel-impact-rising-api-threats Rupesh Chokshi https://www.akamai.com/blog/security/2024/nov/study-reveals-security-teams-feel-impact-rising-api-threats Wed, 13 Nov 2024 11:30:00 UTC Getting Started with Akamai App Platform Step-by-step instructions to provision a Kubernetes cluster with Akamai App Platform enabled and then build, deploy and publicly expose an application. https://www.akamai.com/blog/developers/2024/nov/getting-started-with-akamai-app-platform Sander Rodenhuis (Sander Rodenhuis) https://www.akamai.com/blog/developers/2024/nov/getting-started-with-akamai-app-platform Wed, 13 Nov 2024 11:20:00 UTC Introducing the Akamai App Platform Over the past decade, developers have been forced to choose between two evils: either accept Big Cloud’s complexity, costs, and lock-in, or struggle and lose precious time building everything from scratch. Like code itself, it was a binary decision. https://www.akamai.com/blog/developers/2024/nov/introducing-the-akamai-app-platform Ari Weil https://www.akamai.com/blog/developers/2024/nov/introducing-the-akamai-app-platform Tue, 12 Nov 2024 14:00:00 UTC Finding Solutions to Meet PCI DSS v4.0 Requirements 6.4.3 and 11.6.1 https://www.akamai.com/blog/security/2024/nov/meet-pci-dss-v40-requirements Boris Kirzner https://www.akamai.com/blog/security/2024/nov/meet-pci-dss-v40-requirements Fri, 08 Nov 2024 14:00:00 UTC Akamai's Behavioral DDoS Engine: A Breakthrough in Modern DDoS Mitigation As digital infrastructure grows, so do the threats posed by DDoS attacks. See how the Akamai Behavioral DDoS Engine can keep your business online. https://www.akamai.com/blog/security/2024/nov/akamais-behavioral-ddos-engine-breakthrough-in-modern-ddos-mitigation Aseem Ahmed & Abdeslam Bella https://www.akamai.com/blog/security/2024/nov/akamais-behavioral-ddos-engine-breakthrough-in-modern-ddos-mitigation Thu, 07 Nov 2024 14:00:00 UTC Rails Without Derails: Thwarting Code Injection Attacks https://www.akamai.com/blog/security/2024/oct/ruby-on-rails-waf-code-injection-protection Sam Tinklenberg, Maxim Zavodchik & Aparna Mandal https://www.akamai.com/blog/security/2024/oct/ruby-on-rails-waf-code-injection-protection Wed, 06 Nov 2024 13:00:00 UTC Exploring Artificial Intelligence: Is AI Overhyped? Dive into AI technologies like inference, deep learning, and generative models to learn how LLMs and AI are transforming cybersecurity and tech industries. https://www.akamai.com/blog/security/2024/nov/exploring-artificial-intelligence-is-ai-overhyped Berk Veral https://www.akamai.com/blog/security/2024/nov/exploring-artificial-intelligence-is-ai-overhyped Mon, 04 Nov 2024 14:00:00 UTC How Ransomware Is Delivered and How to Prevent Attacks https://www.akamai.com/blog/security/2024/nov/how-ransomware-is-delivered-prevent-attacks Jacob Abrams https://www.akamai.com/blog/security/2024/nov/how-ransomware-is-delivered-prevent-attacks Fri, 01 Nov 2024 07:00:00 UTC In the Dark about Shadow APIs? I’m often asked about shadow APIs and shadow API parameters—even by people with a lot of experience in the API development space. https://www.akamai.com/blog/developers/2024/oct/in-the-dark-about-shadow-apis Alex Leung https://www.akamai.com/blog/developers/2024/oct/in-the-dark-about-shadow-apis Thu, 31 Oct 2024 13:00:00 UTC 6 Steps for Cyber Resilience During the 2024 U.S. Presidential Election Learn about the risks to service availability during the 2024 U.S. presidential election — and the six steps you can take now to ensure your cyber resilience. https://www.akamai.com/blog/security/2024/oct/6-steps-cyber-resilience-during-2024-us-presidential-election Ryan Gao https://www.akamai.com/blog/security/2024/oct/6-steps-cyber-resilience-during-2024-us-presidential-election Wed, 30 Oct 2024 13:00:00 UTC Beyond the Login — Keeping Accounts Secure with Lifecycle Protection https://www.akamai.com/blog/security/2024/oct/keeping-accounts-secure-with-lifecycle-protection Emily Lyons https://www.akamai.com/blog/security/2024/oct/keeping-accounts-secure-with-lifecycle-protection Tue, 29 Oct 2024 10:00:00 UTC Bad Bots: 6 Common Bot Attacks and Why They Happen Learn about the different types of bot attacks, why they happen, and how to protect your website from these threats with effective bot mitigation strategies. https://www.akamai.com/blog/security/2024/oct/bad-bots-6-common-bot-attacks-and-why-they-happen Christine Ferrusi Ross https://www.akamai.com/blog/security/2024/oct/bad-bots-6-common-bot-attacks-and-why-they-happen Mon, 28 Oct 2024 11:00:00 UTC Scrub EXIF Image Data in Your DevOps Pipeline In this post, we’ll go over why you need to scrub EXIF image data and how to integrate this process into your DevOps pipeline. https://www.akamai.com/blog/developers/2024/oct/scrub-exif-image-data-in-your-devops-pipeline Alex Leung https://www.akamai.com/blog/developers/2024/oct/scrub-exif-image-data-in-your-devops-pipeline Thu, 24 Oct 2024 13:00:00 UTC Improve SEO with Prerender.io In this post, we’ll look at how prerendering services from Prerender.io can help you overcome SEO obstacles when using these frameworks. https://www.akamai.com/blog/developers/2024/oct/improve-seo-with-prerender-io Tim Vereecke https://www.akamai.com/blog/developers/2024/oct/improve-seo-with-prerender-io Tue, 22 Oct 2024 13:00:00 UTC Loose Lips Can Sink Websites Too When we think about keeping websites safe, we often imagine complex firewalls, multi-layered defenses, and robust encryption. https://www.akamai.com/blog/developers/2024/oct/loose-lips-can-sink-websites-too Alex Leung https://www.akamai.com/blog/developers/2024/oct/loose-lips-can-sink-websites-too Mon, 21 Oct 2024 13:00:00 UTC How In-Person Meetings Fast-Tracked Our vPPA Negotiations in Europe In-person interactions can build trust, foster collaboration, and achieve efficiency — especially for complex negotiations — even in the post-pandemic world. https://www.akamai.com/blog/sustainability/2024/oct/how-in-person-meetings-fast-tracked-vppa-negotiations-europe Mike Mattera https://www.akamai.com/blog/sustainability/2024/oct/how-in-person-meetings-fast-tracked-vppa-negotiations-europe Mon, 21 Oct 2024 13:00:00 UTC Call and Register — Relay Attack on WinReg RPC Client https://www.akamai.com/blog/security-research/2024/oct/winreg-relay-vulnerability Stiv Kupchik https://www.akamai.com/blog/security-research/2024/oct/winreg-relay-vulnerability Sat, 19 Oct 2024 15:00:00 UTC Pay Attention to Your Non-Production Subdomains It’s common for security teams to focus their best efforts on an organization’s primary production domain. https://www.akamai.com/blog/developers/2024/oct/pay-attention-to-your-non-production-subdomains Alex Leung https://www.akamai.com/blog/developers/2024/oct/pay-attention-to-your-non-production-subdomains Thu, 17 Oct 2024 13:00:00 UTC Why Modern Layer 7 DDoS Protections Are Crucial for Web Security in 2024 A new Akamai white paper explains why you need to prioritize modern Layer 7 DDoS protection — and details how you can guide your security efforts. https://www.akamai.com/blog/security/2024/oct/why-modern-layer-7-ddos-protections-crucial-web-security-2024 Danielle Walter https://www.akamai.com/blog/security/2024/oct/why-modern-layer-7-ddos-protections-crucial-web-security-2024 Thu, 17 Oct 2024 13:00:00 UTC Simplify Security and Enhance WAAP with Detection and Control in the AI Era Simplify operations without sacrificing control. Read how Akamai delivers a robust defense with innovations like Behavioral DDoS Engine and AI Assistant. https://www.akamai.com/blog/security/2024/oct/simplify-security-enhance-waap-with-detection-control-ai-era Danielle Walter https://www.akamai.com/blog/security/2024/oct/simplify-security-enhance-waap-with-detection-control-ai-era Wed, 16 Oct 2024 13:00:00 UTC What’s New for Developers: October 2024 In addition to several articles that help you keep your applications and websites safe, we’re sharing news on the latest Akamai PowerShell release, instructions for building a NAT Gateway in a VPC, new docs for migrating to Linode Object Storage, and more. https://www.akamai.com/blog/developers/2024/oct/whats-new-for-developers-october-2024 Jessica Capuano Mora https://www.akamai.com/blog/developers/2024/oct/whats-new-for-developers-october-2024 Wed, 16 Oct 2024 10:20:00 UTC Anonymous Sudan Takedown: Akamai's Role https://www.akamai.com/blog/security-research/2024/oct/anonymous-sudan-takedown-akamai-role-ddos Akamai SIRT https://www.akamai.com/blog/security-research/2024/oct/anonymous-sudan-takedown-akamai-role-ddos Wed, 16 Oct 2024 05:00:00 UTC Akamai’s Perspective on October’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/oct/akamai-perspective-patch-tuesday-october-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/oct/akamai-perspective-patch-tuesday-october-2024 Fri, 11 Oct 2024 14:00:00 UTC In-memory Data Management Caching Tools: A Guide to the Best Options In-memory data management caching tools store frequently accessed data in memory, which significantly improves performance by reducing how often the database needs to be accessed. https://www.akamai.com/blog/developers/2024/oct/in-memory-data-management-caching-tools-a-guide-to-the-best-options Akamai https://www.akamai.com/blog/developers/2024/oct/in-memory-data-management-caching-tools-a-guide-to-the-best-options Thu, 10 Oct 2024 19:00:00 UTC How Americaneagle.com Thwarted a Massive DNS DDoS Attack with Akamai Shield NS53 https://www.akamai.com/blog/security/2024/oct/american-eagle-thwarted-massive-dns-ddos-attack Sandeep Rath https://www.akamai.com/blog/security/2024/oct/american-eagle-thwarted-massive-dns-ddos-attack Thu, 10 Oct 2024 13:00:00 UTC Beyond the Edge: Complementing WAAP with Always-On API Security Learn best practices for API security — and explore why WAAP on its own isn’t enough https://www.akamai.com/blog/security/2024/oct/beyond-edge-complementing-waap-always-on-api-security Edward Roberts https://www.akamai.com/blog/security/2024/oct/beyond-edge-complementing-waap-always-on-api-security Thu, 10 Oct 2024 13:00:00 UTC Strengthening DOD Cybersecurity: The Journey to Zero Trust by 2027 https://www.akamai.com/blog/security/2024/aug/strengthening-dod-cybersecurity-the-journey-to-zero-trust-by-2027 Dayna Jackson https://www.akamai.com/blog/security/2024/aug/strengthening-dod-cybersecurity-the-journey-to-zero-trust-by-2027 Wed, 09 Oct 2024 13:00:00 UTC Migrating from Client-Side to Server-Side Adaptive Bitrate Streaming Streaming platforms scale to accommodate millions of concurrent viewers across diverse devices and network conditions, making efficient adaptive bitrate (ABR) streaming essential. https://www.akamai.com/blog/developers/2024/oct/migrating-from-client-side-to-server-side-adaptive-bitrate-streaming Talia Nassi https://www.akamai.com/blog/developers/2024/oct/migrating-from-client-side-to-server-side-adaptive-bitrate-streaming Tue, 08 Oct 2024 13:00:00 UTC How to Use ITSM, SIEM, and SOAR to Remediate API Attacks https://www.akamai.com/blog/security/2024/oct/how-to-use-itsm-siem-and-soar-to-remediate-api-attacks John Natale https://www.akamai.com/blog/security/2024/oct/how-to-use-itsm-siem-and-soar-to-remediate-api-attacks Tue, 08 Oct 2024 13:00:00 UTC Akamai: Supporting Chinese Enterprises in Global Expansion China is a cornerstone of Akamai’s operations and we view ourselves as partners with Chinese businesses as they navigate the complexities of a global economy. https://www.akamai.com/blog/news/2025/jan/akamai-supporting-chinese-enterprises-global-expansion Sean Li https://www.akamai.com/blog/news/2025/jan/akamai-supporting-chinese-enterprises-global-expansion Fri, 04 Oct 2024 13:00:00 UTC Cutting Latency, Not Security https://www.akamai.com/blog/developers/2024/oct/cutting-latency-not-security Philip McGuinness https://www.akamai.com/blog/developers/2024/oct/cutting-latency-not-security Thu, 03 Oct 2024 13:00:00 UTC Increased Capacity in Asia: Mumbai and Singapore Expansions Now Available We’re continuing to expand our cloud computing footprint and capacity with both new core compute regions and expansions of popular regions. https://www.akamai.com/blog/developers/2024/oct/asia-core-compute-region-expansions-singapore-mumbai Maddie Presland https://www.akamai.com/blog/developers/2024/oct/asia-core-compute-region-expansions-singapore-mumbai Thu, 03 Oct 2024 13:00:00 UTC Why Fuzzing Isn’t Enough to Test Your APIs for Security Issues Learn about API testing best practices and find out why fuzzing has limitations for enterprises that need API security. https://www.akamai.com/blog/security/2024/oct/why-fuzzing-isnt-enough-to-test-your-apis-for-security-issues John Natale https://www.akamai.com/blog/security/2024/oct/why-fuzzing-isnt-enough-to-test-your-apis-for-security-issues Thu, 03 Oct 2024 13:00:00 UTC Kubernetes the Hard Way https://www.akamai.com/blog/developers/2024/oct/kubernetes-the-hard-way Jorge Gaona https://www.akamai.com/blog/developers/2024/oct/kubernetes-the-hard-way Wed, 02 Oct 2024 13:00:00 UTC Advancing Federal Cybersecurity With Zero Trust Principles https://www.akamai.com/blog/security/2024/oct/advancing-federal-cybersecurity-with-zero-trust-principles Dayna Jackson https://www.akamai.com/blog/security/2024/oct/advancing-federal-cybersecurity-with-zero-trust-principles Wed, 02 Oct 2024 13:00:00 UTC Introducing an Effortless Way to Deploy Akamai API Security https://www.akamai.com/blog/security/2024/oct/introducing-effortless-way-deploy-akamai-api-security Stas Neyman https://www.akamai.com/blog/security/2024/oct/introducing-effortless-way-deploy-akamai-api-security Tue, 01 Oct 2024 13:00:00 UTC When CUPS Runneth Over: The Threat of DDoS https://www.akamai.com/blog/security-research/2024/oct/october-cups-ddos-threat Larry Cashdollar, Kyle Lefton & Chad Seaman https://www.akamai.com/blog/security-research/2024/oct/october-cups-ddos-threat Tue, 01 Oct 2024 11:00:00 UTC Our New Carbon Calculator Report Supports 400 Days of Data The new Carbon Calculator is supported by the latest reporting API framework, improves performance, and allows customers to monitor up to 400 days of data. https://www.akamai.com/blog/sustainability/2024/sep/new-carbon-calculator-report-supports-400-days-data Sudipta Roy https://www.akamai.com/blog/sustainability/2024/sep/new-carbon-calculator-report-supports-400-days-data Mon, 30 Sep 2024 13:00:00 UTC Too Good To Be True? For True Value, Look Beyond Vendors’ Sales Claims https://www.akamai.com/blog/performance/2024/sep/look-beyond-vendors-sales-claims Mimi An https://www.akamai.com/blog/performance/2024/sep/look-beyond-vendors-sales-claims Fri, 27 Sep 2024 13:00:00 UTC Keep Your Tech Flame Alive: Akamai Trailblazer Sabine A. Sitterli https://www.akamai.com/blog/culture/2024/sep/keep-your-tech-flame-alive-akamai-trailblazer-sabine-sitterli Akamai FLAME Team https://www.akamai.com/blog/culture/2024/sep/keep-your-tech-flame-alive-akamai-trailblazer-sabine-sitterli Thu, 26 Sep 2024 13:00:00 UTC End-to-End Security for APIs: From Development Through Retirement https://www.akamai.com/blog/security/2024/sep/end-to-end-security-for-apis-from-development-through-retirement Steven Duckaert https://www.akamai.com/blog/security/2024/sep/end-to-end-security-for-apis-from-development-through-retirement Thu, 26 Sep 2024 11:00:00 UTC Enterprise Data Ingestion with Low Latency: Akamai's Proven Solutions for Financial Institutions https://www.akamai.com/blog/developers/2024/sep/enterprise-data-ingestion-with-low-latency-akamais-proven-solutions-for-financial-institutions Talia Nassi https://www.akamai.com/blog/developers/2024/sep/enterprise-data-ingestion-with-low-latency-akamais-proven-solutions-for-financial-institutions Wed, 25 Sep 2024 13:00:00 UTC Optimizing Web Usability with Text Fragments https://www.akamai.com/blog/developers/2024/sep/optimizing-web-usability-with-text-fragments Linode (Linode) https://www.akamai.com/blog/developers/2024/sep/optimizing-web-usability-with-text-fragments Tue, 24 Sep 2024 13:00:00 UTC What’s New for Developers: September 2024 https://www.akamai.com/blog/developers/2024/sep/whats-new-for-developers-september-2024 Jessica Capuano Mora https://www.akamai.com/blog/developers/2024/sep/whats-new-for-developers-september-2024 Fri, 20 Sep 2024 13:00:00 UTC Maximizing Financial Performance: How Financial Institutions Can Achieve Low Latency and High Throughput with NATS.io and Akamai https://www.akamai.com/blog/developers/2024/sep/maximizing-financial-performance-how-financial-institutions-can-achieve-low-latency-and-high-throughput-with-nats-io-and-akamai Talia Nassi https://www.akamai.com/blog/developers/2024/sep/maximizing-financial-performance-how-financial-institutions-can-achieve-low-latency-and-high-throughput-with-nats-io-and-akamai Thu, 19 Sep 2024 13:00:00 UTC How to Migrate Your Ecommerce Web Hosting Stack From OpenStack to Linode https://www.akamai.com/blog/developers/2024/sep/how-to-migrate-your-ecommerce-web-hosting-stack-from-openstack-to-linode Talia Nassi https://www.akamai.com/blog/developers/2024/sep/how-to-migrate-your-ecommerce-web-hosting-stack-from-openstack-to-linode Wed, 18 Sep 2024 13:00:00 UTC Pointless May Not Be Harmless: The Story of a Login Page with a Blank Security Question https://www.akamai.com/blog/developers/2024/sep/pointless-may-not-be-harmless-login-page-security-vulnerabilities Alex Leung https://www.akamai.com/blog/developers/2024/sep/pointless-may-not-be-harmless-login-page-security-vulnerabilities Tue, 17 Sep 2024 13:00:00 UTC Beware the Rising Tide: Financial Services Is Awash in Attacks https://www.akamai.com/blog/security-research/2024/sep/financial-services-is-awash-in-attacks Mitch Mayne https://www.akamai.com/blog/security-research/2024/sep/financial-services-is-awash-in-attacks Tue, 17 Sep 2024 10:30:00 UTC Modernizing Enterprise Security for An Application-Centric World https://www.akamai.com/blog/security/2024/sep/modernizing-enterprise-security-application-centric-world Mani Sundaram https://www.akamai.com/blog/security/2024/sep/modernizing-enterprise-security-application-centric-world Mon, 16 Sep 2024 13:00:00 UTC Akamai’s Perspective on September’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/sep/akamai-perspective-patch-tuesday-september-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/sep/akamai-perspective-patch-tuesday-september-2024 Fri, 13 Sep 2024 14:00:00 UTC Akamai Prevents DDoS Attack on Major U.S. Customer https://www.akamai.com/blog/security/2024/sep/akamai-prevents-record-breaking-ddos-attack-major-us-customer Sandeep Rath & Craig Sparling https://www.akamai.com/blog/security/2024/sep/akamai-prevents-record-breaking-ddos-attack-major-us-customer Fri, 13 Sep 2024 13:00:00 UTC How Distributed Cloud Computing Meets Modern User Demand Learn why distributed cloud computing is essential to meet user demand for highly customized, secure services. https://www.akamai.com/blog/cloud/2024/sep/how-distributed-cloud-computing-meets-modern-user-demand Ari Weil https://www.akamai.com/blog/cloud/2024/sep/how-distributed-cloud-computing-meets-modern-user-demand Thu, 12 Sep 2024 13:00:00 UTC How Distributed Cloud Computing Meets Modern User Demand https://www.akamai.com/blog/developers/2024/sep/how-distributed-cloud-computing-meets-modern-user-demand Ari Weil https://www.akamai.com/blog/developers/2024/sep/how-distributed-cloud-computing-meets-modern-user-demand Thu, 12 Sep 2024 13:00:00 UTC How to Build a NAT Gateway in a VPC with Linode https://www.akamai.com/blog/developers/2024/sep/how-to-build-a-nat-gateway-in-a-vpc-with-linode Talia Nassi https://www.akamai.com/blog/developers/2024/sep/how-to-build-a-nat-gateway-in-a-vpc-with-linode Thu, 12 Sep 2024 13:00:00 UTC Security in Your DevOps Pipeline https://www.akamai.com/blog/developers/2024/sep/security-in-your-devops-pipeline Alex Leung https://www.akamai.com/blog/developers/2024/sep/security-in-your-devops-pipeline Tue, 10 Sep 2024 13:00:00 UTC How to Detect Suspicious API Traffic https://www.akamai.com/blog/security/2024/sep/how-to-detect-suspicious-api-traffic John Natale https://www.akamai.com/blog/security/2024/sep/how-to-detect-suspicious-api-traffic Tue, 10 Sep 2024 13:00:00 UTC How to Reduce API Sprawl with API Discovery https://www.akamai.com/blog/security/2024/sep/reduce-api-sprawl-with-api-discovery John Natale https://www.akamai.com/blog/security/2024/sep/reduce-api-sprawl-with-api-discovery Mon, 09 Sep 2024 13:00:00 UTC 5 Reasons Why You Need API Discovery https://www.akamai.com/blog/security/2024/aug/5-reasons-why-you-need-api-discovery John Natale https://www.akamai.com/blog/security/2024/aug/5-reasons-why-you-need-api-discovery Thu, 05 Sep 2024 13:00:00 UTC Future-Proofing Legacy Media Workflows with Akamai Object Storage https://www.akamai.com/blog/developers/2024/sep/future-proofing-legacy-media-workflows-with-akamai-object-storage Peter Sari (Peter Sari) https://www.akamai.com/blog/developers/2024/sep/future-proofing-legacy-media-workflows-with-akamai-object-storage Wed, 04 Sep 2024 10:20:00 UTC How to Implement Zero Trust on a Budget https://www.akamai.com/blog/security/2024/sep/implement-zero-trust-on-a-budget Dayna Jackson https://www.akamai.com/blog/security/2024/sep/implement-zero-trust-on-a-budget Tue, 03 Sep 2024 13:00:00 UTC The Dangers of the Never-Expiring JWT: Hidden Security Vulnerabilities https://www.akamai.com/blog/developers/2024/sep/the-dangers-of-the-never-expiring-jwt Alex Leung https://www.akamai.com/blog/developers/2024/sep/the-dangers-of-the-never-expiring-jwt Tue, 03 Sep 2024 10:20:00 UTC Best Practices to Help Meet PCI DSS v4.0 API Security Compliance https://www.akamai.com/blog/security/2024/aug/meet-pci-dss-v40-api-security-compliance John Natale https://www.akamai.com/blog/security/2024/aug/meet-pci-dss-v40-api-security-compliance Fri, 30 Aug 2024 13:00:00 UTC Inside the NIST Cybersecurity Framework 2.0 and API Security https://www.akamai.com/blog/security/2024/aug/nist-cybersecurity-framework-and-api-security Anurag Anuj https://www.akamai.com/blog/security/2024/aug/nist-cybersecurity-framework-and-api-security Thu, 29 Aug 2024 13:00:00 UTC Leverage Edge Computing for Low-Latency Live Streaming Services https://www.akamai.com/blog/developers/2024/aug/leverage-edge-computing-for-low-latency-live-streaming-services Talia Nassi https://www.akamai.com/blog/developers/2024/aug/leverage-edge-computing-for-low-latency-live-streaming-services Thu, 29 Aug 2024 10:20:00 UTC Announcing Couchbase Enterprise Server Cluster on Our One-Click App Marketplace https://www.akamai.com/blog/developers/2024/aug/announcing-couchbase-enterprise-server-cluster-on-our-one-click-app-marketplace Travis Baka https://www.akamai.com/blog/developers/2024/aug/announcing-couchbase-enterprise-server-cluster-on-our-one-click-app-marketplace Wed, 28 Aug 2024 10:20:00 UTC Akamai Named a Leader in The Forrester Wave™: Microsegmentation Solutions, Q3 2024 https://www.akamai.com/blog/security/2024/aug/2024-akamai-named-a-leader-in-the-forrester-wave Ravit Greitser https://www.akamai.com/blog/security/2024/aug/2024-akamai-named-a-leader-in-the-forrester-wave Wed, 28 Aug 2024 07:00:00 UTC Beware the Unpatchable: Corona Mirai Botnet Spreads via Zero-Day https://www.akamai.com/blog/security-research/2024/aug/corona-mirai-botnet-infects-zero-day-sirt Kyle Lefton, Larry Cashdollar & Aline Eliovich https://www.akamai.com/blog/security-research/2024/aug/corona-mirai-botnet-infects-zero-day-sirt Wed, 28 Aug 2024 05:00:00 UTC Faster Page Loads with the Speculation Rules API https://www.akamai.com/blog/developers/2024/aug/faster-page-loads-with-the-speculation-rules-api Tim Vereecke https://www.akamai.com/blog/developers/2024/aug/faster-page-loads-with-the-speculation-rules-api Tue, 27 Aug 2024 10:20:00 UTC How Securing APIs Factors into DORA Compliance https://www.akamai.com/blog/security/2024/aug/how-securing-apis-factors-into-dora-compliance John Natale https://www.akamai.com/blog/security/2024/aug/how-securing-apis-factors-into-dora-compliance Thu, 22 Aug 2024 13:00:00 UTC New Core Compute Regions: London Expansion and Melbourne Are Live https://www.akamai.com/blog/developers/2024/aug/new-core-compute-regions-london-expansion-and-melbourne-are-live Maddie Presland https://www.akamai.com/blog/developers/2024/aug/new-core-compute-regions-london-expansion-and-melbourne-are-live Thu, 22 Aug 2024 10:20:00 UTC Embed API Security into Regulatory Compliance: Six Examples to Watch Read about how to meet API-related requirements in six key regulations and frameworks to better protect your organization. https://www.akamai.com/blog/security/2024/aug/embed-api-security-into-regulatory-compliance-six-examples John Natale https://www.akamai.com/blog/security/2024/aug/embed-api-security-into-regulatory-compliance-six-examples Wed, 21 Aug 2024 13:00:00 UTC Edge Computing and 5G: Emerging Technology Shaping the Future of IT Learn how and why enterprise businesses are using edge computing and 5G to deliver better digital experiences for their customers. https://www.akamai.com/blog/edge/2024/aug/edge-computing-5g-emerging-technology-shaping-future-it Santiago Giraldo https://www.akamai.com/blog/edge/2024/aug/edge-computing-5g-emerging-technology-shaping-future-it Tue, 20 Aug 2024 13:00:00 UTC Defend Your GraphQL Server Against Excessive Resource Consumption https://www.akamai.com/blog/developers/2024/aug/defend-your-graphql-server-against-excessive-resource-consumption Alex Leung https://www.akamai.com/blog/developers/2024/aug/defend-your-graphql-server-against-excessive-resource-consumption Tue, 20 Aug 2024 10:20:00 UTC How We Transformed Akamai from a CDN to a Cloud and Security Company https://www.akamai.com/blog/security/2024/aug/transformed-akamai-cdn-cloud-security-company Tom Leighton https://www.akamai.com/blog/security/2024/aug/transformed-akamai-cdn-cloud-security-company Mon, 19 Aug 2024 14:00:00 UTC Akamai’s Environmental Management System Meets the ISO 14001 Standard https://www.akamai.com/blog/sustainability/2024/aug/akamais-environmental-management-system-meets-iso-14001-standard Katie Robinson https://www.akamai.com/blog/sustainability/2024/aug/akamais-environmental-management-system-meets-iso-14001-standard Mon, 19 Aug 2024 05:00:00 UTC Akamai’s Perspective on August’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/aug/akamai-perspective-patch-tuesday-august-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/aug/akamai-perspective-patch-tuesday-august-2024 Fri, 16 Aug 2024 05:00:00 UTC The Noname Security 3.34 Update Includes Major Enhancements https://www.akamai.com/blog/security/2024/aug/the-noname-security-3-34-update Stas Neyman https://www.akamai.com/blog/security/2024/aug/the-noname-security-3-34-update Thu, 15 Aug 2024 14:00:00 UTC How To Lower Your Live Video Transcoding Costs https://www.akamai.com/blog/developers/2024/aug/how-to-lower-your-live-video-transcoding-costs Talia Nassi https://www.akamai.com/blog/developers/2024/aug/how-to-lower-your-live-video-transcoding-costs Thu, 15 Aug 2024 10:20:00 UTC Akamai Guardicore Platform: Microsegmentation Just Got a Whole Lot Better Akamai introduces new microsegmentation features to the Akamai Guardicore Platform to help organizations further refine their security posture. https://www.akamai.com/blog/security/2024/aug/akamai-guardicore-platform-microsegmentation-just-got-whole-lot-better Maya Luisan https://www.akamai.com/blog/security/2024/aug/akamai-guardicore-platform-microsegmentation-just-got-whole-lot-better Wed, 14 Aug 2024 13:00:00 UTC What’s New for Developers: August 2024 https://www.akamai.com/blog/developers/2024/aug/whats-new-for-developers-august-2024 Jessica Capuano Mora https://www.akamai.com/blog/developers/2024/aug/whats-new-for-developers-august-2024 Wed, 14 Aug 2024 10:20:00 UTC Defending Against a Login API Brute Force Attack https://www.akamai.com/blog/developers/2024/aug/defending-against-a-login-api-brute-force-attack Alex Leung https://www.akamai.com/blog/developers/2024/aug/defending-against-a-login-api-brute-force-attack Tue, 13 Aug 2024 10:20:00 UTC Taking Steps to Prepare for Quantum Advantage https://www.akamai.com/blog/security/2024/aug/taking-steps-to-prepare-for-quantum-advantage Rich Salz & Jan Schaumann https://www.akamai.com/blog/security/2024/aug/taking-steps-to-prepare-for-quantum-advantage Mon, 12 Aug 2024 14:00:00 UTC Git-Syncing into Trouble: Exploring Command Injection Flaws in Kubernetes https://www.akamai.com/blog/security-research/2024/aug/kubernetes-gitsync-command-injection-defcon Tomer Peled https://www.akamai.com/blog/security-research/2024/aug/kubernetes-gitsync-command-injection-defcon Fri, 09 Aug 2024 11:00:00 UTC Gaining Control Over Sky-High Cloud Costs: Our Journey So Far https://www.akamai.com/blog/developers/2024/aug/project-cirrus-gaining-control-over-sky-high-cloud-costs Ari Weil https://www.akamai.com/blog/developers/2024/aug/project-cirrus-gaining-control-over-sky-high-cloud-costs Fri, 09 Aug 2024 10:20:00 UTC Improving Apache httpd Protections Proactively with Orange Tsai of DEVCORE https://www.akamai.com/blog/security-research/2024/aug/apache-waf-proactive-collaboration-orange-tsai-devcore Ryan Barnett & Sam Tinklenberg https://www.akamai.com/blog/security-research/2024/aug/apache-waf-proactive-collaboration-orange-tsai-devcore Thu, 08 Aug 2024 15:00:00 UTC Cloning Content to Linode Object Storage with RClone https://www.akamai.com/blog/developers/2024/aug/cloning-content-to-linode-object-storage-with-rclone smacleod@akamai.com (Stuart Macleod) https://www.akamai.com/blog/developers/2024/aug/cloning-content-to-linode-object-storage-with-rclone Thu, 08 Aug 2024 10:20:00 UTC Living off the VPN — Exploring VPN Post-Exploitation Techniques https://www.akamai.com/blog/security-research/2024/aug/vpn-post-exploitation-techniques-black-hat Ori David https://www.akamai.com/blog/security-research/2024/aug/vpn-post-exploitation-techniques-black-hat Wed, 07 Aug 2024 17:20:00 UTC Akamai Blocked 419 TB of Malicious Traffic in a 24-Hour DDoS Attack https://www.akamai.com/blog/security/2024/aug/akamai-blocked-419-tb-of-malicious-traffic Sven Dummer https://www.akamai.com/blog/security/2024/aug/akamai-blocked-419-tb-of-malicious-traffic Wed, 07 Aug 2024 14:00:00 UTC What Is an Event-Driven Microservices Architecture? https://www.akamai.com/blog/edge/2024/aug/what-is-an-event-driven-microservices-architecture Pavel Despot https://www.akamai.com/blog/edge/2024/aug/what-is-an-event-driven-microservices-architecture Tue, 06 Aug 2024 13:00:00 UTC It’s a New World: APIs Protected by the Power of N The world of APIs is changing fast — as is what it takes to secure them. Our new Power of N campaign explains why. https://www.akamai.com/blog/security/2024/aug/apis-protected-by-the-power-of-n Stacey Sweeney https://www.akamai.com/blog/security/2024/aug/apis-protected-by-the-power-of-n Mon, 05 Aug 2024 13:00:00 UTC Akamai’s Strategic and Transparent Implementation of AI https://www.akamai.com/blog/security/2024/aug/akamai-strategic-and-transparent-implementation-of-ai Berk Veral https://www.akamai.com/blog/security/2024/aug/akamai-strategic-and-transparent-implementation-of-ai Thu, 01 Aug 2024 13:00:00 UTC Take Cover: Securing Games Truly Is a Battle Royale https://www.akamai.com/blog/security-research/2024/jul/games-security-trends-is-a-battle-royale Tricia Howard https://www.akamai.com/blog/security-research/2024/jul/games-security-trends-is-a-battle-royale Wed, 31 Jul 2024 14:00:00 UTC Why (and How) APIs and Web Applications Are Under Siege Read a summary of the latest SOTI report, which tackles the security risks in web applications and APIs, and the infrastructure that powers them https://www.akamai.com/blog/security-research/why-and-how-apis-web-applications-are-under-siege Mitch Mayne https://www.akamai.com/blog/security-research/why-and-how-apis-web-applications-are-under-siege Tue, 30 Jul 2024 13:00:00 UTC Keep Your Tech Flame Alive: Akamai Trailblazer Elizabeth Padley In this Akamai FLAME Trailblazer blog, Elizabeth Padley tells us that as an international employment lawyer in tech, she has learned to expect the unexpected. https://www.akamai.com/blog/culture/2024/jul/keep-your-tech-flame-alive-akamai-trailblazer-elizabeth-padley Akamai FLAME Team https://www.akamai.com/blog/culture/2024/jul/keep-your-tech-flame-alive-akamai-trailblazer-elizabeth-padley Mon, 29 Jul 2024 13:00:00 UTC Planting Trees in India: Green Team #GenerationRestoration https://www.akamai.com/blog/sustainability/2024/jul/planting-trees-in-india-green-team Ayisha Mohammed https://www.akamai.com/blog/sustainability/2024/jul/planting-trees-in-india-green-team Fri, 26 Jul 2024 13:00:00 UTC Analyzing Malicious CrowdStrike Domains: Who Is Affected and What Could Come Next https://www.akamai.com/blog/security-research/2024/jul/crowdstrike-bsod-domains-what-could-come-next Akamai Enterprise Security Group SecOps https://www.akamai.com/blog/security-research/2024/jul/crowdstrike-bsod-domains-what-could-come-next Fri, 26 Jul 2024 07:00:00 UTC Akamai Early Hints: A New Way for Improving User Experience and Core Web Vitals https://www.akamai.com/blog/performance/2024/jul/akamai-early-hints-improving-user-experience Debayan Roy https://www.akamai.com/blog/performance/2024/jul/akamai-early-hints-improving-user-experience Fri, 19 Jul 2024 13:00:00 UTC What’s New for Developers: July 2024 https://www.akamai.com/blog/developers/2024/jul/developer-update-july-2024 Jessica Capuano Mora https://www.akamai.com/blog/developers/2024/jul/developer-update-july-2024 Fri, 19 Jul 2024 10:20:00 UTC PCI DSS v4.0.1: Meeting New Client-Side Security Requirements Learn how Akamai Client-Side Protection & Compliance helps organizations meet the latest payment security updates and clarifications outlined in PCI DSS v4.0.1. https://www.akamai.com/blog/security/2024/jul/pci-dss-v401-meeting-new-client-side-security-requirements Boris Kirzner https://www.akamai.com/blog/security/2024/jul/pci-dss-v401-meeting-new-client-side-security-requirements Tue, 16 Jul 2024 13:00:00 UTC Securing APIs While Navigating Today’s Booming API Economy https://www.akamai.com/blog/security/2024/jul/securing-apis-while-navigating-todays-booming-api-economy Jagdish Mohite https://www.akamai.com/blog/security/2024/jul/securing-apis-while-navigating-todays-booming-api-economy Mon, 15 Jul 2024 15:00:00 UTC Akamai’s Perspective on July’s Patch Tuesday 2024 Patches are raining down like Independence Day fireworks. July 2024’s Patch Tuesday has 137 total CVEs and one vulnerability found in the wild. https://www.akamai.com/blog/security-research/2024/jul/akamai-perspective-on-july-patch-tuesday-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/jul/akamai-perspective-on-july-patch-tuesday-2024 Thu, 11 Jul 2024 19:00:00 UTC 6 Tips for a Successful Security Vendor Consolidation https://www.akamai.com/blog/security/2024/jul/6-tips-successful-security-vendor-consolidation Christine Ferrusi Ross https://www.akamai.com/blog/security/2024/jul/6-tips-successful-security-vendor-consolidation Thu, 11 Jul 2024 13:00:00 UTC CVE-2024-4577 Exploits in the Wild One Day After Disclosure Akamai researchers have observed numerous exploit attempts for the PHP vulnerability CVE-2024-4577 as early as one day after disclosure. https://www.akamai.com/blog/security-research/2024/jul/2024-php-exploit-cve-one-day-after-disclosure Kyle Lefton, Allen West & Sam Tinklenberg https://www.akamai.com/blog/security-research/2024/jul/2024-php-exploit-cve-one-day-after-disclosure Wed, 10 Jul 2024 19:00:00 UTC Akamai Launches Early Hints to Further Boost User Experience and SEO https://www.akamai.com/blog/performance/2023/oct/akamai-103-early-hints-prototype-the-results-are-in Tim Vereecke, Robin Marx & Debayan Roy https://www.akamai.com/blog/performance/2023/oct/akamai-103-early-hints-prototype-the-results-are-in Tue, 09 Jul 2024 13:00:00 UTC Lower Video Transcoding Costs with Dedicated Linode Instances Discover how to slash video transcoding costs by 33% with dedicated compute instances and learn effective strategies to reduce egress fees and optimize VM utilization https://www.akamai.com/blog/developers/2024/jul/how-to-lower-video-transcoding-costs-by-migrating-to-dedicated-linode-instances Talia Nassi https://www.akamai.com/blog/developers/2024/jul/how-to-lower-video-transcoding-costs-by-migrating-to-dedicated-linode-instances Tue, 09 Jul 2024 10:20:00 UTC Defend Against Account Abuse in Financial Services Learn how Akamai Account Protector defends against account abuse by distinguishing between legitimate and malicious activities. https://www.akamai.com/blog/security/2024/jun/defend-against-account-abuse-in-financial-services Emily Lyons & Ryan Gao https://www.akamai.com/blog/security/2024/jun/defend-against-account-abuse-in-financial-services Mon, 08 Jul 2024 13:00:00 UTC Guidance on the Critical OpenSSH Vulnerability regreSSHion https://www.akamai.com/blog/security-research/2024/jul/openssh-vulnerability-regression-what-to-know-and-do Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/jul/openssh-vulnerability-regression-what-to-know-and-do Wed, 03 Jul 2024 17:00:00 UTC Sustainability and ESG: Understanding the Difference and Why It Matters https://www.akamai.com/blog/sustainability/2024/jul/sustainability-and-esg-understanding-the-difference Navya Lakkaraju https://www.akamai.com/blog/sustainability/2024/jul/sustainability-and-esg-understanding-the-difference Wed, 03 Jul 2024 13:00:00 UTC Information on OpenSSH "regreSSHion" Vulnerability https://www.akamai.com/blog/developers/2024/jul/information-on-openssh-regresshion-vulnerability Linode (Linode) https://www.akamai.com/blog/developers/2024/jul/information-on-openssh-regresshion-vulnerability Wed, 03 Jul 2024 10:20:00 UTC Zero Trust Is Revolutionizing API Security in Financial Services Learn how a Zero Trust approach transforms API security in financial services by ensuring innovation, efficiency, and customer trust amid evolving cyberthreats. https://www.akamai.com/blog/security/2024/jun/zero-trust-revolutionizing-api-security-financial-services Cheryl Chiodi https://www.akamai.com/blog/security/2024/jun/zero-trust-revolutionizing-api-security-financial-services Tue, 02 Jul 2024 13:00:00 UTC Examining the Polyfill Attack from Akamai's Point of View https://www.akamai.com/blog/security/2024/jul/polyfill-supply-chain-attack-what-to-know Gal Meiri https://www.akamai.com/blog/security/2024/jul/polyfill-supply-chain-attack-what-to-know Tue, 02 Jul 2024 09:00:00 UTC Social Media Monitoring and Rogue App Detection in Akamai Brand Guardian https://www.akamai.com/blog/security/2024/jul/social-media-monitoring-and-rogue-app-detection Danielle Walter https://www.akamai.com/blog/security/2024/jul/social-media-monitoring-and-rogue-app-detection Mon, 01 Jul 2024 13:00:00 UTC How TrafficPeak Helped Provide a Superior Football Viewing Experience https://www.akamai.com/blog/cloud/2024/jun/trafficpeak-helped-provide-superior-football-viewing-experience Nathan Hoffmann https://www.akamai.com/blog/cloud/2024/jun/trafficpeak-helped-provide-superior-football-viewing-experience Fri, 28 Jun 2024 13:00:00 UTC Celebrating a Year of Innovation with Akamai Brand Guardian https://www.akamai.com/blog/security/2024/jun/year-of-innovation-with-akamai-brand-protector Danielle Walter https://www.akamai.com/blog/security/2024/jun/year-of-innovation-with-akamai-brand-protector Thu, 27 Jun 2024 13:00:00 UTC Companies Optimize Cloud Costs and Deliver Superior Experiences on Akamai Learn how Akamai’s customers optimize their cloud computing costs and deliver engaging customer experiences with our open and affordable cloud infrastructure. https://www.akamai.com/blog/cloud/2024/jun/companies-optimize-cloud-costs-deliver-superior-experiences-on-akamai Rick Myers https://www.akamai.com/blog/cloud/2024/jun/companies-optimize-cloud-costs-deliver-superior-experiences-on-akamai Wed, 26 Jun 2024 13:00:00 UTC Keep Your Tech Flame Alive: Trailblazer Mie Elmkvist Schneider In this Akamai FLAME Trailblazer blog post, Mie Elmkvist Schneider from Queue-it describes the differences between being a manager and being a leader. https://www.akamai.com/blog/culture/2024/jun/keep-your-tech-flame-alive-trailblazer-mie-elmkvist-schneider Akamai FLAME Team https://www.akamai.com/blog/culture/2024/jun/keep-your-tech-flame-alive-trailblazer-mie-elmkvist-schneider Wed, 26 Jun 2024 13:00:00 UTC What’s That Scraping Sound? How Web Scraper Bots Erode Ecommerce Profits https://www.akamai.com/blog/security-research/2024/jun/commerce-soti-web-scraper-bots Mitch Mayne https://www.akamai.com/blog/security-research/2024/jun/commerce-soti-web-scraper-bots Tue, 25 Jun 2024 14:00:00 UTC Akamai Doubles Down on API Security https://www.akamai.com/blog/security/2024/jun/akamai-doubles-down-on-api-security Michael Kleef https://www.akamai.com/blog/security/2024/jun/akamai-doubles-down-on-api-security Tue, 25 Jun 2024 11:00:00 UTC Women in Tech: Remain Open to Unexpected Opportunities Akamai CIO Kate Prouty explores the benefits of remaining open to new opportunities and salutes the bond among women in tech. https://www.akamai.com/blog/culture/2024/jun/women-in-tech-remain-open-unexpected-opportunities Tashema Nichols-Jones https://www.akamai.com/blog/culture/2024/jun/women-in-tech-remain-open-unexpected-opportunities Mon, 24 Jun 2024 13:00:00 UTC Akamai’s Perspective on June’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/jun/akamai-perspective-patch-tuesday-june-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/jun/akamai-perspective-patch-tuesday-june-2024 Fri, 14 Jun 2024 14:00:00 UTC How Healthcare Providers Should Think About Balancing Innovation Efforts with Cybersecurity Goals https://www.akamai.com/blog/security-research/healthcare-providers-balancing-innovation-efforts-with-cybersecurity-goals Steve Winterfeld https://www.akamai.com/blog/security-research/healthcare-providers-balancing-innovation-efforts-with-cybersecurity-goals Fri, 14 Jun 2024 13:00:00 UTC 9 Malware Types Enterprise Professionals Need to Know Learn about nine malware types so that you can take steps to protect your enterprise business and your customers from cyberattackers. https://www.akamai.com/blog/security/2024/jun/9-malware-types-enterprise-professionals-need-to-know Danielle Walter https://www.akamai.com/blog/security/2024/jun/9-malware-types-enterprise-professionals-need-to-know Thu, 06 Jun 2024 13:00:00 UTC 2024: Old CVEs, New Targets — Active Exploitation of ThinkPHP https://www.akamai.com/blog/security-research/2024/jun/2024-thinkphp-applications-exploit-1-days-dama-webshell Ron Mankivsky & Maxim Zavodchik https://www.akamai.com/blog/security-research/2024/jun/2024-thinkphp-applications-exploit-1-days-dama-webshell Wed, 05 Jun 2024 14:00:00 UTC Akamai Celebrates Earth Day with a Cleanup of Rio Agres https://www.akamai.com/blog/sustainability/2024/jun/akamai-celebrates-earth-day-cleanup-rio-agres brojas@akamai.com (Braulio Rojas) https://www.akamai.com/blog/sustainability/2024/jun/akamai-celebrates-earth-day-cleanup-rio-agres Wed, 05 Jun 2024 13:00:00 UTC It’s Getting Hot in Here: EMEA SOTI https://www.akamai.com/blog/security-research/2024/jun/emea-soti-ddos-trends-dns-legislation-finserv Tricia Howard https://www.akamai.com/blog/security-research/2024/jun/emea-soti-ddos-trends-dns-legislation-finserv Tue, 04 Jun 2024 07:00:00 UTC Running CloudTest on Akamai Cloud Computing https://www.akamai.com/blog/cloud/2024/jun/running-cloudtest-on-akamai-cloud-computing Hitoshi Kaneko https://www.akamai.com/blog/cloud/2024/jun/running-cloudtest-on-akamai-cloud-computing Mon, 03 Jun 2024 13:00:00 UTC Edge Computing Versus Cloud Computing: Key Similarities and Differences Explore the use cases, similarities, and differences of edge computing and cloud computing. https://www.akamai.com/blog/edge/2024/may/edge-computing-versus-cloud-computing-key-similarities-differences Pavel Despot https://www.akamai.com/blog/edge/2024/may/edge-computing-versus-cloud-computing-key-similarities-differences Fri, 31 May 2024 13:00:00 UTC RedTail Cryptominer Threat Actors Adopt PAN-OS CVE-2024-3400 Exploit https://www.akamai.com/blog/security-research/2024/may/2024-redtail-cryptominer-pan-os-cve-exploit Ryan Barnett, Stiv Kupchik & Maxim Zavodchik https://www.akamai.com/blog/security-research/2024/may/2024-redtail-cryptominer-pan-os-cve-exploit Thu, 30 May 2024 14:00:00 UTC Protect and Elevate Your DNS with Akamai Shield NS53 Learn how Akamai Shield NS53 can protect your capital investment into on-premises DNS infrastructure and significantly improve performance. https://www.akamai.com/blog/security/2024/may/protect-and-elevate-your-dns-with-akamai-shield-ns53 Sam Preston https://www.akamai.com/blog/security/2024/may/protect-and-elevate-your-dns-with-akamai-shield-ns53 Wed, 29 May 2024 15:00:00 UTC Cut Costs by Migrating from EFS to Object Storage https://www.akamai.com/blog/developers/2024/may/cut-costs-by-migrating-to-object-storage Linode (Linode) https://www.akamai.com/blog/developers/2024/may/cut-costs-by-migrating-to-object-storage Tue, 28 May 2024 10:20:00 UTC Have Web Trust Issues? Bot Management Can Help https://www.akamai.com/blog/security/2024/may/how-bot-management-can-help Christine Ferrusi Ross https://www.akamai.com/blog/security/2024/may/how-bot-management-can-help Wed, 22 May 2024 13:00:00 UTC Why Game Companies Are Adopting Distributed Cloud Computing Global game developers are providing improved performance, better in-game experiences, and boosting gamer retention with distributed cloud computing. https://www.akamai.com/blog/cloud/2024/may/game-companies-are-adopting-distributed-cloud-computing Cheng Xi https://www.akamai.com/blog/cloud/2024/may/game-companies-are-adopting-distributed-cloud-computing Tue, 21 May 2024 13:00:00 UTC How to Defend Against Relentless DNS Attacks Enterprise organizations, their employees, and their customers are better protected from cyberattacks when their DNS is properly secured. https://www.akamai.com/blog/security/battling-dns-fatigue-defend-against-relentless-attacks Steve Winterfeld & Jim Gilbert https://www.akamai.com/blog/security/battling-dns-fatigue-defend-against-relentless-attacks Mon, 20 May 2024 13:00:00 UTC Why Insurers Need Visibility Into APIs Risks Learn the importance of API discovery, inventory, and risk assessment for insurance companies, and read two examples of why API security is a team sport. https://www.akamai.com/blog/security/2024/sep/why-insurers-need-visibility-into-apis-risks Andre Kerstens https://www.akamai.com/blog/security/2024/sep/why-insurers-need-visibility-into-apis-risks Mon, 20 May 2024 13:00:00 UTC Akamai Adds Support for Kubernetes Cluster API https://www.akamai.com/blog/developers/2024/may/akamai-adds-support-for-kubernetes-cluster-api Linode (Linode) https://www.akamai.com/blog/developers/2024/may/akamai-adds-support-for-kubernetes-cluster-api Mon, 20 May 2024 10:20:00 UTC Akamai’s Perspective on May’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/may/akamai-perspective-patch-tuesday-may-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/may/akamai-perspective-patch-tuesday-may-2024 Fri, 17 May 2024 14:00:00 UTC DDoS Attacks Against Life Sciences Organizations Likely to Rise https://www.akamai.com/blog/security-research/rising-ddos-attacks-against-life-sciences-organizations Carley Thornell https://www.akamai.com/blog/security-research/rising-ddos-attacks-against-life-sciences-organizations Fri, 17 May 2024 13:00:00 UTC Why SaaS Companies Are Adopting Distributed Cloud Computing A study commissioned by Akamai included asking more than 250 global SaaS developers about their perceptions of distributed cloud. Their answers may surprise you. https://www.akamai.com/blog/cloud/2024/may/saas-companies-adopting-distributed-cloud-computing Anders Näsman https://www.akamai.com/blog/cloud/2024/may/saas-companies-adopting-distributed-cloud-computing Tue, 14 May 2024 13:00:00 UTC Akamai Recognized as a Customers’ Choice for Cloud WAAP for the 5th Year https://www.akamai.com/blog/security/2024/may/akamai-recognized-customers-choice-cloud-waap-5th-year Danielle Walter https://www.akamai.com/blog/security/2024/may/akamai-recognized-customers-choice-cloud-waap-5th-year Wed, 08 May 2024 13:00:00 UTC Accelerating Zero Trust Outcomes with Generative AI, Part 2: Guardicore AI https://www.akamai.com/blog/security/2024/may/accelerating-zero-trust-outcomes-with-generative-ai-part-2 Jacob Abrams https://www.akamai.com/blog/security/2024/may/accelerating-zero-trust-outcomes-with-generative-ai-part-2 Tue, 07 May 2024 13:00:00 UTC How Effectively Are You Deploying Segmentation to Mitigate Cyberattack Risks? https://www.akamai.com/blog/security/2024/may/effectively-deploying-segmentation-to-mitigate-cyberattack-risks Carley Thornell, Cheryl Chiodi, Susan McReynolds & Helder Ferrão https://www.akamai.com/blog/security/2024/may/effectively-deploying-segmentation-to-mitigate-cyberattack-risks Tue, 07 May 2024 13:00:00 UTC Accelerating Zero Trust Outcomes with Generative AI, Part 1: AI Labeling https://www.akamai.com/blog/security/2024/may/accelerating-zero-trust-outcomes-with-generative-ai-part-1 Jacob Abrams https://www.akamai.com/blog/security/2024/may/accelerating-zero-trust-outcomes-with-generative-ai-part-1 Mon, 06 May 2024 10:00:00 UTC Healthcare Needs To Be Laser-Focused on API Security and Its Blind Spots API-powered tools can enhance patient access to healthcare services, but these tools also introduce risk. Learn how to protect your organization. https://www.akamai.com/blog/security/2024/apr/healthcare-laser-focused-api-security-blind-spots Carley Thornell https://www.akamai.com/blog/security/2024/apr/healthcare-laser-focused-api-security-blind-spots Fri, 03 May 2024 13:00:00 UTC Noname Security Platform Updates: 3.30 Release https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-330-release Stas Neyman https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-330-release Thu, 02 May 2024 18:01:00 UTC Using Our Environmental Management System to Create a Sustainable Future https://www.akamai.com/blog/sustainability/2024/may/environmental-management-system-to-create-a-sustainable-future Katie Robinson https://www.akamai.com/blog/sustainability/2024/may/environmental-management-system-to-create-a-sustainable-future Thu, 02 May 2024 13:00:00 UTC The Crucial Role of Data in Sustainability Akamai’s data has the potential to help us address one of the most significant challenges of our time: climate change. https://www.akamai.com/blog/sustainability/2024/apr/crucial-role-data-sustainability Mike Mattera https://www.akamai.com/blog/sustainability/2024/apr/crucial-role-data-sustainability Wed, 01 May 2024 13:00:00 UTC 5 Steps to Make Zero Trust Achievable https://www.akamai.com/blog/security/2024/apr/5-steps-to-make-zero-trust-achievable Dan Petrillo https://www.akamai.com/blog/security/2024/apr/5-steps-to-make-zero-trust-achievable Tue, 30 Apr 2024 10:00:00 UTC Think Beyond the Perimeter: Secure Your APIs with East-West Visibility https://www.akamai.com/blog/security/2024/apr/secure-your-apis-with-east-west-visibility Abigail Ojeda & Jacob Abrams https://www.akamai.com/blog/security/2024/apr/secure-your-apis-with-east-west-visibility Fri, 26 Apr 2024 13:00:00 UTC Phishing Campaigns Targeting USPS See as Much Web Traffic as the USPS Itself https://www.akamai.com/blog/security-research/2024/apr/phishing-usps-malicious-domains-traffic-equal-to-legitimate-traffic Stijn Tilborghs & Connor Faulkner https://www.akamai.com/blog/security-research/2024/apr/phishing-usps-malicious-domains-traffic-equal-to-legitimate-traffic Thu, 25 Apr 2024 14:00:00 UTC Getting Started with LLMs: Managing Data Collection https://www.akamai.com/blog/developers/2024/apr/getting-started-with-llms-managing-data-collection Linode (Linode) https://www.akamai.com/blog/developers/2024/apr/getting-started-with-llms-managing-data-collection Wed, 24 Apr 2024 13:00:00 UTC How HTTP/2 Persistent Connections Help Improve Performance and User Experience https://www.akamai.com/blog/performance/2024/apr/http2-persistent-connections Mihai Puchiu, Santanu Pathak & Julio Chaves Herrera https://www.akamai.com/blog/performance/2024/apr/http2-persistent-connections Tue, 23 Apr 2024 13:00:00 UTC Keep Your Tech Flame Alive: Trailblazer Samantha Lee https://www.akamai.com/blog/culture/2024/apr/keep-your-tech-flame-alive-trailblazer-samantha-lee Akamai FLAME Team https://www.akamai.com/blog/culture/2024/apr/keep-your-tech-flame-alive-trailblazer-samantha-lee Mon, 22 Apr 2024 13:00:00 UTC The 8 Most Common Causes of Data Breaches https://www.akamai.com/blog/security/2024/apr/8-most-common-causes-of-data-breaches Anurag Anuj https://www.akamai.com/blog/security/2024/apr/8-most-common-causes-of-data-breaches Fri, 19 Apr 2024 13:00:00 UTC Data Matters — The Value of Visibility in API Security https://www.akamai.com/blog/security/2024/apr/the-value-of-visibility-in-api-security Abigail Ojeda https://www.akamai.com/blog/security/2024/apr/the-value-of-visibility-in-api-security Thu, 18 Apr 2024 13:00:00 UTC Akamai Takes Home Three 2024 Stevie® Awards for Sales & Customer Service https://www.akamai.com/blog/developers/2024/apr/akamai-takes-home-three-2024-stevie-awards-for-sales-customer-service Jim Ackley https://www.akamai.com/blog/developers/2024/apr/akamai-takes-home-three-2024-stevie-awards-for-sales-customer-service Wed, 17 Apr 2024 13:00:00 UTC Empowering Change: Using Your Influence to Confront the Climate Crisis https://www.akamai.com/blog/sustainability/2024/apr/using-your-influence-to-confront-the-climate-crisis Margot Hines https://www.akamai.com/blog/sustainability/2024/apr/using-your-influence-to-confront-the-climate-crisis Mon, 15 Apr 2024 13:00:00 UTC CreateRCE — Yet Another Vulnerability in CreateUri https://www.akamai.com/blog/security-research/2024/apr/critical-vulnerability-create-uri-remote-code-execution Ben Barnea https://www.akamai.com/blog/security-research/2024/apr/critical-vulnerability-create-uri-remote-code-execution Fri, 12 Apr 2024 14:00:00 UTC API Cyberattacks: A Growing Threat for Organizations in Latin America Learn about the growing threat of API cyberattacks and their effect on industries across Latin America. https://www.akamai.com/blog/security/2024/apr/api-cyberattacks-growing-threat-organizations-latin-america Helder Ferrão https://www.akamai.com/blog/security/2024/apr/api-cyberattacks-growing-threat-organizations-latin-america Fri, 12 Apr 2024 13:00:00 UTC Akamai’s Perspective on April’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/apr/akamai-perspective-patch-tuesday-april-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/apr/akamai-perspective-patch-tuesday-april-2024 Fri, 12 Apr 2024 06:00:00 UTC How to Dramatically Simplify PCI DSS Compliance https://www.akamai.com/blog/security/2024/apr/dramatically-simplify-pci-dss-compliance Ravit Greitser https://www.akamai.com/blog/security/2024/apr/dramatically-simplify-pci-dss-compliance Thu, 11 Apr 2024 13:00:00 UTC Comparing the Benefits of Microsegmentation vs. VLANs https://www.akamai.com/blog/security/2024/apr/comparing-the-benefits-of-microsegmentation-versus-vlans Jacob Abrams https://www.akamai.com/blog/security/2024/apr/comparing-the-benefits-of-microsegmentation-versus-vlans Wed, 10 Apr 2024 13:00:00 UTC Shield NS53 Protects Your Origin DNS Infrastructure from NXDOMAIN Attacks https://www.akamai.com/blog/security/2024/apr/shield-ns53-protects-from-nxdomain-attacks Sandeep Rath & Venkat Praneeth Nangineni https://www.akamai.com/blog/security/2024/apr/shield-ns53-protects-from-nxdomain-attacks Tue, 09 Apr 2024 10:00:00 UTC Noname Security Platform Updates: 3.29 Release https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-329-release Stas Neyman https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-329-release Tue, 09 Apr 2024 02:07:00 UTC Why Payers Are Pivotal to API Security Across the Healthcare Ecosystem https://www.akamai.com/blog/security-research/payers-are-pivotal-to-api-security-across-healthcare Carley Thornell https://www.akamai.com/blog/security-research/payers-are-pivotal-to-api-security-across-healthcare Mon, 08 Apr 2024 13:00:00 UTC Keep Your Tech Flame Alive: Akamai Trailblazer Alex Virley https://www.akamai.com/blog/culture/2024/apr/keep-your-flame-alive-akamai-trailblazer-alex-virley Akamai FLAME Team https://www.akamai.com/blog/culture/2024/apr/keep-your-flame-alive-akamai-trailblazer-alex-virley Thu, 04 Apr 2024 13:00:00 UTC Welcome to 2024: A Year in Review with Akamai Hunt https://www.akamai.com/blog/security/2024/apr/a-year-in-review-with-akamai-hunt Shivangi Pandey https://www.akamai.com/blog/security/2024/apr/a-year-in-review-with-akamai-hunt Wed, 03 Apr 2024 13:00:00 UTC KeyTrap Highlights Need for Enduring DNS Defenses for Service Providers DNS resolvers must be highly resilient to malicious activity like DoS attacks and cache poisoning. Akamai CacheServe delivers enduring defenses. https://www.akamai.com/blog/security/2024/apr/keytrap-highlights-need-enduring-dns-defenses-service-providers Bruce Van Nice, Mark Dokter & Jan Schaumann https://www.akamai.com/blog/security/2024/apr/keytrap-highlights-need-enduring-dns-defenses-service-providers Wed, 03 Apr 2024 13:00:00 UTC Introduction to Flow-IPC: Open Source Toolkit for Low-Latency Inter-Process Communication in C++ https://www.akamai.com/blog/developers/2024/apr/flow-ipc-introduction-low-latency-cpp-toolkit Yuri Goldfeld https://www.akamai.com/blog/developers/2024/apr/flow-ipc-introduction-low-latency-cpp-toolkit Tue, 02 Apr 2024 13:00:00 UTC The Sustainability Team Is Listening. Here’s What We Heard. https://www.akamai.com/blog/sustainability/2024/apr/the-sustainability-team-is-listening Owen Mattison https://www.akamai.com/blog/sustainability/2024/apr/the-sustainability-team-is-listening Tue, 02 Apr 2024 13:00:00 UTC XZ Utils Backdoor — Everything You Need to Know, and What You Can Do https://www.akamai.com/blog/security-research/2024/apr/critical-linux-backdoor-xz-utils-discovered-what-to-know Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/apr/critical-linux-backdoor-xz-utils-discovered-what-to-know Mon, 01 Apr 2024 16:00:00 UTC Our People and Our Growth: Key Drivers of Akamai’s ESG Strategy https://www.akamai.com/blog/culture/2024/apr/key-drivers-of-akamais-esg-strategy Khalil Smith https://www.akamai.com/blog/culture/2024/apr/key-drivers-of-akamais-esg-strategy Mon, 01 Apr 2024 13:00:00 UTC Honey, I Lost My Credentials! Finding Plaintext Credentials on the Internet https://www.akamai.com/blog/security-research/2024/mar/akamai-hunt-finds-plaintext-credentials-on-public-internet Yonatan Gilvarg https://www.akamai.com/blog/security-research/2024/mar/akamai-hunt-finds-plaintext-credentials-on-public-internet Thu, 28 Mar 2024 05:00:00 UTC Customers Champion Akamai Security Solutions, Support, and Partnership https://www.akamai.com/blog/security/2024/mar/customers-champion-akamai-security-solutions Michael Kleef https://www.akamai.com/blog/security/2024/mar/customers-champion-akamai-security-solutions Tue, 26 Mar 2024 13:00:00 UTC Noname Security Platform Updates: 3.28 Release https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-328-release Stas Neyman https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-328-release Sat, 23 Mar 2024 02:37:00 UTC Distributed Cloud and Edge Computing: A Cheat Sheet for IT Leaders https://www.akamai.com/blog/cloud/2024/mar/distributed-cloud-edge-computing-cheat-sheet-it-leaders Pavel Despot https://www.akamai.com/blog/cloud/2024/mar/distributed-cloud-edge-computing-cheat-sheet-it-leaders Fri, 22 Mar 2024 13:00:00 UTC The Akamai Foundation Continues to Give Back and Amplify Impact https://www.akamai.com/blog/culture/2024/mar/the-akamai-foundation-continues-to-give-back Kara DiGiacomo https://www.akamai.com/blog/culture/2024/mar/the-akamai-foundation-continues-to-give-back Fri, 22 Mar 2024 13:00:00 UTC Akamai Customer Trust Built on Partnership and Best User Experience https://www.akamai.com/blog/performance/2024/mar/akamai-customer-trust-built-on-partnership-best-user-experience Balakrishnan Nair https://www.akamai.com/blog/performance/2024/mar/akamai-customer-trust-built-on-partnership-best-user-experience Thu, 21 Mar 2024 13:00:00 UTC Abusing the DHCP Administrators Group to Escalate Privileges in Windows Domains https://www.akamai.com/blog/security-research/2024/feb/abusing-dhcp-administrators-group-for-privilege-escalation-in-windows-domains Ori David https://www.akamai.com/blog/security-research/2024/feb/abusing-dhcp-administrators-group-for-privilege-escalation-in-windows-domains Wed, 20 Mar 2024 14:00:00 UTC Lurking in the Shadows: Attack Trends Shine Light on API Threats https://www.akamai.com/blog/security-research/attack-trends-shine-light-on-api-threats Steve Winterfeld & Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/attack-trends-shine-light-on-api-threats Tue, 19 Mar 2024 13:00:00 UTC Recognizing Progress and Living Our Values: Akamai’s 2023 ESG Impact Report https://www.akamai.com/blog/sustainability/2024/mar/akamai-2023-esg-impact-report Saskia Schwartz https://www.akamai.com/blog/sustainability/2024/mar/akamai-2023-esg-impact-report Mon, 18 Mar 2024 13:00:00 UTC Akamai’s Perspective on March’s Patch Tuesday 2024 Don’t let your pies burn while you read patch notes. March’s 2024’s Patch Tuesday has 60 total CVE, with two critical in Hyper-V. https://www.akamai.com/blog/security-research/2024/mar/akamai-perspective-patch-tuesday-march-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/mar/akamai-perspective-patch-tuesday-march-2024 Thu, 14 Mar 2024 18:00:00 UTC Cyber Strategy: Don’t Focus on Prevention — Master Resilience https://www.akamai.com/blog/security/2024/mar/dont-focus-on-prevention-master-resilience Cheryl Chiodi https://www.akamai.com/blog/security/2024/mar/dont-focus-on-prevention-master-resilience Thu, 14 Mar 2024 13:00:00 UTC What a Cluster: Local Volumes Vulnerability in Kubernetes https://www.akamai.com/blog/security-research/2024/mar/kubernetes-local-volumes-command-injection-vulnerability-rce-system-privileges Tomer Peled https://www.akamai.com/blog/security-research/2024/mar/kubernetes-local-volumes-command-injection-vulnerability-rce-system-privileges Wed, 13 Mar 2024 14:00:00 UTC Discover the 3 Trends Driving API Security Compliance https://www.akamai.com/blog/security/2024/mar/3-trends-driving-api-security-compliance Abigail Ojeda https://www.akamai.com/blog/security/2024/mar/3-trends-driving-api-security-compliance Wed, 13 Mar 2024 13:00:00 UTC Akamai Security Solutions — Everywhere Your Business Meets the World https://www.akamai.com/blog/security/2024/mar/akamai-security-solutions Michael Kleef https://www.akamai.com/blog/security/2024/mar/akamai-security-solutions Tue, 12 Mar 2024 06:00:00 UTC State of the Cloud: Where We Are and Where We’re Heading https://www.akamai.com/blog/cloud/2024/mar/state-of-the-cloud-where-we-are-where-were-heading Jay Jenkins https://www.akamai.com/blog/cloud/2024/mar/state-of-the-cloud-where-we-are-where-were-heading Mon, 11 Mar 2024 13:00:00 UTC Enhancing Object Storage Performance: Introducing NVMe Hardware and Expanded Capacity https://www.akamai.com/blog/developers/2024/mar/nvme-object-storage-enhanced-performance Prasoon Pushkar https://www.akamai.com/blog/developers/2024/mar/nvme-object-storage-enhanced-performance Mon, 11 Mar 2024 13:00:00 UTC Elevate Your Web Monitoring Experience with Managed Web Monitoring https://www.akamai.com/blog/edge/2024/mar/elevate-your-web-monitoring-experience-with-managed-web-monitoring Leslie Stansbury https://www.akamai.com/blog/edge/2024/mar/elevate-your-web-monitoring-experience-with-managed-web-monitoring Fri, 08 Mar 2024 14:00:00 UTC AkaNAT: How Akamai Uses Machine Learning to Detect Shared IPs https://www.akamai.com/blog/security/2024/mar/how-akamai-uses-machine-learning-to-detect-shared-ips Chen Doytshman https://www.akamai.com/blog/security/2024/mar/how-akamai-uses-machine-learning-to-detect-shared-ips Fri, 08 Mar 2024 14:00:00 UTC Enhance Customers’ Security Posture: Akamai SOCC Advanced Service https://www.akamai.com/blog/security/2024/mar/akamai-socc-advanced-service Stacey Sweeney https://www.akamai.com/blog/security/2024/mar/akamai-socc-advanced-service Thu, 07 Mar 2024 14:00:00 UTC Leaking NTLM Credentials Through Windows Themes https://www.akamai.com/blog/security-research/2024/mar/leaking-ntlm-credentials-through-windows-themes Tomer Peled https://www.akamai.com/blog/security-research/2024/mar/leaking-ntlm-credentials-through-windows-themes Wed, 06 Mar 2024 15:00:00 UTC NetKiller.Condi Botnet Exploits CVE-2024-0778 One Week After Disclosure https://www.akamai.com/blog/security-research/2024/mar/netkiller-condi-botnet-exploits-camera Kyle Lefton & Larry Cashdollar https://www.akamai.com/blog/security-research/2024/mar/netkiller-condi-botnet-exploits-camera Tue, 05 Mar 2024 15:00:00 UTC 6 Ways Akamai Innovates to Strengthen Their Leadership in Application Security https://www.akamai.com/blog/security/2024/feb/app-and-api-protector-strengthens-your-api-defenses Danielle Walter https://www.akamai.com/blog/security/2024/feb/app-and-api-protector-strengthens-your-api-defenses Mon, 04 Mar 2024 14:00:00 UTC Address the Challenges of Compliance and Cybersecurity with Zero Trust The intersection of compliance and cybersecurity is an opportunity for your organization to adopt solutions that simultaneously solve challenges in both areas. https://www.akamai.com/blog/security/2024/feb/address-challenges-compliance-cybersecurity-zero-trust Ravit Greitser https://www.akamai.com/blog/security/2024/feb/address-challenges-compliance-cybersecurity-zero-trust Fri, 01 Mar 2024 14:00:00 UTC The Benefits of Microsegmentation for Compliance https://www.akamai.com/blog/security/2024/mar/the-benefits-of-microsegmentation-for-compliance Ravit Greitser https://www.akamai.com/blog/security/2024/mar/the-benefits-of-microsegmentation-for-compliance Fri, 01 Mar 2024 14:00:00 UTC Push vs. Pull-Based Architecture in GitOps https://www.akamai.com/blog/developers/2024/mar/push-vs-pull-based-architecture-in-gitops Akamai https://www.akamai.com/blog/developers/2024/mar/push-vs-pull-based-architecture-in-gitops Fri, 01 Mar 2024 10:20:00 UTC Noname Security Platform Updates: 3.27 Release https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-327-release Stas Neyman https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-327-release Fri, 01 Mar 2024 03:19:00 UTC Is Network Security Still a Thing in the Age of Public Cloud? Akamai Guardicore Segmentation is extending its segmentation capabilities to hybrid cloud environments. https://www.akamai.com/blog/security/2024/feb/network-security-age-public-cloud Ravit Greitser https://www.akamai.com/blog/security/2024/feb/network-security-age-public-cloud Tue, 27 Feb 2024 14:00:00 UTC Keep Your Tech Flame Alive: Akamai Trailblazer — Richa Dayal https://www.akamai.com/blog/culture/2024/feb/keep-your-tech-flame-alive-akamai-trailblazer-richa-dayal Akamai FLAME Team https://www.akamai.com/blog/culture/2024/feb/keep-your-tech-flame-alive-akamai-trailblazer-richa-dayal Mon, 26 Feb 2024 14:00:00 UTC Advocating for Inclusion in Tech https://www.akamai.com/blog/culture/2024/feb/advocating-for-inclusion-in-tech Tashema Nichols-Jones https://www.akamai.com/blog/culture/2024/feb/advocating-for-inclusion-in-tech Fri, 23 Feb 2024 14:00:00 UTC Workloads on Any Cloud: Designing a Cloud Portability Strategy https://www.akamai.com/blog/developers/2024/feb/cloud-portability-strategy-benefits Billy Thompson https://www.akamai.com/blog/developers/2024/feb/cloud-portability-strategy-benefits Thu, 22 Feb 2024 10:20:00 UTC Exploitation Observed: Ivanti Connect Secure — CVE-2023-46805 and CVE-2024-21887 https://www.akamai.com/blog/security-research/2024/feb/ivanti-january-rce-cve-zero-day-exploitation-observed Noam Atias & Sam Tinklenberg https://www.akamai.com/blog/security-research/2024/feb/ivanti-january-rce-cve-zero-day-exploitation-observed Wed, 21 Feb 2024 15:00:00 UTC Data Matters — Empowering Threat Hunters to Reduce API Risk https://www.akamai.com/blog/security/2024/feb/data-matters-empowering-threat-hunters-to-reduce-api-risk Abigail Ojeda https://www.akamai.com/blog/security/2024/feb/data-matters-empowering-threat-hunters-to-reduce-api-risk Wed, 21 Feb 2024 14:00:00 UTC Akamai’s Perspective on February’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/feb/akamai-perspective-patch-tuesday-february-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/feb/akamai-perspective-patch-tuesday-february-2024 Fri, 16 Feb 2024 15:00:00 UTC Will VPN Security Vulnerabilities Accelerate ZTNA Adoption? https://www.akamai.com/blog/security/2024/feb/will-vpn-security-vulnerabilities-accelerate-ztna-adoption Andrew Terranova & Tommy Cormier https://www.akamai.com/blog/security/2024/feb/will-vpn-security-vulnerabilities-accelerate-ztna-adoption Thu, 15 Feb 2024 14:00:00 UTC CVE-2023-50387 and CVE-2023-50868 — DNS Exploit KeyTrap Posed Major Internet Threat https://www.akamai.com/blog/security/2024/feb/dns-exploit-keytrap-posed-major-internet-threat Ralf Weber, Jan Schaumann & Bruce Van Nice https://www.akamai.com/blog/security/2024/feb/dns-exploit-keytrap-posed-major-internet-threat Thu, 15 Feb 2024 07:00:00 UTC What’s Next for Akamai’s Cloud Computing Strategy https://www.akamai.com/blog/cloud/2024/feb/whats-next-for-akamais-cloud-computing-strategy Tom Leighton https://www.akamai.com/blog/cloud/2024/feb/whats-next-for-akamais-cloud-computing-strategy Wed, 14 Feb 2024 14:00:00 UTC Scanning Activity for CVE-2024-22024 (XXE) Vulnerability in Ivanti https://www.akamai.com/blog/security-research/2024/feb/scanning-activity-ivanti-cve-february-2024 Sam Tinklenberg & Noam Atias https://www.akamai.com/blog/security-research/2024/feb/scanning-activity-ivanti-cve-february-2024 Wed, 14 Feb 2024 06:00:00 UTC Say Goodbye to Monolithic EdgeWorkers: Introducing Flexible Composition (Part 2) https://www.akamai.com/blog/edge/2024/feb/introducing-flexible-composition-part-2 Evan Hughes & AJ Johnson https://www.akamai.com/blog/edge/2024/feb/introducing-flexible-composition-part-2 Tue, 13 Feb 2024 08:00:00 UTC Data Matters — Is Your API Security Data Rich or Data Poor? Taking a data-rich approach to security is the most effective way to stay a step ahead of today’s quickly evolving API threats. https://www.akamai.com/blog/security/2024/feb/data-matters-api-security-data-rich-data-poor Abigail Ojeda https://www.akamai.com/blog/security/2024/feb/data-matters-api-security-data-rich-data-poor Mon, 12 Feb 2024 14:00:00 UTC The AnyDesk Breach: Overview and Recommendations https://www.akamai.com/blog/security-research/2024/feb/anydesk-breach-what-to-know-mitigations-and-recommendations Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/feb/anydesk-breach-what-to-know-mitigations-and-recommendations Wed, 07 Feb 2024 15:00:00 UTC Akamai Named an Overall Leader for Zero Trust Network Access https://www.akamai.com/blog/security/2024/feb/akamai-named-an-overall-leader-for-zero-trust-network-access Jim Black https://www.akamai.com/blog/security/2024/feb/akamai-named-an-overall-leader-for-zero-trust-network-access Wed, 07 Feb 2024 14:00:00 UTC Stop Scrapers and Scalpers with Akamai Content Protector https://www.akamai.com/blog/security/2024/feb/stop-scrapers-and-scalpers-with-akamai-content-protector Christine Ferrusi Ross https://www.akamai.com/blog/security/2024/feb/stop-scrapers-and-scalpers-with-akamai-content-protector Tue, 06 Feb 2024 14:00:00 UTC The Web Scraping Problem, Part 3: Protecting Against Botnets https://www.akamai.com/blog/security/2024/feb/the-web-scraping-problem-part-three-protecting-against-botnets David Sénécal https://www.akamai.com/blog/security/2024/feb/the-web-scraping-problem-part-three-protecting-against-botnets Tue, 06 Feb 2024 14:00:00 UTC What to Do When Your VPN Provider Suffers from Zero-Day Vulnerabilities https://www.akamai.com/blog/security/2024/feb/vpn-provider-suffers-from-zero-day-vulnerabilities Jim Black https://www.akamai.com/blog/security/2024/feb/vpn-provider-suffers-from-zero-day-vulnerabilities Mon, 05 Feb 2024 13:00:00 UTC The Web Scraping Problem, Part 2: Use Cases that Require Scraping https://www.akamai.com/blog/security/2024/feb/the-web-scraping-problem-part-2 David Sénécal https://www.akamai.com/blog/security/2024/feb/the-web-scraping-problem-part-2 Mon, 05 Feb 2024 08:00:00 UTC Frog4Shell — FritzFrog Botnet Adds One-Days to Its Arsenal https://www.akamai.com/blog/security-research/2024/feb/fritzfrog-botnet-new-capabilities-log4shell Ori David https://www.akamai.com/blog/security-research/2024/feb/fritzfrog-botnet-new-capabilities-log4shell Thu, 01 Feb 2024 15:00:00 UTC The Noname Security 3.26 Release Supports Integration with Fastly https://www.akamai.com/blog/security/2024/aug/the-noname-security-3-26-release Stas Neyman https://www.akamai.com/blog/security/2024/aug/the-noname-security-3-26-release Thu, 01 Feb 2024 14:00:00 UTC How Akamai Volunteers Helped Restore Costa Rica’s Most Polluted Beach https://www.akamai.com/blog/sustainability/2024/jan/akamai-volunteers-helped-restore-costa-ricas-most-polluted-beach brojas@akamai.com (Braulio Rojas) https://www.akamai.com/blog/sustainability/2024/jan/akamai-volunteers-helped-restore-costa-ricas-most-polluted-beach Wed, 31 Jan 2024 14:00:00 UTC The Web Scraping Problem: Part 1 https://www.akamai.com/blog/security/2024/jan/the-web-scraping-problem-part-1 David Sénécal https://www.akamai.com/blog/security/2024/jan/the-web-scraping-problem-part-1 Tue, 30 Jan 2024 14:00:00 UTC Actively Exploited Vulnerability in Hitron DVRs: Fixed, Patches Available https://www.akamai.com/blog/security-research/2024/jan/hitron-zero-day-vulnerability-spreading-mirai-patched Aline Eliovich, Kyle Lefton, Chad Seaman & Larry Cashdollar https://www.akamai.com/blog/security-research/2024/jan/hitron-zero-day-vulnerability-spreading-mirai-patched Tue, 30 Jan 2024 06:00:00 UTC Keep Your Tech FLAME Alive https://www.akamai.com/blog/culture/2024/jan/keep-your-tech-flame-alive Natalie Billingham https://www.akamai.com/blog/culture/2024/jan/keep-your-tech-flame-alive Mon, 29 Jan 2024 09:00:00 UTC Worried About Bot Attacks on B2C APIs? You May Be Missing a Bigger Risk https://www.akamai.com/blog/security/2024/jan/b2b-apis-present-potentially-devastating-risks Abigail Ojeda https://www.akamai.com/blog/security/2024/jan/b2b-apis-present-potentially-devastating-risks Mon, 29 Jan 2024 06:00:00 UTC API Security: Best Practices for API Activity Data Acquisition https://www.akamai.com/blog/security/2024/jan/api-security-best-practices-for-api-activity-data-acquisition Abigail Ojeda https://www.akamai.com/blog/security/2024/jan/api-security-best-practices-for-api-activity-data-acquisition Thu, 25 Jan 2024 14:00:00 UTC What Is API Detection and Response? https://www.akamai.com/blog/security/2024/jan/what-is-api-detection-and-response Edward Roberts https://www.akamai.com/blog/security/2024/jan/what-is-api-detection-and-response Thu, 25 Jan 2024 14:00:00 UTC Integrating mPulse’s Beacon API with EdgeWorkers to Visualize All Client Requests Akamai mPulse combines with Akamai EdgeWorkers to visualize any client request and uses its http-request module to let users send their own requests. https://www.akamai.com/blog/edge/2024/jan/integrating-mpulses-beacon-api-edgeworkers-visualize-client-requests Hitoshi Kaneko https://www.akamai.com/blog/edge/2024/jan/integrating-mpulses-beacon-api-edgeworkers-visualize-client-requests Wed, 24 Jan 2024 14:00:00 UTC Reduce API Security Risk by Fixing Runtime Threats in Code Faster https://www.akamai.com/blog/security/2024/jan/reduce-api-security-risk-fixing-runtime-threats-in-code-faster Abigail Ojeda https://www.akamai.com/blog/security/2024/jan/reduce-api-security-risk-fixing-runtime-threats-in-code-faster Tue, 16 Jan 2024 14:00:00 UTC Akamai’s Perspective on January’s Patch Tuesday 2024 https://www.akamai.com/blog/security-research/2024/jan/akamai-perspective-patch-tuesday-january-2024 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2024/jan/akamai-perspective-patch-tuesday-january-2024 Fri, 12 Jan 2024 15:00:00 UTC Noname Security Platform Updates: 3.25 Release https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-325-release Stas Neyman https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-325-release Thu, 11 Jan 2024 20:23:00 UTC You Had Me at Hi — Mirai-Based NoaBot Makes an Appearance https://www.akamai.com/blog/security-research/2024/jan/mirai-based-noabot-crypto-mining Stiv Kupchik https://www.akamai.com/blog/security-research/2024/jan/mirai-based-noabot-crypto-mining Wed, 10 Jan 2024 15:00:00 UTC How Edge Computing Is Transforming Healthcare There are myriad ways the healthcare and life sciences ecosystem benefits from edge computing. Read about the top five use cases for edge computing in healthcare. https://www.akamai.com/blog/security/2024/jan/how-edge-computing-transforming-healthcare Carley Thornell https://www.akamai.com/blog/security/2024/jan/how-edge-computing-transforming-healthcare Wed, 10 Jan 2024 14:00:00 UTC Make Git Your Single Source of Truth for Application and Infrastructure Delivery https://www.akamai.com/blog/developers/2024/jan/gitops-automation-strategy-benefits Billy Thompson https://www.akamai.com/blog/developers/2024/jan/gitops-automation-strategy-benefits Wed, 10 Jan 2024 10:20:00 UTC A Retrospective on DDoS Trends in 2023 and Actionable Strategies for 2024 https://www.akamai.com/blog/security/2024/jan/a-retrospective-on-ddos-trends-in-2023 Sven Dummer & Sandeep Rath https://www.akamai.com/blog/security/2024/jan/a-retrospective-on-ddos-trends-in-2023 Tue, 09 Jan 2024 14:00:00 UTC Safeguarding Patient Health Data Means Balancing Access and Security Increased access to health data can leave providers and insurers vulnerable to data breaches, so it’s vital to invest in cybersecurity that can protect networks. https://www.akamai.com/blog/security/2023/dec/safeguarding-patient-health-data-balancing-access-security Carley Thornell https://www.akamai.com/blog/security/2023/dec/safeguarding-patient-health-data-balancing-access-security Tue, 02 Jan 2024 14:00:00 UTC Customize Deployments with Akamai's Metadata Service https://www.akamai.com/blog/developers/2024/jan/customize-deployments-with-akamais-metadata-service Akamai https://www.akamai.com/blog/developers/2024/jan/customize-deployments-with-akamais-metadata-service Tue, 02 Jan 2024 10:20:00 UTC Weaponizing DHCP DNS Spoofing — A Hands-On Guide https://www.akamai.com/blog/security-research/2023/dec/weaponizing-dhcp-dns-spoofing-hands-on-guide Ori David https://www.akamai.com/blog/security-research/2023/dec/weaponizing-dhcp-dns-spoofing-hands-on-guide Thu, 21 Dec 2023 15:00:00 UTC Akamai’s Responsibility to Our Enterprise Customers https://www.akamai.com/blog/news/2023/dec/akamai-responsibility-to-our-enterprise-customers Adam Karon https://www.akamai.com/blog/news/2023/dec/akamai-responsibility-to-our-enterprise-customers Thu, 21 Dec 2023 14:00:00 UTC Noname Security Platform Updates: 3.24 Release https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-324-release Stas Neyman https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-324-release Thu, 21 Dec 2023 02:40:00 UTC Women Can Make a Difference in the Field of Data Science https://www.akamai.com/blog/culture/2023/dec/women-can-make-a-difference-in-data-science Tashema Nichols-Jones https://www.akamai.com/blog/culture/2023/dec/women-can-make-a-difference-in-data-science Wed, 20 Dec 2023 14:00:00 UTC The Do’s and Don’ts of Modern API Security https://www.akamai.com/blog/security/2023/dec/the-dos-and-donts-of-api-security Abigail Ojeda https://www.akamai.com/blog/security/2023/dec/the-dos-and-donts-of-api-security Wed, 20 Dec 2023 14:00:00 UTC Novel Detection of Process Injection Using Network Anomalies https://www.akamai.com/blog/security-research/2023/dec/novel-detection-methodology-process-injection-using-network-anomalies Ofir Shen https://www.akamai.com/blog/security-research/2023/dec/novel-detection-methodology-process-injection-using-network-anomalies Tue, 19 Dec 2023 15:00:00 UTC Insights from Survey of Financial Services Cyber Leaders in Asia-Pacific https://www.akamai.com/blog/security/2023/dec/insights-from-survey-financial-services-cyber-leaders-asia-pacific Cheryl Chiodi https://www.akamai.com/blog/security/2023/dec/insights-from-survey-financial-services-cyber-leaders-asia-pacific Tue, 19 Dec 2023 14:00:00 UTC Mute the Sound: Chaining Vulnerabilities to Achieve RCE on Outlook: Pt 1 https://www.akamai.com/blog/security-research/2023/dec/chaining-vulnerabilities-to-achieve-rce-part-one Ben Barnea https://www.akamai.com/blog/security-research/2023/dec/chaining-vulnerabilities-to-achieve-rce-part-one Mon, 18 Dec 2023 15:00:00 UTC Mute the Sound: Chaining Vulnerabilities to Achieve RCE on Outlook: Pt 2 https://www.akamai.com/blog/security-research/2023/dec/chaining-vulnerabilities-to-achieve-rce-part-two Ben Barnea https://www.akamai.com/blog/security-research/2023/dec/chaining-vulnerabilities-to-achieve-rce-part-two Mon, 18 Dec 2023 15:00:00 UTC The Shift to Distributed Cloud: The Next Era of Cloud Infrastructure https://www.akamai.com/blog/cloud/2023/dec/the-next-era-of-cloud-infrastructure Mike Maney https://www.akamai.com/blog/cloud/2023/dec/the-next-era-of-cloud-infrastructure Mon, 18 Dec 2023 14:00:00 UTC Akamai’s Perspective on December’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/2023/dec/akamai-perspective-patch-tuesday-december-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2023/dec/akamai-perspective-patch-tuesday-december-2023 Fri, 15 Dec 2023 18:00:00 UTC How to Defend Against Digital Cyberthreats This Holiday Season https://www.akamai.com/blog/security/2023/dec/defend-against-digital-cyberthreats-this-holiday-season Reuben Koh https://www.akamai.com/blog/security/2023/dec/defend-against-digital-cyberthreats-this-holiday-season Fri, 15 Dec 2023 14:00:00 UTC What We've Learned from Media Cloud Adoption Trends Read the top takeaways from a global survey of leaders in the media and entertainment industry about their cloud adoption experiences and challenges. https://www.akamai.com/blog/cloud/2023/dec/learned-media-cloud-adoption-trends Todd Loewenstein & Peter Chave https://www.akamai.com/blog/cloud/2023/dec/learned-media-cloud-adoption-trends Thu, 14 Dec 2023 14:00:00 UTC Observed Exploitation Attempts of Struts 2 S2-066 Vulnerability (CVE-2023-50164) The Akamai Security Intelligence Group has seen numerous exploitation attempts on Apache Struts 2 since December 7, 2023, when a critical CVE was released. https://www.akamai.com/blog/security-research/2023/dec/apache-struts-cve-exploitation-attempts Maxim Zavodchik, Sam Tinklenberg, Neeraj Pradeep & Noam Atias https://www.akamai.com/blog/security-research/2023/dec/apache-struts-cve-exploitation-attempts Thu, 14 Dec 2023 10:00:40 UTC Actively Exploited Vulnerability in QNAP VioStor NVR: Fixed, Patches Available https://www.akamai.com/blog/security-research/2023/dec/qnap-viostor-zero-day-vulnerability-spreading-mirai-patched Chad Seaman & Larry Cashdollar https://www.akamai.com/blog/security-research/2023/dec/qnap-viostor-zero-day-vulnerability-spreading-mirai-patched Thu, 14 Dec 2023 08:00:00 UTC Our Top Takeaways from 2023 Gartner® Market Guide for Microsegmentation https://www.akamai.com/blog/security/2023/dec/top-takeaways-2023-gartner-market-guide-microsegmentation Ravit Greitser https://www.akamai.com/blog/security/2023/dec/top-takeaways-2023-gartner-market-guide-microsegmentation Wed, 13 Dec 2023 14:00:00 UTC Improve Performance with HTTP/2 Stream Prioritization https://www.akamai.com/blog/performance/2023/dec/improve-performance-with-http2-stream-prioritization Mihai Puchiu & Julio Chaves Herrera https://www.akamai.com/blog/performance/2023/dec/improve-performance-with-http2-stream-prioritization Tue, 12 Dec 2023 06:00:00 UTC Akamai EdgeWorkers for SaaS: Balancing Customization and Security https://www.akamai.com/blog/edge/2023/dec/akamai-edgeworkers-for-saas-balancing-customization-and-security Aaron Alquist https://www.akamai.com/blog/edge/2023/dec/akamai-edgeworkers-for-saas-balancing-customization-and-security Mon, 11 Dec 2023 14:00:00 UTC Going Cloud Native, and What “Portability” Really Means https://www.akamai.com/blog/cloud/2023/dec/going-cloud-native-what-portability-really-means Jay Jenkins https://www.akamai.com/blog/cloud/2023/dec/going-cloud-native-what-portability-really-means Fri, 08 Dec 2023 14:00:00 UTC Spoofing DNS Records by Abusing DHCP DNS Dynamic Updates https://www.akamai.com/blog/security-research/2023/dec/spoofing-dns-by-abusing-dhcp Ori David https://www.akamai.com/blog/security-research/2023/dec/spoofing-dns-by-abusing-dhcp Thu, 07 Dec 2023 15:00:00 UTC November’s Shopping Holidays: Online Shopping, Sales, and Magecart Attacks https://www.akamai.com/blog/security-research/2023/dec/online-shopping-sales-and-magecart-attacks Gal Meiri https://www.akamai.com/blog/security-research/2023/dec/online-shopping-sales-and-magecart-attacks Thu, 07 Dec 2023 14:00:00 UTC Monolith Versus Microservices: Weigh the Pros and Cons of Both Configs https://www.akamai.com/blog/cloud/2023/dec/monolith-versus-microservices-weigh-the-difference Pavel Despot https://www.akamai.com/blog/cloud/2023/dec/monolith-versus-microservices-weigh-the-difference Wed, 06 Dec 2023 14:00:00 UTC Actively Exploited Vulnerability in FXC Routers: Fixed, Patches Available https://www.akamai.com/blog/security-research/2023/dec/zero-day-vulnerability-spreading-mirai-patched Kyle Lefton, Chad Seaman & Larry Cashdollar https://www.akamai.com/blog/security-research/2023/dec/zero-day-vulnerability-spreading-mirai-patched Wed, 06 Dec 2023 06:00:00 UTC Akamai Account Protector’s New Protection Against Account Opening Abuse https://www.akamai.com/blog/security/2023/nov/akamai-account-protector-abuse-protection-solution Christine Ferrusi Ross https://www.akamai.com/blog/security/2023/nov/akamai-account-protector-abuse-protection-solution Mon, 04 Dec 2023 14:00:00 UTC Healthcare Trends in 2024: Challenges and Opportunities https://www.akamai.com/blog/security/2023/dec/healthcare-trends-in-2024-challenges-and-opportunities Carley Thornell https://www.akamai.com/blog/security/2023/dec/healthcare-trends-in-2024-challenges-and-opportunities Mon, 04 Dec 2023 14:00:00 UTC Noname Security Platform Updates: November 2023 https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-november-2023 Stas Neyman https://www.akamai.com/blog/security/2024/sep/noname-security-platform-updates-november-2023 Sat, 02 Dec 2023 01:21:00 UTC What Is Distributed Cloud and Why Should You Care? https://www.akamai.com/blog/cloud/2023/nov/what-is-distributed-cloud-why-should-you-care Pavel Despot https://www.akamai.com/blog/cloud/2023/nov/what-is-distributed-cloud-why-should-you-care Fri, 01 Dec 2023 16:16:00 UTC Say Goodbye to Monolithic EdgeWorkers: Introducing Flexible Composition (Part 1) https://www.akamai.com/blog/edge/2023/nov/say-goodbye-to-monolithic-edgeworkers-introducing-flexible-composition-part-1 Evan Hughes & AJ Johnson https://www.akamai.com/blog/edge/2023/nov/say-goodbye-to-monolithic-edgeworkers-introducing-flexible-composition-part-1 Tue, 28 Nov 2023 14:00:00 UTC Defeat Web Shell WSO-NG https://www.akamai.com/blog/security-research/2023/nov/defeating-webshells-wso-ng Dennis German & Maxim Zavodchik https://www.akamai.com/blog/security-research/2023/nov/defeating-webshells-wso-ng Wed, 22 Nov 2023 15:00:00 UTC InfectedSlurs Botnet Spreads Mirai via Zero-Days https://www.akamai.com/blog/security-research/2023/nov/new-rce-botnet-spreads-mirai-via-zero-days Akamai SIRT https://www.akamai.com/blog/security-research/2023/nov/new-rce-botnet-spreads-mirai-via-zero-days Tue, 21 Nov 2023 10:00:00 UTC Akamai EdgeWorkers and Uniform: Personalize Web Pages at Scale Without Flicker https://www.akamai.com/blog/edge/2023/nov/akamai-edgeworkers-uniform-personalize-web-pages-at-scale-without-flicker Alex Shyba https://www.akamai.com/blog/edge/2023/nov/akamai-edgeworkers-uniform-personalize-web-pages-at-scale-without-flicker Mon, 20 Nov 2023 14:00:00 UTC Improve User Experience with Parallel Execution of HTTP/2 Multiplexed Requests https://www.akamai.com/blog/performance/2023/nov/improve-ux-with-http2-multiplexed-requests Mihai Puchiu & Julio Chaves Herrera https://www.akamai.com/blog/performance/2023/nov/improve-ux-with-http2-multiplexed-requests Fri, 17 Nov 2023 14:00:00 UTC Akamai’s Perspective on November’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/2023/nov/akamai-perspective-patch-tuesday-november-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2023/nov/akamai-perspective-patch-tuesday-november-2023 Thu, 16 Nov 2023 15:00:00 UTC What Else Can You Do to Defend Against Bots? https://www.akamai.com/blog/developers/2023/nov/what-else-can-you-do-to-defend-against-bots Jacob Lovell https://www.akamai.com/blog/developers/2023/nov/what-else-can-you-do-to-defend-against-bots Thu, 16 Nov 2023 14:00:00 UTC REST API Security Best Practices https://www.akamai.com/blog/security/2023/nov/rest-api-security-best-practices Abigail Ojeda https://www.akamai.com/blog/security/2023/nov/rest-api-security-best-practices Wed, 15 Nov 2023 14:00:00 UTC Beyond Vulnerabilities: Why API Abuse Is a Critical Challenge https://www.akamai.com/blog/security/2023/nov/beyond-vulnerabilities-why-api-abuse-is-a-critical-challenge Abigail Ojeda https://www.akamai.com/blog/security/2023/nov/beyond-vulnerabilities-why-api-abuse-is-a-critical-challenge Wed, 15 Nov 2023 14:00:00 UTC API Security in a Zero Trust World https://www.akamai.com/blog/security/2023/nov/api-security-in-a-zero-trust-world Abigail Ojeda https://www.akamai.com/blog/security/2023/nov/api-security-in-a-zero-trust-world Wed, 15 Nov 2023 14:00:00 UTC What Does XDR Have to Do with API Security? https://www.akamai.com/blog/security/2023/nov/what-does-xdr-have-to-do-with-api-security Abigail Ojeda https://www.akamai.com/blog/security/2023/nov/what-does-xdr-have-to-do-with-api-security Wed, 15 Nov 2023 14:00:00 UTC Support Telecom Providers on the Journey from Telco to Techco https://www.akamai.com/blog/security/2023/nov/support-telecom-providers-from-telco-to-techco Sandra Murphy https://www.akamai.com/blog/security/2023/nov/support-telecom-providers-from-telco-to-techco Mon, 13 Nov 2023 14:00:00 UTC Virtually Patch Vulnerabilities with Microsegmentation and Akamai Hunt https://www.akamai.com/blog/security/2023/nov/virtually-patch-vulnerabilities-with-microsegmentation-akamai-hunt Jacob Abrams https://www.akamai.com/blog/security/2023/nov/virtually-patch-vulnerabilities-with-microsegmentation-akamai-hunt Thu, 09 Nov 2023 14:00:00 UTC 6 Strategies to Combat Advanced Persistent Threats https://www.akamai.com/blog/security/2023/nov/6-strategies-to-combat-advanced-persistent-threats Steve Winterfeld & Sandeep Rath https://www.akamai.com/blog/security/2023/nov/6-strategies-to-combat-advanced-persistent-threats Wed, 08 Nov 2023 14:00:00 UTC Akamai Named an Overall Leader for API Security https://www.akamai.com/blog/security/2023/nov/akamai-named-an-overall-leader-for-api-security Abigail Ojeda https://www.akamai.com/blog/security/2023/nov/akamai-named-an-overall-leader-for-api-security Wed, 08 Nov 2023 10:00:00 UTC The Hidden Costs of Outsourcing Healthcare Revenue Cycle Management https://www.akamai.com/blog/security/2023/oct/the-hidden-costs-of-outsourcing-healthcare-rcm Carley Thornell https://www.akamai.com/blog/security/2023/oct/the-hidden-costs-of-outsourcing-healthcare-rcm Wed, 01 Nov 2023 13:00:00 UTC Protecting Small and Medium-Sized Businesses from Cyberthreats https://www.akamai.com/blog/security/2023/oct/protecting-small-and-medium-sized-businesses-from-cyberthreats Bruce Van Nice https://www.akamai.com/blog/security/2023/oct/protecting-small-and-medium-sized-businesses-from-cyberthreats Fri, 27 Oct 2023 14:00:00 UTC How to Defend Against Account Opening Abuse https://www.akamai.com/blog/security/2023/oct/how-to-defend-against-account-opening-abuse David Sénécal https://www.akamai.com/blog/security/2023/oct/how-to-defend-against-account-opening-abuse Thu, 26 Oct 2023 13:00:00 UTC Expert Cybersecurity Awareness: Test Your Attack Knowledge Hey, security experts: Can you recognize an attack from the code alone? Test your attack knowledge skills with this quick quiz. https://www.akamai.com/blog/security-research/2023/oct/expert-cybersecurity-awareness-test-attack-knowledge Christine Ferrusi Ross https://www.akamai.com/blog/security-research/2023/oct/expert-cybersecurity-awareness-test-attack-knowledge Wed, 25 Oct 2023 13:00:00 UTC The Importance of Allyship for Women in Tech https://www.akamai.com/blog/culture/2023/oct/the-importance-of-allyship-for-women-in-tech Tashema Nichols-Jones https://www.akamai.com/blog/culture/2023/oct/the-importance-of-allyship-for-women-in-tech Tue, 24 Oct 2023 13:00:00 UTC Get EdgeWorkers Error Reports with mPulse https://www.akamai.com/blog/edge/2023/oct/get-edgeworkers-error-reports-with-mpulse Hitoshi Kaneko https://www.akamai.com/blog/edge/2023/oct/get-edgeworkers-error-reports-with-mpulse Mon, 23 Oct 2023 13:00:00 UTC Detect and Remediate Attacks: Practical Applications for Machine Learning https://www.akamai.com/blog/security/2023/oct/detect-and-remediate-attacks-with-akamai-hunt Or Zuckerman, Ido Sakazi , Yarin Ozery & Gil Goren https://www.akamai.com/blog/security/2023/oct/detect-and-remediate-attacks-with-akamai-hunt Fri, 20 Oct 2023 13:00:00 UTC Deep Analysis of Hospitality Phishing Campaign Shows Global Threat https://www.akamai.com/blog/security-research/2023/oct/hospitality-phishing-campaign-dns-analysis-global-threat Stijn Tilborghs & Connor Faulkner https://www.akamai.com/blog/security-research/2023/oct/hospitality-phishing-campaign-dns-analysis-global-threat Thu, 19 Oct 2023 14:00:00 UTC How Fraudsters Execute Account Opening Abuse https://www.akamai.com/blog/security/2023/oct/how-fraudsters-execute-account-opening-abuse David Sénécal https://www.akamai.com/blog/security/2023/oct/how-fraudsters-execute-account-opening-abuse Thu, 19 Oct 2023 13:00:00 UTC Akamai Named an Overall Leader in Fraud Reduction Intelligence Platforms https://www.akamai.com/blog/security/2023/oct/akamai-named-leader-in-fraud-reduction-intelligence-platforms Christine Ferrusi Ross https://www.akamai.com/blog/security/2023/oct/akamai-named-leader-in-fraud-reduction-intelligence-platforms Wed, 18 Oct 2023 13:00:00 UTC How Akamai Protects Customers from HTTP/2 Rapid Reset DDoS Attacks https://www.akamai.com/blog/security/2023/oct/akamai-protects-customers-http2-rapid-reset-ddos-attacks Dennis Birchard & Sandeep Rath https://www.akamai.com/blog/security/2023/oct/akamai-protects-customers-http2-rapid-reset-ddos-attacks Mon, 16 Oct 2023 05:00:00 UTC Akamai’s Perspective on October’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/2023/oct/akamai-perspective-patch-tuesday-october-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2023/oct/akamai-perspective-patch-tuesday-october-2023 Thu, 12 Oct 2023 14:00:00 UTC An Open Partnership Ecosystem for Building Solutions at the Edge https://www.akamai.com/blog/cloud/2023/oct/an-open-partnership-ecosystem-for-building-solutions-at-the-edge Alan Evans https://www.akamai.com/blog/cloud/2023/oct/an-open-partnership-ecosystem-for-building-solutions-at-the-edge Wed, 11 Oct 2023 13:00:00 UTC The 2023 Akamai Partner Award Winners: A Spotlight on Success https://www.akamai.com/blog/partners/2023/oct/2023-akamai-partner-award-winners Akamai https://www.akamai.com/blog/partners/2023/oct/2023-akamai-partner-award-winners Tue, 10 Oct 2023 13:00:00 UTC The Art of Concealment: A New Magecart Campaign That’s Abusing 404 Pages https://www.akamai.com/blog/security-research/2023/oct/magecart-new-technique-404-pages-skimmer Roman Lvovsky https://www.akamai.com/blog/security-research/2023/oct/magecart-new-technique-404-pages-skimmer Mon, 09 Oct 2023 14:00:00 UTC Put Your Best Foot Forward: The Impact of Sneaker Bots on Holiday Shopping https://www.akamai.com/blog/security-research/2023/oct/cam-sneaker-bots-and-credential-stuffing-this-holiday-season Tricia Howard & Joseph Martinez https://www.akamai.com/blog/security-research/2023/oct/cam-sneaker-bots-and-credential-stuffing-this-holiday-season Thu, 05 Oct 2023 14:00:00 UTC Taking Action on Climate Change at Climate Week NYC 2023 https://www.akamai.com/blog/sustainability/2023/oct/taking-action-at-climate-week-nyc-2023 Mike Mattera https://www.akamai.com/blog/sustainability/2023/oct/taking-action-at-climate-week-nyc-2023 Thu, 05 Oct 2023 13:00:00 UTC Guidance on the Recent Critical libwebp and libvpx Vulnerabilities https://www.akamai.com/blog/security-research/2023/oct/guidance-on-critical-chrome-vulnerabilities-libwebp-and-libvpx Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/2023/oct/guidance-on-critical-chrome-vulnerabilities-libwebp-and-libvpx Thu, 05 Oct 2023 07:00:00 UTC Prioritizing the Pharmaceutical Supply Chain for Healthcare Resiliency https://www.akamai.com/blog/edge/2023/oct/prioritizing-the-pharmaceutical-supply-chain-for-healthcare-resiliency Carley Thornell https://www.akamai.com/blog/edge/2023/oct/prioritizing-the-pharmaceutical-supply-chain-for-healthcare-resiliency Wed, 04 Oct 2023 13:00:00 UTC Client-Side Protection & Compliance: Fight Threats, Help Meet PCI DSS v4 https://www.akamai.com/blog/security/2023/sep/fight-threats-help-meet-pci-dss-v4 Emily Lyons https://www.akamai.com/blog/security/2023/sep/fight-threats-help-meet-pci-dss-v4 Tue, 03 Oct 2023 13:00:00 UTC A QUIC Shutdown: DoS Vulnerability in Windows Servers Running SMB over QUIC https://www.akamai.com/blog/security-research/2023/sep/smb-over-quic-dos-windows-servers Ben Barnea https://www.akamai.com/blog/security-research/2023/sep/smb-over-quic-dos-windows-servers Thu, 28 Sep 2023 14:00:00 UTC The High Stakes of Innovation: Attack Trends in Financial Services https://www.akamai.com/blog/security-research/attack-trends-in-financial-services Akamai Security Intelligence Group & Steve Winterfeld https://www.akamai.com/blog/security-research/attack-trends-in-financial-services Wed, 27 Sep 2023 05:00:00 UTC Pursuing Cyber Resiliency So Healthcare Can Weather the Worst Storms https://www.akamai.com/blog/security/2023/sep/pursuing-cyber-resiliency-so-healthcare-can-weather-the-worst-storms Carley Thornell https://www.akamai.com/blog/security/2023/sep/pursuing-cyber-resiliency-so-healthcare-can-weather-the-worst-storms Mon, 25 Sep 2023 13:00:00 UTC 3 Lessons We've Learned from Successful Cyberattacks https://www.akamai.com/blog/security/2023/sep/3-lessons-learned-from-successful-cyberattacks Tony Lauro https://www.akamai.com/blog/security/2023/sep/3-lessons-learned-from-successful-cyberattacks Fri, 22 Sep 2023 13:00:00 UTC Unmasking a Sophisticated Phishing Campaign That Targets Hotel Guests https://www.akamai.com/blog/security-research/2023/sep/sophisticated-phishing-campaign-targeting-hospitality Shiran Guez https://www.akamai.com/blog/security-research/2023/sep/sophisticated-phishing-campaign-targeting-hospitality Thu, 21 Sep 2023 14:00:00 UTC Introducing Easy API Security Deployment https://www.akamai.com/blog/security/2023/sep/introducing-easy-api-security-deployment Abigail Ojeda https://www.akamai.com/blog/security/2023/sep/introducing-easy-api-security-deployment Thu, 21 Sep 2023 13:00:00 UTC Akamai Prolexic Now Offers Cloud, On-Prem, and Hybrid DDoS Protection https://www.akamai.com/blog/security/akamai-prolexic-introduces-prolexic-on-prem-and-prolexic-hybrid Sandeep Rath https://www.akamai.com/blog/security/akamai-prolexic-introduces-prolexic-on-prem-and-prolexic-hybrid Wed, 20 Sep 2023 09:30:00 UTC How Account Opening Abuse Affects 6 Industries https://www.akamai.com/blog/security/how-account-opening-abuse-affects-6-industries David Sénécal https://www.akamai.com/blog/security/how-account-opening-abuse-affects-6-industries Tue, 19 Sep 2023 13:00:00 UTC Akamai’s Perspective on September’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-september-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-september-2023 Fri, 15 Sep 2023 14:00:00 UTC PCI DSS v4: Uncovering Web Skimming Threats with Payment Integrations https://www.akamai.com/blog/security/pci-dss-v4-uncovering-web-skimming-threats-with-payment-integrations Boris Kirzner https://www.akamai.com/blog/security/pci-dss-v4-uncovering-web-skimming-threats-with-payment-integrations Thu, 14 Sep 2023 13:00:00 UTC Can't Be Contained: Finding a Command Injection Vulnerability in Kubernetes https://www.akamai.com/blog/security-research/kubernetes-critical-vulnerability-command-injection Tomer Peled https://www.akamai.com/blog/security-research/kubernetes-critical-vulnerability-command-injection Wed, 13 Sep 2023 14:00:00 UTC Choose Your Own Adventure — A Chat About the Future of Edge Computing https://www.akamai.com/blog/edge/choose-your-own-adventure-the-future-of-edge-computing AJ Johnson https://www.akamai.com/blog/edge/choose-your-own-adventure-the-future-of-edge-computing Mon, 11 Sep 2023 13:00:00 UTC Increase Performance, Decrease Costs with a Flexible Distributed Cloud https://www.akamai.com/blog/cloud/increase-performance-decrease-costs-flexible-distributed-cloud Susan McReynolds https://www.akamai.com/blog/cloud/increase-performance-decrease-costs-flexible-distributed-cloud Fri, 08 Sep 2023 13:00:00 UTC Akamai Prevents the Largest DDoS Attack on a U.S. Financial Company https://www.akamai.com/blog/security/akamai-prevents-the-largest-ddos-attack-on-a-us-financial-company Craig Sparling & Sandeep Rath https://www.akamai.com/blog/security/akamai-prevents-the-largest-ddos-attack-on-a-us-financial-company Fri, 08 Sep 2023 13:00:00 UTC Best Practices for Testing Akamai App & API Protector https://www.akamai.com/blog/edge/testing-akamai-app-and-api-protector Jonathan Carvalho https://www.akamai.com/blog/edge/testing-akamai-app-and-api-protector Thu, 07 Sep 2023 13:00:00 UTC DGA Families with Dynamic Seeds: Unexpected Behavior in DNS Traffic https://www.akamai.com/blog/security-research/dga-dynamic-unexpected-behavior-in-dns Connor Faulkner & Stijn Tilborghs https://www.akamai.com/blog/security-research/dga-dynamic-unexpected-behavior-in-dns Wed, 06 Sep 2023 14:00:00 UTC 3 Ways to Use Zero Trust to Reduce Cybercrime Risk in Healthcare https://www.akamai.com/blog/security/use-zero-trust-to-reduce-cybercrime-risk Carley Thornell https://www.akamai.com/blog/security/use-zero-trust-to-reduce-cybercrime-risk Tue, 05 Sep 2023 13:00:00 UTC Media IT Leaders Say Distributed Cloud Will Boost Performance, Lower Cost https://www.akamai.com/blog/cloud/media-it-leaders-say-distributed-cloud-will-boost-performance-lower-cost Todd Loewenstein https://www.akamai.com/blog/cloud/media-it-leaders-say-distributed-cloud-will-boost-performance-lower-cost Fri, 01 Sep 2023 13:00:00 UTC Understanding International Revenue Share Fraud https://www.akamai.com/blog/security/understanding-international-revenue-share-fraud Jagdish Mohite https://www.akamai.com/blog/security/understanding-international-revenue-share-fraud Thu, 31 Aug 2023 13:00:00 UTC The Challenge of Securing APIs for a Luxury Hotel Chain https://www.akamai.com/blog/security/securing-apis-for-a-luxury-hotel-chain Abigail Ojeda https://www.akamai.com/blog/security/securing-apis-for-a-luxury-hotel-chain Wed, 30 Aug 2023 13:00:00 UTC DDoS Attacks Surge Against Vulnerable Assets: Are You Prepared? https://www.akamai.com/blog/security/ddos-attacks-surge-against-vulnerable-assets Craig Sparling https://www.akamai.com/blog/security/ddos-attacks-surge-against-vulnerable-assets Tue, 29 Aug 2023 13:00:00 UTC You Are a Woman in Tech: Own Your Voice https://www.akamai.com/blog/culture/you-are-a-woman-in-tech-own-your-voice Tashema Nichols-Jones https://www.akamai.com/blog/culture/you-are-a-woman-in-tech-own-your-voice Mon, 28 Aug 2023 13:00:00 UTC Connecting Employees Through the Power of Reuse https://www.akamai.com/blog/sustainability/connecting-employees-through-the-power-of-reuse Katie Robinson https://www.akamai.com/blog/sustainability/connecting-employees-through-the-power-of-reuse Fri, 25 Aug 2023 07:00:00 UTC Safeguard Medical Devices: New H-ISAC Guidance on Cusp of FDA Rule https://www.akamai.com/blog/security/safeguard-medical-devices-new-h-isac-guidance-fda-rule Carley Thornell https://www.akamai.com/blog/security/safeguard-medical-devices-new-h-isac-guidance-fda-rule Thu, 24 Aug 2023 13:00:00 UTC 3 Steps to Elevate Your Cybersecurity in a Post-Pandemic World As cybercrime grows more sophisticated in the remote work era, you can take three essential steps to fortify your organization against evolving threats. https://www.akamai.com/blog/security/3-steps-elevate-cybersecurity-post-pandemic-world Sandeep Rath https://www.akamai.com/blog/security/3-steps-elevate-cybersecurity-post-pandemic-world Wed, 23 Aug 2023 13:00:00 UTC Akamai World Tour 2023: Let’s Connect on Security and Cloud Innovation https://www.akamai.com/blog/news/akamai-world-tour-2023 Adam Karon & Mani Sundaram https://www.akamai.com/blog/news/akamai-world-tour-2023 Tue, 22 Aug 2023 13:00:00 UTC Akamai Develops Real-Time Detections for DNS Exfiltration https://www.akamai.com/blog/security/akamais-real-time-detections-for-dns-exfiltration Yarin Ozery https://www.akamai.com/blog/security/akamais-real-time-detections-for-dns-exfiltration Thu, 17 Aug 2023 13:00:00 UTC Akamai Defends Against the OWASP Top 10 API Security Risks https://www.akamai.com/blog/security/akamai-defends-against-owasp-top-10-api-security-risks Abigail Ojeda https://www.akamai.com/blog/security/akamai-defends-against-owasp-top-10-api-security-risks Wed, 16 Aug 2023 13:00:00 UTC Updated Kmsdx Binary Shows KmsdBot Is Targeting the IoT Landscape https://www.akamai.com/blog/security-research/updated-kmsdbot-binary-targeting-iot Larry Cashdollar https://www.akamai.com/blog/security-research/updated-kmsdbot-binary-targeting-iot Tue, 15 Aug 2023 14:00:00 UTC Private Mobile Connectivity: More Visibility, Security, and Control https://www.akamai.com/blog/edge/private-mobile-connectivity-more-visibility-security-control Sandra Murphy https://www.akamai.com/blog/edge/private-mobile-connectivity-more-visibility-security-control Fri, 11 Aug 2023 13:00:00 UTC Give Me an E, Give Me a T, Give Me a W. What Do You Get? RPC! https://www.akamai.com/blog/security-research/msrpc-defense-measures-in-windows-etw Stiv Kupchik https://www.akamai.com/blog/security-research/msrpc-defense-measures-in-windows-etw Thu, 10 Aug 2023 08:30:00 UTC Xurum: New Magento Campaign Discovered https://www.akamai.com/blog/security-research/new-sophisticated-magento-campaign-xurum-webshell Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/new-sophisticated-magento-campaign-xurum-webshell Wed, 09 Aug 2023 14:00:00 UTC Akamai’s Perspective on August’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-august-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-august-2023 Wed, 09 Aug 2023 05:00:00 UTC Ransomware on the Move: Evolving Exploitation Techniques and the Active Pursuit of Zero-Days https://www.akamai.com/blog/security-research/ransomware-on-the-move-evolving-exploitation-techniques Akamai Security Intelligence Group & Steve Winterfeld https://www.akamai.com/blog/security-research/ransomware-on-the-move-evolving-exploitation-techniques Mon, 07 Aug 2023 13:00:00 UTC A Distributed Cloud Platform Is a Priority for Gaming IT Leaders https://www.akamai.com/blog/cloud/distributed-cloud-platform-priority-for-gaming-it-leaders Pavel Despot https://www.akamai.com/blog/cloud/distributed-cloud-platform-priority-for-gaming-it-leaders Fri, 04 Aug 2023 13:00:00 UTC A CEO’s Perspective: Data Transfer Is the Silent Killer https://www.akamai.com/blog/cloud/data-transfer-is-the-silent-killer Pavel Despot https://www.akamai.com/blog/cloud/data-transfer-is-the-silent-killer Thu, 03 Aug 2023 13:00:00 UTC Protect Every API Anywhere with API Security https://www.akamai.com/blog/security/protect-every-api-anywhere-with-api-security Abigail Ojeda https://www.akamai.com/blog/security/protect-every-api-anywhere-with-api-security Wed, 02 Aug 2023 13:00:00 UTC The Power of Proximity: Local DDoS Scrubbing Centers Enhance Security https://www.akamai.com/blog/security/the-power-of-proximity-local-ddos-scrubbing-centers-enhance-security Haru Kaneko https://www.akamai.com/blog/security/the-power-of-proximity-local-ddos-scrubbing-centers-enhance-security Fri, 28 Jul 2023 13:00:00 UTC The Never-Ending Phishing Scam: When “Natalie Hamilton” Reemerged with a Vengeance (and Power Drill) https://www.akamai.com/blog/security-research/never-ending-sophisticated-phishing-scam-campaign Or Katz https://www.akamai.com/blog/security-research/never-ending-sophisticated-phishing-scam-campaign Thu, 27 Jul 2023 14:00:00 UTC The Increased Use of Mobile Devices Expands the Threat Landscape https://www.akamai.com/blog/security/increased-use-mobile-devices-expands-threat-landscape Or Katz & Victoria Ward https://www.akamai.com/blog/security/increased-use-mobile-devices-expands-threat-landscape Wed, 26 Jul 2023 13:00:00 UTC Why It’s Important to Make Tech More Accessible https://www.akamai.com/blog/culture/why-its-important-to-make-tech-more-accessible Tashema Nichols-Jones https://www.akamai.com/blog/culture/why-its-important-to-make-tech-more-accessible Tue, 25 Jul 2023 13:00:00 UTC Identifying a DNS Exfiltration Attack That Wasn’t Real — This Time A recent red team DNS exfiltration alert confirms that Akamai Secure Internet Access is an effective security tool for this type of detection and analysis. https://www.akamai.com/blog/security/identifying-dns-exfiltration-attack-that-wasnt-real-this-time Moshe Cohen https://www.akamai.com/blog/security/identifying-dns-exfiltration-attack-that-wasnt-real-this-time Mon, 24 Jul 2023 13:00:00 UTC ZEROgrid: A Dependable, Cost-Effective, Low-Emission Power System https://www.akamai.com/blog/sustainability/zerogrid-a-dependable-low-emission-power-system Mike Mattera https://www.akamai.com/blog/sustainability/zerogrid-a-dependable-low-emission-power-system Fri, 21 Jul 2023 13:00:00 UTC Multiple Extortion: An Existential Threat Explore effective strategies and comprehensive cybersecurity measures to protect your organization’s data from increasingly sophisticated cybercrimes. https://www.akamai.com/blog/security/multiple-extortion-existential-threat Sven Dummer https://www.akamai.com/blog/security/multiple-extortion-existential-threat Thu, 20 Jul 2023 13:00:00 UTC Exploiting SteelSeries' Subapplication Mechanism for Privilege Escalation https://www.akamai.com/blog/security-research/exploit-steelseries-subapp-privilege-escalation Tomer Peled https://www.akamai.com/blog/security-research/exploit-steelseries-subapp-privilege-escalation Wed, 19 Jul 2023 07:00:00 UTC Adopting Comprehensive API Security Falls Behind Need https://www.akamai.com/blog/security/adopting-comprehensive-api-security-falls-behind-need Christine Ferrusi Ross https://www.akamai.com/blog/security/adopting-comprehensive-api-security-falls-behind-need Tue, 18 Jul 2023 13:00:00 UTC Akamai’s Perspective on July’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-july-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-july-2023 Fri, 14 Jul 2023 14:00:00 UTC Aging-in-Place: Why HCIT Professionals Should Adopt Zero Trust Security https://www.akamai.com/blog/security/hcit-professionals-should-adopt-zero-trust-security Carley Thornell https://www.akamai.com/blog/security/hcit-professionals-should-adopt-zero-trust-security Fri, 14 Jul 2023 13:00:00 UTC (Micro)Segmentation from a Practical Perspective https://www.akamai.com/blog/security-research/segmentation-from-a-practical-perspective Stiv Kupchik https://www.akamai.com/blog/security-research/segmentation-from-a-practical-perspective Thu, 13 Jul 2023 14:00:00 UTC Charting a Course for the Modern Cloud https://www.akamai.com/blog/cloud/charting-a-course-for-the-modern-cloud Adam Karon https://www.akamai.com/blog/cloud/charting-a-course-for-the-modern-cloud Wed, 12 Jul 2023 10:30:00 UTC Conquering Adversarial Bots and Humans to Prevent Account Takeovers https://www.akamai.com/blog/security/conquering-adversarial-bots-and-humans Ryan Gao & Brett Hickinbotham https://www.akamai.com/blog/security/conquering-adversarial-bots-and-humans Fri, 07 Jul 2023 13:00:00 UTC Multicloud Strategies Must Evolve to Meet the Needs of Global IT Leaders In a Forrester study commissioned by Akamai, global IT leaders explain why they are adopting cloud-native architecture and distributing apps and workloads. https://www.akamai.com/blog/cloud/multicloud-strategies-must-evolve Mike Maney https://www.akamai.com/blog/cloud/multicloud-strategies-must-evolve Wed, 05 Jul 2023 13:00:00 UTC Why Open Enrollment Readiness Should Be a Year-Round Strategy Today’s malicious actors see the healthcare industry as a target-rich environment, so getting ready for open enrollment should be a year-round process. https://www.akamai.com/blog/security/why-open-enrollment-readiness-should-be-year-round-strategy Carley Thornell https://www.akamai.com/blog/security/why-open-enrollment-readiness-should-be-year-round-strategy Mon, 03 Jul 2023 13:00:00 UTC As Phishing Websites Flourish, Brands Seek Protection from Impersonation https://www.akamai.com/blog/security/brands-seek-protection-from-impersonation Danielle Walter https://www.akamai.com/blog/security/brands-seek-protection-from-impersonation Fri, 30 Jun 2023 13:00:00 UTC 3 Ways for Financial Institutions to Fight Account Takeover Fraud https://www.akamai.com/blog/security/ways-financial-institutions-can-fight-account-takeover-fraud Cheryl Chiodi https://www.akamai.com/blog/security/ways-financial-institutions-can-fight-account-takeover-fraud Thu, 29 Jun 2023 13:00:00 UTC Proxyjacking: The Latest Cybercriminal Side Hustle https://www.akamai.com/blog/security-research/proxyjacking-new-campaign-cybercriminal-side-hustle Allen West https://www.akamai.com/blog/security-research/proxyjacking-new-campaign-cybercriminal-side-hustle Thu, 29 Jun 2023 07:30:00 UTC The L in Linux Stands for Lateral Movement https://www.akamai.com/blog/security-research/linux-lateral-movement-more-than-ssh Stiv Kupchik https://www.akamai.com/blog/security-research/linux-lateral-movement-more-than-ssh Wed, 28 Jun 2023 14:00:00 UTC Inclusion in Tech: Discover Diverse Career Paths for Women in Tech Hema Patel discusses inclusive career paths, cancel culture in the workplace, and defying the traditional education limitations for women in tech. https://www.akamai.com/blog/culture/inclusion-in-tech-discover-diverse-career-paths Tashema Nichols-Jones https://www.akamai.com/blog/culture/inclusion-in-tech-discover-diverse-career-paths Tue, 27 Jun 2023 13:00:00 UTC Navigating a New Reality: Content Personalization at Scale Prioritizing content personalization can improve user engagement, enhance customer experiences, and boost revenue on a global scale. https://www.akamai.com/blog/edge/navigating-new-reality-content-personalization-at-scale Shane Keats https://www.akamai.com/blog/edge/navigating-new-reality-content-personalization-at-scale Thu, 22 Jun 2023 13:00:00 UTC OWASP Top 10 API Security Risks: The 2023 Edition Is Finally Here We review the final changes in the 2023 update to the OWASP Top 10 API Security Risks to help you on your journey to secure your APIs. https://www.akamai.com/blog/security/owasp-top-10-api-security-risks-2023-edition Mike Elissen & Nitzan Namer https://www.akamai.com/blog/security/owasp-top-10-api-security-risks-2023-edition Wed, 21 Jun 2023 13:00:00 UTC Akamai SIRT Security Advisory: CVE-2023-26801 Exploited to Spread Mirai Botnet Malware https://www.akamai.com/blog/security-research/cve-2023-26801-exploited-spreading-mirai-botnet Akamai SIRT https://www.akamai.com/blog/security-research/cve-2023-26801-exploited-spreading-mirai-botnet Wed, 21 Jun 2023 10:00:00 UTC Akamai Named a Leader in IDC MarketScape for Network Edge Security as a Service Akamai was named a Leader in the IDC MarketScape for delivering cloud security without performance trade-offs via our mature application security portfolio. https://www.akamai.com/blog/security/akamai-named-leader-idc-marketscape-network-edge-security-service Jim Black https://www.akamai.com/blog/security/akamai-named-leader-idc-marketscape-network-edge-security-service Wed, 21 Jun 2023 09:00:00 UTC Script Security: Achieving PCI DSS v4 Compliance Before the Deadline The new Akamai Page Integrity Manager capabilities are purpose-built to address the latest PCI DSS v4.0 script requirements with one comprehensive tool. https://www.akamai.com/blog/security/script-security-achieving-pci-dss-v4-compliance-before-deadline Emily Lyons https://www.akamai.com/blog/security/script-security-achieving-pci-dss-v4-compliance-before-deadline Wed, 14 Jun 2023 13:00:00 UTC Entering Through the Gift Shop: Attacks on Commerce https://www.akamai.com/blog/security-research/entering-the-gift-shop-attacks-on-commerce Badette Tribbey & Steve Winterfeld https://www.akamai.com/blog/security-research/entering-the-gift-shop-attacks-on-commerce Tue, 13 Jun 2023 13:00:00 UTC Akamai’s Perspective on June’s Patch Tuesday 2023 Every Patch Tuesday stirs up the community. See Akamai's insights and recommendations on what to focus on, and patch, patch, patch! https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-june-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-june-2023 Tue, 13 Jun 2023 09:00:00 UTC Future Growth Relies on Channel Partners https://www.akamai.com/blog/partners/2023/jun/future-growth-relies-on-channel-partners Preeti Alphonso https://www.akamai.com/blog/partners/2023/jun/future-growth-relies-on-channel-partners Fri, 09 Jun 2023 13:00:00 UTC Deploying Harper and Akamai Cloud for Faster API Performance https://www.akamai.com/blog/cloud/deploy-harperdb-akamai-connected-cloud-faster-api-performance Michael King https://www.akamai.com/blog/cloud/deploy-harperdb-akamai-connected-cloud-faster-api-performance Thu, 08 Jun 2023 13:00:00 UTC MOVEit SQLi Zero-Day (CVE-2023-34362) Exploited by CL0P Ransomware Group Akamai Security Intelligence Group, which has been examining the MOVEit vulnerability and its exploitation, provides recommendations for detection and mitigation. https://www.akamai.com/blog/security-research/moveit-sqli-zero-day-exploit-clop-ransomware Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/moveit-sqli-zero-day-exploit-clop-ransomware Thu, 08 Jun 2023 09:00:00 UTC Analyzing Broken User Authentication Threats to JSON Web Tokens https://www.akamai.com/blog/security-research/owasp-authentication-threats-for-json-web-token Nitzan Namer https://www.akamai.com/blog/security-research/owasp-authentication-threats-for-json-web-token Wed, 07 Jun 2023 14:00:00 UTC New Magecart-Style Campaign Abusing Legitimate Websites to Attack Others https://www.akamai.com/blog/security-research/new-magecart-hides-behind-legit-domains Roman Lvovsky https://www.akamai.com/blog/security-research/new-magecart-hides-behind-legit-domains Thu, 01 Jun 2023 05:00:00 UTC Deliver Fast, Reliable, and Secure Web Experiences with HTTP/3 https://www.akamai.com/blog/performance/deliver-fast-reliable-secure-web-experiences-http3 Julio Chaves Herrera https://www.akamai.com/blog/performance/deliver-fast-reliable-secure-web-experiences-http3 Wed, 31 May 2023 13:00:00 UTC Exploring Three Remote Code Execution Vulnerabilities in RPC Runtime https://www.akamai.com/blog/security-research/rpc-runtime-exploring-three-vulnerabilities Ben Barnea https://www.akamai.com/blog/security-research/rpc-runtime-exploring-three-vulnerabilities Fri, 26 May 2023 14:00:00 UTC The Dark Frost Enigma: An Unexpectedly Prevalent Botnet Author Profile https://www.akamai.com/blog/security-research/dark-frost-botnet-unexpected-author-profile Allen West https://www.akamai.com/blog/security-research/dark-frost-botnet-unexpected-author-profile Thu, 25 May 2023 14:00:00 UTC What’s New for Developers: May 2023 https://www.akamai.com/blog/developers/whats-new-for-developers-may-2023 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-may-2023 Wed, 24 May 2023 13:00:00 UTC Today’s Top 4 IT Investment Trends Across the Healthcare Ecosystem https://www.akamai.com/blog/news/top-4-it-investment-trends-healthcare-ecosystem Carley Thornell https://www.akamai.com/blog/news/top-4-it-investment-trends-healthcare-ecosystem Tue, 23 May 2023 13:00:00 UTC Powering and Protecting Life Online with Nature-Positive Action https://www.akamai.com/blog/sustainability/powering-life-online-with-nature-positive-action Katie Robinson https://www.akamai.com/blog/sustainability/powering-life-online-with-nature-positive-action Mon, 22 May 2023 13:00:00 UTC How Technology Changes the Landscape of Our Lives https://www.akamai.com/blog/culture/how-technology-changes-landscape-of-lives Tashema Nichols-Jones https://www.akamai.com/blog/culture/how-technology-changes-landscape-of-lives Thu, 18 May 2023 13:00:00 UTC CVEs: What They Are, and Ways to Mitigate Their Impact https://www.akamai.com/blog/security/cves-what-they-are-ways-to-mitigate-their-impact Jacob Abrams https://www.akamai.com/blog/security/cves-what-they-are-ways-to-mitigate-their-impact Tue, 16 May 2023 13:00:00 UTC Today’s Evolving Cloud Strategies Are Embracing Distributed Computing https://www.akamai.com/blog/cloud/todays-evolving-cloud-strategies-embracing-distributed-computing Liam Eagle https://www.akamai.com/blog/cloud/todays-evolving-cloud-strategies-embracing-distributed-computing Thu, 11 May 2023 13:00:00 UTC The Race to Patch: Attackers Leverage Sample Exploit Code in WordPress Plug-in https://www.akamai.com/blog/security-research/attackers-leverage-sample-exploit-wordpress-plugin Ryan Barnett https://www.akamai.com/blog/security-research/attackers-leverage-sample-exploit-wordpress-plugin Thu, 11 May 2023 09:00:00 UTC Akamai’s Perspective on May’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-may-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-may-2023 Thu, 11 May 2023 05:00:00 UTC From One Vulnerability to Another: Outlook Patch Analysis Reveals Important Flaw in Windows API https://www.akamai.com/blog/security-research/important-outlook-vulnerability-bypass-windows-api Ben Barnea https://www.akamai.com/blog/security-research/important-outlook-vulnerability-bypass-windows-api Wed, 10 May 2023 14:00:00 UTC Hot Topics at Healthcare Conferences: From AI to Cyber Insurance Costs https://www.akamai.com/blog/security/hot-topics-at-healthcare-conferences Carley Thornell https://www.akamai.com/blog/security/hot-topics-at-healthcare-conferences Thu, 04 May 2023 13:00:00 UTC Akamai Integrates DNS Security with Microsoft's Azure Firewall to Protect Cloud Workloads https://www.akamai.com/blog/security/akamai-integrates-dns-security-microsofts-azure-firewall Jim Black https://www.akamai.com/blog/security/akamai-integrates-dns-security-microsofts-azure-firewall Wed, 03 May 2023 13:00:00 UTC AkaRank: Improving Popularity Rankings for Better Threat Intelligence, Part 2 https://www.akamai.com/blog/security/improving-threat-intelligence-part-2-introducing-akarank Noy Aizenberg & Congcong Xing https://www.akamai.com/blog/security/improving-threat-intelligence-part-2-introducing-akarank Tue, 02 May 2023 05:00:00 UTC Zero Trust: Better Cybersecurity Insurance and Lower Healthcare Costs https://www.akamai.com/blog/cloud/zero-trust-better-cybersecurity-insurance-lower-healthcare-costs Carley Thornell & Tony Lauro https://www.akamai.com/blog/cloud/zero-trust-better-cybersecurity-insurance-lower-healthcare-costs Mon, 01 May 2023 13:00:00 UTC Render Pages Faster for Optimized Browsing, Part 5 of 5 Find out what happens once the browser has downloaded usable assets and it's time to display something on-screen. https://www.akamai.com/blog/developers/render-pages-faster-optimized-browsing-part-5-of-5 Akamai Edge Delivery Product Marketing https://www.akamai.com/blog/developers/render-pages-faster-optimized-browsing-part-5-of-5 Fri, 28 Apr 2023 13:00:00 UTC Akamai and the Adoption of Post-Quantum Cryptography https://www.akamai.com/blog/security/akamai-and-post-quantum-cryptography David Rivera & Jan Schaumann https://www.akamai.com/blog/security/akamai-and-post-quantum-cryptography Thu, 27 Apr 2023 13:00:00 UTC Akamai Prolexic Now Comes With a Network Cloud Firewall https://www.akamai.com/blog/security/akamai-prolexic-comes-with-network-cloud-firewall Sven Dummer https://www.akamai.com/blog/security/akamai-prolexic-comes-with-network-cloud-firewall Tue, 25 Apr 2023 13:00:00 UTC Our Journey with FlexBase Emissions https://www.akamai.com/blog/sustainability/journey-flexbase-emissions Katie Robinson https://www.akamai.com/blog/sustainability/journey-flexbase-emissions Tue, 25 Apr 2023 13:00:00 UTC Akamai Brand Guardian Solves the Growing Problem of Impersonation Attacks https://www.akamai.com/blog/security/akamai-brand-protector-solves-impersonation-attacks Danielle Walter https://www.akamai.com/blog/security/akamai-brand-protector-solves-impersonation-attacks Mon, 24 Apr 2023 13:00:00 UTC What’s New for Developers: April 2023 https://www.akamai.com/blog/developers/whats-new-for-developers-april-2023 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-april-2023 Fri, 21 Apr 2023 13:00:00 UTC Embracing Change with Akamai Connected Cloud https://www.akamai.com/blog/sustainability/embracing-change-with-akamai-connected-cloud Mike Mattera https://www.akamai.com/blog/sustainability/embracing-change-with-akamai-connected-cloud Fri, 21 Apr 2023 13:00:00 UTC Akamai Announces Advanced Bot Detections, Global Recognition of Entities https://www.akamai.com/blog/security/akamai-announces-advanced-bot-detections Christine Ferrusi Ross https://www.akamai.com/blog/security/akamai-announces-advanced-bot-detections Thu, 20 Apr 2023 13:00:00 UTC Phishing: The Oldest and Wisest Attack Vector https://www.akamai.com/blog/security/phishing-oldest-wisest-attack-vector Jim Black & Or Katz https://www.akamai.com/blog/security/phishing-oldest-wisest-attack-vector Wed, 19 Apr 2023 13:00:00 UTC Slipping Through the Security Gaps: The Rise of Application and API Attacks https://www.akamai.com/blog/security-research/the-rise-of-application-and-api-attacks Badette Tribbey & Steve Winterfeld https://www.akamai.com/blog/security-research/the-rise-of-application-and-api-attacks Tue, 18 Apr 2023 13:00:00 UTC Simplify Access Security: Integrate ZTNA with Your Cloud Identity Solution https://www.akamai.com/blog/security/simplify-access-security-integrate-ztna Sanjay Sadarangani https://www.akamai.com/blog/security/simplify-access-security-integrate-ztna Mon, 17 Apr 2023 13:00:00 UTC Akamai Foundation: Our Values in Action in 2022 https://www.akamai.com/blog/sustainability/akamai-foundation-our-values-in-action-2022 Natalie Billingham https://www.akamai.com/blog/sustainability/akamai-foundation-our-values-in-action-2022 Fri, 14 Apr 2023 13:00:00 UTC Akamai’s Perspective on April’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-april-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-april-2023 Fri, 14 Apr 2023 05:00:00 UTC Investigating the resurgence of the Mexals campaign https://www.akamai.com/blog/security-research/mexals-cryptojacking-malware-resurgence Stiv Kupchik https://www.akamai.com/blog/security-research/mexals-cryptojacking-malware-resurgence Wed, 12 Apr 2023 14:00:00 UTC Get More from Your Player Analytics and CDN Logs with CMCD https://www.akamai.com/blog/cloud/get-your-player-analytics-with-cmcd Will Law https://www.akamai.com/blog/cloud/get-your-player-analytics-with-cmcd Tue, 11 Apr 2023 13:00:00 UTC Akamai’s 2022 ESG Impact Report https://www.akamai.com/blog/sustainability/akamai-2022-esg-impact-report Aaron Ahola https://www.akamai.com/blog/sustainability/akamai-2022-esg-impact-report Tue, 11 Apr 2023 11:00:00 UTC How to Be Prepared in the Age of Cyber Insecurity https://www.akamai.com/blog/security/preparation-in-the-age-of-cyber-insecurity Marta Fydrych-Gasowska https://www.akamai.com/blog/security/preparation-in-the-age-of-cyber-insecurity Fri, 07 Apr 2023 13:00:00 UTC Hacktivists Return with DDoS Attacks, and Their Eyes on European Banks https://www.akamai.com/blog/security/hacktivists-return-with-ddos-attacks Cheryl Chiodi https://www.akamai.com/blog/security/hacktivists-return-with-ddos-attacks Wed, 05 Apr 2023 13:00:00 UTC Akamai Managed Security Service: New Expert Help to Protect from Attacks https://www.akamai.com/blog/security/akamai-managed-security-protect-from-attacks Stacey Sweeney https://www.akamai.com/blog/security/akamai-managed-security-protect-from-attacks Tue, 04 Apr 2023 13:00:00 UTC How Can We Satisfy the Cloud Needs of SaaS? https://www.akamai.com/blog/cloud/satisfying-the-cloud-needs-of-saas Warren Parti https://www.akamai.com/blog/cloud/satisfying-the-cloud-needs-of-saas Fri, 31 Mar 2023 13:00:00 UTC Improving the Gamer Experience with Low-Latency Microservices https://www.akamai.com/blog/cloud/improving-gamer-experience-with-low-latency-microservices Pavel Despot https://www.akamai.com/blog/cloud/improving-gamer-experience-with-low-latency-microservices Thu, 30 Mar 2023 13:00:00 UTC The Most Common Combosquatting Keyword Is “Support” https://www.akamai.com/blog/security-research/combosquatting-keyword-analysis-support Stijn Tilborghs & Kamil Jarosz https://www.akamai.com/blog/security-research/combosquatting-keyword-analysis-support Wed, 29 Mar 2023 05:00:00 UTC Why a Distributed Cloud Is Perfect for Streaming https://www.akamai.com/blog/cloud/why-distributed-cloud-is-perfect-for-streaming Shane Keats https://www.akamai.com/blog/cloud/why-distributed-cloud-is-perfect-for-streaming Tue, 28 Mar 2023 13:00:00 UTC What’s New for Developers: March 2023 https://www.akamai.com/blog/developers/whats-new-for-developers-march-2023 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-march-2023 Fri, 24 Mar 2023 13:00:00 UTC What Is Cloud Architecture? What is cloud architecture? And what types of clouds are there? Cloud architecture defines how all the components that enable cloud computing come together. https://www.akamai.com/blog/cloud/what-is-cloud-architecture Pavel Despot https://www.akamai.com/blog/cloud/what-is-cloud-architecture Thu, 23 Mar 2023 13:00:00 UTC What the NIS2 Directive Means for Your Business and Your APIs Learn how implementing a comprehensive cybersecurity program that addresses all aspects of API security can ensure compliance with the NIS2 Directive. https://www.akamai.com/blog/security/2024/sep/what-the-nis2-directive-means-for-your-business-and-your-apis Steven Duckaert https://www.akamai.com/blog/security/2024/sep/what-the-nis2-directive-means-for-your-business-and-your-apis Thu, 23 Mar 2023 00:25:00 UTC Chatbots, Celebrities, and Victim Retargeting: Why Crypto Giveaway Scams Are Still So Successful https://www.akamai.com/blog/security-research/crypto-giveaway-scams-are-still-successful Shiran Guez https://www.akamai.com/blog/security-research/crypto-giveaway-scams-are-still-successful Wed, 22 Mar 2023 14:00:00 UTC Defeating Triple Extortion Ransomware: The Potent Combo of Ransomware and DDoS Attacks Protect your organization from triple extortion ransomware – the devastating combination of ransomware and a DDoS attack – with these four steps. https://www.akamai.com/blog/security/defeating-triple-extortion-ransomware Venkat Praneeth Nangineni & Steve Winterfeld https://www.akamai.com/blog/security/defeating-triple-extortion-ransomware Tue, 21 Mar 2023 13:00:00 UTC What Proposed New Changes in the OWASP API Security Top 10 Mean for You The new OWASP Top 10 for API Security release candidate is a fantastic step in an API-specific direction, emphasizing the distinct nature of API threats. https://www.akamai.com/blog/security/proposed-new-changes-in-owasp-api-security Alex Marks-Bluth & Nitzan Namer https://www.akamai.com/blog/security/proposed-new-changes-in-owasp-api-security Mon, 20 Mar 2023 13:00:00 UTC Preparing for the Multicloud Future Take advantage of multicloud flexibility to reduce risk, match spend to your current needs, and increase the pace of innovation. https://www.akamai.com/blog/cloud/preparing-for-multicloud-future Dave McCarthy https://www.akamai.com/blog/cloud/preparing-for-multicloud-future Fri, 17 Mar 2023 13:00:00 UTC Akamai’s Perspective on March’s Patch Tuesday 2023 https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-march-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-march-2023 Fri, 17 Mar 2023 05:00:00 UTC Uncovering HinataBot: A Deep Dive into a Go-Based Threat https://www.akamai.com/blog/security-research/hinatabot-uncovering-new-golang-ddos-botnet Chad Seaman, Larry Cashdollar & Allen West https://www.akamai.com/blog/security-research/hinatabot-uncovering-new-golang-ddos-botnet Thu, 16 Mar 2023 05:00:00 UTC Introducing MDBR+: Customized Security for Government Organizations https://www.akamai.com/blog/security/introducing-mdbr-customized-security-for-government-organizations Jim Black https://www.akamai.com/blog/security/introducing-mdbr-customized-security-for-government-organizations Wed, 15 Mar 2023 13:00:00 UTC Attack Superhighway: A Deep Dive on Malicious DNS Traffic https://www.akamai.com/blog/security-research/a-deep-dive-on-malicious-dns-traffic Badette Tribbey & Steve Winterfeld https://www.akamai.com/blog/security-research/a-deep-dive-on-malicious-dns-traffic Tue, 14 Mar 2023 13:00:00 UTC DDoS Attacks in 2022: Targeting Everything Online, All at Once There was a big shift in DDoS targeting in 2022. Perhaps the most significant lesson learned: DDoS attackers are targeting everything, sometimes all at once. https://www.akamai.com/blog/security/ddos-attacks-in-2022-targeting-everything-online Dennis Birchard https://www.akamai.com/blog/security/ddos-attacks-in-2022-targeting-everything-online Fri, 10 Mar 2023 14:00:00 UTC Normalizing Women in Tech with Intentionality Vice President Simone Stewart kicks off our Akamai “Women In Tech” blog series and discusses how intentionality can cultivate a more inclusive environment. https://www.akamai.com/blog/culture/normalizing-women-in-tech-with-intentionality Tashema Nichols-Jones https://www.akamai.com/blog/culture/normalizing-women-in-tech-with-intentionality Thu, 09 Mar 2023 14:00:00 UTC Akamai Mitigates Record DDoS Attack in Asia-Pacific (900 Gbps) https://www.akamai.com/blog/security/record-breaking-ddos-in-apac Craig Sparling https://www.akamai.com/blog/security/record-breaking-ddos-in-apac Wed, 08 Mar 2023 08:00:00 UTC Introducing Akamai Hunt to Stop the Most Evasive Threats and Risks https://www.akamai.com/blog/security/akamai-hunt-mitigates-most-evasive-threats Ravit Greitser https://www.akamai.com/blog/security/akamai-hunt-mitigates-most-evasive-threats Tue, 07 Mar 2023 14:00:00 UTC Changing Healthcare Delivery Requires Evolving Security Strategies https://www.akamai.com/blog/news/changing-healthcare-delivery-requires-evolving-security-strategies Carley Thornell https://www.akamai.com/blog/news/changing-healthcare-delivery-requires-evolving-security-strategies Thu, 02 Mar 2023 14:00:00 UTC Akamai Cloud Computing Services Pricing Update https://www.akamai.com/blog/cloud/akamai-cloud-computing-price-update Shawn Michels https://www.akamai.com/blog/cloud/akamai-cloud-computing-price-update Wed, 01 Mar 2023 14:00:00 UTC Healthcare Organizations Must Balance Cybersecurity with Other Priorities Porter Research finds that today’s healthcare organizations must balance investments in data protection with resources they need to provide high-quality care. https://www.akamai.com/blog/security/healthcare-organizations-must-balance-cybersecurity-with-other-priorities Carley Thornell https://www.akamai.com/blog/security/healthcare-organizations-must-balance-cybersecurity-with-other-priorities Mon, 27 Feb 2023 14:00:00 UTC Deliver Faster Downloads for Better Browsing, Part 4 of 5 Web browsers read HTML, CSS, and JavaScript code as well as video, images, and SVG files, then use that data to build and render a web page. https://www.akamai.com/blog/developers/deliver-faster-downloads-for-better-browsing-part-4-of-5 Akamai Edge Delivery Product Marketing https://www.akamai.com/blog/developers/deliver-faster-downloads-for-better-browsing-part-4-of-5 Fri, 24 Feb 2023 14:00:00 UTC The Evolution of DDoS in Financial Services — Much More than a Nuisance Cyberattacks cost an average of 50% more for financial institutions than for firms in all other industries combined — and they continue to evolve. https://www.akamai.com/blog/security/evolution-ddos-financial-services Cheryl Chiodi https://www.akamai.com/blog/security/evolution-ddos-financial-services Thu, 23 Feb 2023 14:00:00 UTC Fantastic RPC Interfaces and How to Find Them Looking for your next security research project? Our RPC Interface Analyzer tool can help you find it. https://www.akamai.com/blog/security-research/rpc-toolkit-fantastic-interfaces-how-to-find Oryan De Paz https://www.akamai.com/blog/security-research/rpc-toolkit-fantastic-interfaces-how-to-find Wed, 22 Feb 2023 15:00:00 UTC What’s New for Developers: February 2023 Read about the most recent updates to EdgeWorkers, two new Postman collections, and Terraform Provider v3.3.0 — and find out how to sign up for betas. https://www.akamai.com/blog/developers/whats-new-for-developers-february-2023 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-february-2023 Tue, 21 Feb 2023 14:00:00 UTC Akamai’s Differentiated Cloud Strategy Akamai is taking a different approach to cloud computing than providers who base their platforms solely on core data centers. Read more about our strategy. https://www.akamai.com/blog/cloud/akamai-differentiated-cloud-strategy Tom Leighton https://www.akamai.com/blog/cloud/akamai-differentiated-cloud-strategy Tue, 21 Feb 2023 13:00:00 UTC Akamai’s Perspective on February’s Patch Tuesday 2023 Every Patch Tuesday stirs up the community. Read Akamai's insights and recommendations for February 2023. Learn what to focus on, and patch, patch, patch! https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-february-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-february-2023 Fri, 17 Feb 2023 06:00:00 UTC IDC MarketScape Names Akamai a Contender in Worldwide Public Cloud IaaS Akamai’s inclusion as a Contender in the "IDC MarketScape: Worldwide Public Cloud Infrastructure as a Service Vendor Assessment" demonstrates the strength of our cloud computing services. https://www.akamai.com/blog/cloud/idc-marketscape-names-akamai-a-contender Eric Francis https://www.akamai.com/blog/cloud/idc-marketscape-names-akamai-a-contender Thu, 16 Feb 2023 14:00:00 UTC Magecart Attack Disguised as Google Tag Manager Magecart skimmers constantly evolve. Recent attacks aimed at stealing sensitive customer information illustrate the need for comprehensive security solutions. https://www.akamai.com/blog/security/magecart-attack-disguised-as-google-tag-manager Roman Lvovsky https://www.akamai.com/blog/security/magecart-attack-disguised-as-google-tag-manager Wed, 15 Feb 2023 14:00:00 UTC Akamai Connected Cloud: The World’s Most Distributed Cloud Platform Introducing Akamai Connected Cloud, the massively distributed edge and cloud platform for cloud computing, security, and content delivery. https://www.akamai.com/blog/cloud/akamai-connected-cloud-most-distributed-cloud-platform Adam Karon https://www.akamai.com/blog/cloud/akamai-connected-cloud-most-distributed-cloud-platform Tue, 14 Feb 2023 06:00:00 UTC Managing Hype Events to Delight Customers, Not Bot Operators Learn how to prepare for your hype event so you ensure your goods are available for your loyal customers … and not bots. https://www.akamai.com/blog/security/managing-hype-events-to-delight-customers David Sénécal https://www.akamai.com/blog/security/managing-hype-events-to-delight-customers Fri, 10 Feb 2023 14:00:00 UTC Akamai Recognized as a 2023 Gartner® Peer Insights™ Customers' Choice for Cloud WAAP Customers rate Akamai as a 2023 Customers' Choice for Cloud WAAP for the fourth consecutive year on Gartner® Peer Insights.™ https://www.akamai.com/blog/security/akamai-2023-customers-choice-cloud-waap Danielle Walter https://www.akamai.com/blog/security/akamai-2023-customers-choice-cloud-waap Thu, 09 Feb 2023 14:00:00 UTC 4 Key Takeaways from the Akamai Retail Reimagined Bootcamp Indonesia Read about insights gleaned from the recent Akamai ecommerce bootcamp in Indonesia on how to build growth in a post-pandemic economy. https://www.akamai.com/blog/security/4-key-takeaways-akamai-retail-reimagined-bootcamp-indonesia Reuben Koh https://www.akamai.com/blog/security/4-key-takeaways-akamai-retail-reimagined-bootcamp-indonesia Fri, 03 Feb 2023 14:00:00 UTC Feature Spotlight: Kubernetes Enforcement Akamai’s new enforcement capabilities for K8s environments provides segmentation for applications and blocks lateral movement to, from, and inside K8s clusters. https://www.akamai.com/blog/security/feature-spotlight-kubernetes-enforcement Maya Luisan & Omer Mayer https://www.akamai.com/blog/security/feature-spotlight-kubernetes-enforcement Thu, 02 Feb 2023 14:00:00 UTC 7 Key Takeaways for Financial Services from Recent Research Although the financial services cybersecurity programs are some of the most mature in the world, cybercriminals continue to find ways to revitalize old attacks. https://www.akamai.com/blog/security/7-key-takeaways-for-financial-services-from-recent-research Steve Winterfeld https://www.akamai.com/blog/security/7-key-takeaways-for-financial-services-from-recent-research Wed, 01 Feb 2023 15:00:00 UTC Killnet Targets Healthcare — What You Need to Know, What You Need to Do As the war in Ukraine continues to heat up, the war against cyberattacks at home also intensifies as pro-Russia group Killnet targets healthcare organizations. https://www.akamai.com/blog/news/killnet-targets-healthcare Carley Thornell https://www.akamai.com/blog/news/killnet-targets-healthcare Wed, 01 Feb 2023 06:00:00 UTC Can't Wait to Shut You Down — Remote DoS Using Wininit.exe Akamai researchers explore a new vulnerability that can be exploited to lead to denial-of-service attacks against Windows machines. https://www.akamai.com/blog/security-research/cant-wait-to-shut-you-down-msrpc-wininit Stiv Kupchik https://www.akamai.com/blog/security-research/cant-wait-to-shut-you-down-msrpc-wininit Tue, 31 Jan 2023 15:00:00 UTC Introducing Malware Protection for Scanning File Uploads With Malware Protection, you can scan once at the edge and prevent malware from draining your time and budget. https://www.akamai.com/blog/edge/introducing-malware-protection-for-scanning-file-uploads Abigail Ojeda https://www.akamai.com/blog/edge/introducing-malware-protection-for-scanning-file-uploads Tue, 31 Jan 2023 14:00:00 UTC Beyond CWV: 11 More Performance Metrics to Monitor, Part 3 of 5 Learn the differences between synthetic tests and real user monitoring, and discover 11 web performance metrics beyond the Core Web Vitals — and how to use them. https://www.akamai.com/blog/developers/beyond-cwv-more-performance-metrics-to-monitor-part-3-of-5 Akamai Edge Delivery Product Marketing https://www.akamai.com/blog/developers/beyond-cwv-more-performance-metrics-to-monitor-part-3-of-5 Thu, 26 Jan 2023 14:00:00 UTC Exploiting a Critical Spoofing Vulnerability in Windows CryptoAPI Akamai researchers have analyzed a critical vulnerability in Microsoft's CryptoAPI that would allow an attacker to masquerade as a legitimate entity. https://www.akamai.com/blog/security-research/exploiting-critical-spoofing-vulnerability-microsoft-cryptoapi Tomer Peled & Yoni Rozenshein https://www.akamai.com/blog/security-research/exploiting-critical-spoofing-vulnerability-microsoft-cryptoapi Wed, 25 Jan 2023 15:00:00 UTC SEO Need-to-Knows: Google’s Core Web Vitals, Part 2 of 5 Learn about Google's Core Web Vitals — LCP, FID, and CLS — and how improving them can enhance your users’ experience and SEO ranking. https://www.akamai.com/blog/developers/seo-google-core-web-vitals-part-2-of-5 Akamai Edge Delivery Product Marketing https://www.akamai.com/blog/developers/seo-google-core-web-vitals-part-2-of-5 Thu, 19 Jan 2023 14:00:00 UTC What’s New for Developers: 2022 Recap Read the year-end review of developer highlights for 2022. https://www.akamai.com/blog/developers/whats-new-for-developers-2022-recap Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-2022-recap Wed, 18 Jan 2023 14:00:00 UTC Resource Limit Increases for EdgeWorkers Yield Big Results Read about how EdgeWorkers reduced errors resulting from resource limit constraints — unlocking even more opportunities for businesses https://www.akamai.com/blog/developers/resource-limit-increases-for-edgeworkers-yield-big-results AJ Johnson https://www.akamai.com/blog/developers/resource-limit-increases-for-edgeworkers-yield-big-results Tue, 17 Jan 2023 14:00:00 UTC Improving Popularity Rankings for Better Threat Intelligence, Part 1 AkaRank can overcome biases in current domain popularity lists and help ensure the best threat coverage and user experience. https://www.akamai.com/blog/security/improving-popularity-rankings-for-better-threat-intelligence-part-1 Noy Aizenberg & Congcong Xing https://www.akamai.com/blog/security/improving-popularity-rankings-for-better-threat-intelligence-part-1 Fri, 13 Jan 2023 14:00:00 UTC Akamai’s Perspective on January’s Patch Tuesday 2023 Every Patch Tuesday stirs up the community. See Akamai's insights and recommendations on what to focus on, and patch, patch, patch! https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-january-2023 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-january-2023 Fri, 13 Jan 2023 06:00:00 UTC What Challenges Will 2023 Bring for Cyber? In 2023, the tech industry must address workforce diversity, manage cyber risks and regulations, and understand how innovation can challenge cyber resiliency. https://www.akamai.com/blog/security/what-challenges-will-2023-bring-for-cyber Lauren Van Wazer https://www.akamai.com/blog/security/what-challenges-will-2023-bring-for-cyber Thu, 12 Jan 2023 14:00:00 UTC 3 Ransomware Questions Every Security Leader Should Be Able to Answer Read about how organizations need microsegmentation to identify and remediate ransomware attacks, and the ransomware questions they need to answer. https://www.akamai.com/blog/security/ransomware-questions-organizations-need-to-answer Pavel Gurvich https://www.akamai.com/blog/security/ransomware-questions-organizations-need-to-answer Tue, 10 Jan 2023 14:00:00 UTC Building an Effective Bot Management Strategy Effectively managing bot traffic requires a combination of strong detection and response strategies. Here, we explore Akamai’s methods for implementing both. https://www.akamai.com/blog/security/building-an-effective-bot-management-strategy David Sénécal https://www.akamai.com/blog/security/building-an-effective-bot-management-strategy Wed, 04 Jan 2023 14:00:00 UTC Boost Your Page Load Times with Performance Engineering, Part 1 of 5 Get up to speed with web performance, the Core Web Vitals, and other metrics to increase your revenue and rank your page higher on Google. https://www.akamai.com/blog/developers/performance-engineering-part-1-of-5 Akamai Edge Delivery Product Marketing https://www.akamai.com/blog/developers/performance-engineering-part-1-of-5 Tue, 20 Dec 2022 14:00:00 UTC Emulating KmsdBot’s Command and Control and Examining Its Attack Traffic Read about the global impact of KmsdBot, a botnet that hit our honeypot earlier this year, and why the evidence is pointing toward it being a DDoS for hire. https://www.akamai.com/blog/security-research/kmsdbot-part-three-examining-attack-traffic Larry Cashdollar & Allen West https://www.akamai.com/blog/security-research/kmsdbot-part-three-examining-attack-traffic Mon, 19 Dec 2022 15:00:00 UTC Careful Workload Placement Can Create Cloud Cost Savings Optimizing the cost-effectiveness of cloud infrastructure requires the careful placement of workloads in the environments best suited to their execution. https://www.akamai.com/blog/cloud/careful-workload-placement-can-create-cloud-cost-savings Liam Eagle https://www.akamai.com/blog/cloud/careful-workload-placement-can-create-cloud-cost-savings Fri, 16 Dec 2022 14:00:00 UTC Akamai’s Perspective on December’s Patch Tuesday 2022 Every Patch Tuesday stirs up the community. See Akamai's December insights and recommendations on what to focus on, and patch, patch, patch! https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-december-2022 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-december-2022 Fri, 16 Dec 2022 06:00:00 UTC Why Do I Need Zero Trust on My Endpoint If I Have EDR/XDR? Do you need a Zero Trust solution if you have EDR/XDR installed? The short answer is yes — you need both. https://www.akamai.com/blog/security/you-need-both-zero-trust-and-edr-xdr Ravit Greitser https://www.akamai.com/blog/security/you-need-both-zero-trust-and-edr-xdr Thu, 15 Dec 2022 14:00:00 UTC You’ve Crossed the Line — Disturbing a Host’s Rest Akamai researchers explore two new vulnerabilities that can be exploited to lead to denial-of-service attacks against container and session services. https://www.akamai.com/blog/security-research/msrpc-lsm-cve-disturbing-hosts-rest Ben Barnea https://www.akamai.com/blog/security-research/msrpc-lsm-cve-disturbing-hosts-rest Wed, 14 Dec 2022 15:00:00 UTC Akamai Welcomed Partners to a Memorable Asia-Pacific and Japan Partner Summit Learn about the recent Akamai APJ Partner Summit 2022, including new revenue opportunities for our partners – and the awards we gave. https://www.akamai.com/blog/news/akamai-apj-partner-summit Tatsuya Suzuki https://www.akamai.com/blog/news/akamai-apj-partner-summit Tue, 13 Dec 2022 14:00:00 UTC Measuring User Experience with Real User Data Use data from real users to improve the user experience (UX) of your site or app, and draw on real behavior and outcomes for effective UX decision-making. https://www.akamai.com/blog/performance/measuring-user-experience-with-real-user-data Julio Chaves Herrera https://www.akamai.com/blog/performance/measuring-user-experience-with-real-user-data Tue, 13 Dec 2022 14:00:00 UTC An Overview of MS-RPC and Its Security Mechanisms MS-RPC is a widely used protocol, but not much security research is done on it. In this blog, see an overview of MS-RPC and their security mechanisms. https://www.akamai.com/blog/security-research/msrpc-security-mechanisms Ben Barnea https://www.akamai.com/blog/security-research/msrpc-security-mechanisms Thu, 08 Dec 2022 15:00:00 UTC Is Stopping a Ransomware Attack More Important Than Preventing One? Microsegmentation can stop a ransomware attack from moving laterally across your organization and prevent malicious behavior. https://www.akamai.com/blog/security/stopping-ransomware-attacks-with-microsegmentation Dan Petrillo & Jim Black https://www.akamai.com/blog/security/stopping-ransomware-attacks-with-microsegmentation Wed, 07 Dec 2022 14:00:00 UTC Elevate Streaming Media with EdgeWorkers and Macrometa Stream Workers Elevate players’ gaming experiences with Akamai EdgeWorkers and Macrometa Stream Workers. https://www.akamai.com/blog/cloud/elevate-streaming-media-with-edgeworkers-and-stream-workers Durga Gokina https://www.akamai.com/blog/cloud/elevate-streaming-media-with-edgeworkers-and-stream-workers Tue, 06 Dec 2022 14:00:00 UTC Not Every Cloud Is Meant for Every Workload Understanding which cloud platforms are the best fit for which workloads can maximize your return on investment and your customers’ output. https://www.akamai.com/blog/cloud/not-every-cloud-is-meant-for-every-workload Pavel Despot https://www.akamai.com/blog/cloud/not-every-cloud-is-meant-for-every-workload Mon, 05 Dec 2022 14:00:00 UTC A Closer Look at Ransomware Attack Trends in APJ Read about the surge of ransomware as a service (RaaS) cyberattack trends in APJ, and the infamous (and prolific) Conti group’s role in them. https://www.akamai.com/blog/security-research/ransomware-attack-trends-in-apj Badette Tribbey https://www.akamai.com/blog/security-research/ransomware-attack-trends-in-apj Thu, 01 Dec 2022 14:00:00 UTC Accidentally Crashing a Botnet As part of our research into the cryptomining botnet kmsdbot, we rendered it useless. https://www.akamai.com/blog/security-research/kmsdbot-part-two-crashing-a-botnet Larry Cashdollar https://www.akamai.com/blog/security-research/kmsdbot-part-two-crashing-a-botnet Wed, 30 Nov 2022 15:00:00 UTC Expanding API Security Awareness at API World API security should be a primary concern for organizations. Learn about the three principles of APIs to help protect against attacks. https://www.akamai.com/blog/security/expanding-api-security-awareness-at-api-world Abigail Ojeda https://www.akamai.com/blog/security/expanding-api-security-awareness-at-api-world Tue, 29 Nov 2022 14:00:00 UTC Enemy at the Gates: Analyzing Attacks on Financial Services Financial services is an often attacked vertical, but to what extent and how? This blog post will cover several security issues affecting this industry. https://www.akamai.com/blog/security-research/analyzing-attacks-on-financial-services Badette Tribbey & Steve Winterfeld https://www.akamai.com/blog/security-research/analyzing-attacks-on-financial-services Mon, 28 Nov 2022 11:00:00 UTC Manage Akamai Features at the Edge with EdgeWorkers and EdgeKV EdgeWorkers and EdgeKV lets you set feature flags that tailor content to different website visitors. https://www.akamai.com/blog/developers/manage-akamai-features-with-edgeworkers-and-edgekv Philip McGuinness https://www.akamai.com/blog/developers/manage-akamai-features-with-edgeworkers-and-edgekv Tue, 22 Nov 2022 14:00:00 UTC Wartime Sparks Unpredictable Shifts in DDoS Targeting DDoS cyberattacks targeting European customers on the Akamai Prolexic platform are increasing worldwide, In response, Akamai unveiled its new DDoS solution. https://www.akamai.com/blog/security/wartime-sparks-unpredictable-shifts-in-ddos-targeting Craig Sparling & Max Gebhardt https://www.akamai.com/blog/security/wartime-sparks-unpredictable-shifts-in-ddos-targeting Tue, 22 Nov 2022 14:00:00 UTC Four Steps: Effective API Security Using a Digital Bonding Strategy Focus on API security as part of your digital bonding strategy, because APIs are already connecting your business activities. https://www.akamai.com/blog/security/four-steps-effective-api-security-using-digital-bonding-strategy Abigail Ojeda https://www.akamai.com/blog/security/four-steps-effective-api-security-using-digital-bonding-strategy Mon, 21 Nov 2022 14:00:00 UTC Akamai Is Delighted to Partner with Teneo and Bytes Software Services Akamai’s partnerships with Teneo and Bytes Software Solutions help us to adapt, grow, and innovate in an ever-changing landscape. https://www.akamai.com/blog/partners/2022/nov/akamai-partners-with-teneo-and-bytes-software-services Ina Christova https://www.akamai.com/blog/partners/2022/nov/akamai-partners-with-teneo-and-bytes-software-services Fri, 18 Nov 2022 14:00:00 UTC What’s New for Developers: November 2022 Read about the EdgeGrid PHP client update, EdgeWorkers news, the Terraform Provider 3.0 release, and the new Build, Deliver & Secure video series. https://www.akamai.com/blog/developers/whats-new-for-developers-november-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-november-2022 Thu, 17 Nov 2022 14:00:00 UTC SD-WAN Integration: Routing Traffic to Optimize Network Performance Optimize network performance with SD-WAN integration to automatically route traffic to the nearest Akamai Secure Internet Access point of presence. https://www.akamai.com/blog/security/sd-wan-routing-traffic-optimize-network-performance Jim Black https://www.akamai.com/blog/security/sd-wan-routing-traffic-optimize-network-performance Wed, 16 Nov 2022 14:00:00 UTC Highly Sophisticated Phishing Scams Are Abusing Holiday Sentiment The holiday season is around the corner, which means phishing season is too. Akamai Security Research details the new ways adversaries are abusing the holidays. https://www.akamai.com/blog/security-research/sophisticated-phishing-scam-abusing-holiday-sentiment Or Katz https://www.akamai.com/blog/security-research/sophisticated-phishing-scam-abusing-holiday-sentiment Wed, 16 Nov 2022 10:00:00 UTC Akamai’s Perspective on November’s Patch Tuesday Every Patch Tuesday stirs up the community. See Akamai's November insights and recommendations on what to focus on, and patch, patch, patch! https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-november-2022 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-november-2022 Tue, 15 Nov 2022 15:00:00 UTC Tackle Your Cloud Challenges, One Scenario at a Time Forrester’s quick start cards cover 18 common issues with cloud migrations and operations, and suggest actions to mitigate each one. https://www.akamai.com/blog/cloud/tackle-your-cloud-challenges-one-scenario-at-a-time Pavel Despot https://www.akamai.com/blog/cloud/tackle-your-cloud-challenges-one-scenario-at-a-time Tue, 15 Nov 2022 14:00:00 UTC KmsdBot: The Attack and Mine Malware Akamai security research has observed a new malware: a cryptominer with dreams of DDoS functionality. Read about kmdsbot in this blog. https://www.akamai.com/blog/security-research/kmdsbot-the-attack-and-mine-malware Larry Cashdollar https://www.akamai.com/blog/security-research/kmdsbot-the-attack-and-mine-malware Thu, 10 Nov 2022 15:00:00 UTC Evolving Digital Experiences at the Edge The modern application has evolved and shifted to the edge. This inevitable adoption is improving the digital experience for end users. https://www.akamai.com/blog/developers/evolving-digital-experiences-at-the-edge Nancy Carvajal https://www.akamai.com/blog/developers/evolving-digital-experiences-at-the-edge Thu, 10 Nov 2022 14:00:00 UTC On-Ramping Traffic to a Cloud-Based Secure Web Gateway Though cloud-based secure web gateways (SWGs) eliminate many problems, it’s important to select the right approach to on-ramping traffic based on use case and protection level. https://www.akamai.com/blog/security/on-ramping-traffic-to-cloud-based-secure-web-gateway-part-1 Jim Black https://www.akamai.com/blog/security/on-ramping-traffic-to-cloud-based-secure-web-gateway-part-1 Wed, 09 Nov 2022 14:00:00 UTC CDN Meets GDN: Akamai Partners with Macrometa The web needs a CDN; the cloud needs a GDN. What does that mean and why is it important for developers? https://www.akamai.com/blog/cloud/cdn-meets-gdn-akamai-partners-macrometa Durga Gokina https://www.akamai.com/blog/cloud/cdn-meets-gdn-akamai-partners-macrometa Tue, 08 Nov 2022 14:00:00 UTC An update on the impact of OpenSSL CVE-2022-3602 and CVE-2022-3786 on Akamai's systems In this post, we share the impact of the OpenSSL vulnerabilities CVE-2022-3602 and CVE-2022-3786 on Akamai and our customers. https://www.akamai.com/blog/security/update-impact-openssl-cve-2022-3602-cve-2022-3786 Jan Schaumann https://www.akamai.com/blog/security/update-impact-openssl-cve-2022-3602-cve-2022-3786 Mon, 07 Nov 2022 10:00:00 UTC Improve URL Redirects with EdgeWorkers and EdgeKV Use Akamai EdgeWorkers and Akamai EdgeKV to make intelligent redirect decisions. https://www.akamai.com/blog/developers/improve-url-redirects-with-edgeworkers-and-edgekv Philip McGuinness https://www.akamai.com/blog/developers/improve-url-redirects-with-edgeworkers-and-edgekv Thu, 03 Nov 2022 13:00:00 UTC DNS Threat Report — Q3 2022 Akamai's visibility into global traffic through Q3 provides insight into phishing campaigns and potential user susceptibility to malware attacks. https://www.akamai.com/blog/security-research/dns-threat-report-q3-2022 Or Katz https://www.akamai.com/blog/security-research/dns-threat-report-q3-2022 Mon, 31 Oct 2022 14:00:00 UTC Effectively Preparing for the OpenSSL 3.x Vulnerability With all the noise about the OpenSSL vulnerability, see this blog about how to prepare for mitigation when the patch is released. https://www.akamai.com/blog/security-research/openssl-vulnerability-how-to-effectively-prepare Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/openssl-vulnerability-how-to-effectively-prepare Mon, 31 Oct 2022 09:00:27 UTC Better A/B Testing with EdgeWorkers + EdgeKV Learn how to use Akamai EdgeWorkers and EdgeKV to create easy-to-control A/B tests. https://www.akamai.com/blog/developers/better-a-b-testing-with-edgeworkes-edgekv Philip McGuinness https://www.akamai.com/blog/developers/better-a-b-testing-with-edgeworkes-edgekv Fri, 28 Oct 2022 13:00:00 UTC User-Agent Reduction Chrome is rolling out changes to the browser’s User-Agent string that will affect how web servers, applications, and CDNs like Akamai gather information about the current user agent (such as the browser’s version, device, and platform information). https://www.akamai.com/blog/developers/user-agent-reduction Nic Jansma https://www.akamai.com/blog/developers/user-agent-reduction Thu, 27 Oct 2022 16:00:00 UTC dhpcd: The Cryptominer That Hid for Four Years Akamai Researchers have uncovered a long-running attack campaign attack targeting Linux SSH servers that has been running a monero cryptominer. https://www.akamai.com/blog/security-research/dhpcd-cryptominer-hid-four-years Oryan De Paz https://www.akamai.com/blog/security-research/dhpcd-cryptominer-hid-four-years Wed, 26 Oct 2022 13:00:00 UTC Akamai’s Prolexic Launches Sixth-Generation DDoS Platform Upgrade Today, we are excited to announce a significant evolution of Akamai’s distributed denial-of-service (DDoS) protection solution, Prolexic. https://www.akamai.com/blog/news/akamais-prolexic-launches-sixth-generation-ddos-platform-upgrade Ankita Kharya https://www.akamai.com/blog/news/akamais-prolexic-launches-sixth-generation-ddos-platform-upgrade Tue, 25 Oct 2022 13:00:00 UTC What’s New for Developers: October 2022 Read about our new Postman collections, the latest Akamai PowerShell release, our improvements to Edge Diagnostics, and how to quickly integrate Linode with Akamai. https://www.akamai.com/blog/developers/whats-new-for-developers-october-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-october-2022 Mon, 24 Oct 2022 13:00:00 UTC Getting It Done: It’s Go Time for Bold Leadership in Sustainability Sustainability professionals from around the world convened in New York City for Climate Week NYC 2022, exploring the theme of the week to “get it done.” https://www.akamai.com/blog/sustainability/its-go-time-for-bold-leadership-in-sustainability Mike Mattera https://www.akamai.com/blog/sustainability/its-go-time-for-bold-leadership-in-sustainability Mon, 24 Oct 2022 13:00:00 UTC Secure Internet Access Is Needed Everywhere Internet threats have made businesses (and people) vulnerable. Learn how to maintain effective security against cyberthreats with Secure Internet Access. https://www.akamai.com/blog/security/secure-internet-access-needed-everywhere Bruce Van Nice https://www.akamai.com/blog/security/secure-internet-access-needed-everywhere Fri, 21 Oct 2022 13:00:00 UTC Securing Applications in a Multicloud World Widespread adoption of multicloud architecture presents challenges in securing applications. Learn about the benefits of deploying security controls on the edge. https://www.akamai.com/blog/cloud/securing-applications-in-a-multicloud-world Pavel Despot https://www.akamai.com/blog/cloud/securing-applications-in-a-multicloud-world Thu, 20 Oct 2022 13:00:00 UTC Who’s Scanning the IPv6 Space? And, Frankly, Why Do We Even Care? Securing IPv6 is no longer optional, it's a necessity. In this first of its kind empirical study on the vulnerability scanning landscape of IPv6, you'll learn the challenges and differences between IPv6 and IPv4 to be better prepared for the future. https://www.akamai.com/blog/security-research/vulnerability-scanning-ipv6-why-should-we-care Philipp Richter https://www.akamai.com/blog/security-research/vulnerability-scanning-ipv6-why-should-we-care Wed, 19 Oct 2022 13:00:00 UTC A Vote of Confidence for Election Security CISA has released its free Cybersecurity Toolkit to help election authorities prepare for possible threats. Read more to learn about its offerings. https://www.akamai.com/blog/security/a-vote-of-confidence-for-election-security Drew Reinders https://www.akamai.com/blog/security/a-vote-of-confidence-for-election-security Tue, 18 Oct 2022 13:00:00 UTC Akamai’s Perspective on October’s Patch Tuesday 2022 Every Patch Tuesday stirs up the community. See Akamai's October insights and recommendations on what to focus on, and patch, patch, patch! https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-october-2022 Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-october-2022 Fri, 14 Oct 2022 17:00:00 UTC Akamai Wins Brandon Hall Gold Award in Extended Enterprise Learning For the third consecutive year, Akamai Global Services has won the coveted Gold Award from Brandon Hall Group. https://www.akamai.com/blog/news/akamai-wins-brandon-hall-gold-award-extended-enterprise-learning Natalia Zbijowska https://www.akamai.com/blog/news/akamai-wins-brandon-hall-gold-award-extended-enterprise-learning Wed, 12 Oct 2022 13:00:00 UTC Cold Hard Cache — Bypassing RPC Interface Security with Cache Abuse https://www.akamai.com/blog/security-research/cold-hard-cache-bypassing-rpc-with-cache-abuse Ben Barnea & Stiv Kupchik https://www.akamai.com/blog/security-research/cold-hard-cache-bypassing-rpc-with-cache-abuse Tue, 11 Oct 2022 07:00:00 UTC The Internet Architecture Board Takes on Sustainability Join Akamai and the Internet Architecture Board to make #shift happen. Let's work together to make life better for billions of people, billions of times a day. #GreenWithAkamai https://www.akamai.com/blog/sustainability/the-internet-architecture-board-takes-on-sustainability Mike Mattera https://www.akamai.com/blog/sustainability/the-internet-architecture-board-takes-on-sustainability Mon, 10 Oct 2022 13:00:00 UTC Holiday Readiness, Part II: Best Practices for Detecting and Mitigating Attacks Stay one step ahead of bad actors this holiday season with best practices to detect and mitigate attacks. https://www.akamai.com/blog/security/holiday-readiness-best-practices-detecting-mitigating-attacks Jeff Darnton https://www.akamai.com/blog/security/holiday-readiness-best-practices-detecting-mitigating-attacks Fri, 07 Oct 2022 13:00:00 UTC Edge DNS and the Top-Level Domain Hosting Akamai Edge DNS offers the scale and functionality to meet ICANN’s intensive requirements for hosting a generic top-level domain (gTLD) zone in DNS. https://www.akamai.com/blog/edge/edge-dns-and-the-top-level-domain-hosting Sam Preston https://www.akamai.com/blog/edge/edge-dns-and-the-top-level-domain-hosting Thu, 06 Oct 2022 13:00:00 UTC Akamai Mitigates Hop-by-Hop Header Abuse Leading to Request Smuggling Security researchers identified and disclosed a new technique of hop-by-hop header attacks, leading to request smuggling, which Akamai successfully mitigated. https://www.akamai.com/blog/security/akamai-mitigates-hop-by-hop-header-abuse Kaan Onarlioglu https://www.akamai.com/blog/security/akamai-mitigates-hop-by-hop-header-abuse Wed, 05 Oct 2022 13:00:00 UTC Financial Services Malware Just Won’t Die: What to Do About It? The continued reemergence of the Emotet malware is keeping cybersecurity professionals on their toes. Zero Trust solutions are here to help. https://www.akamai.com/blog/security/financial-services-malware-just-wont-die Jim Black https://www.akamai.com/blog/security/financial-services-malware-just-wont-die Tue, 04 Oct 2022 13:00:00 UTC Akamai’s Response to Zero-Day Vulnerabilities in Microsoft Exchange Server (CVE-2022-41040 and CVE-2022-41082) Akamai Security Research has released web application firewall protections for Microsoft Exchange CVE-2022-41040 and CVE-2022-41082. https://www.akamai.com/blog/security-research/akamais-response-zero-day-vulnerabilities-microsoft-exchange-server Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamais-response-zero-day-vulnerabilities-microsoft-exchange-server Mon, 03 Oct 2022 09:00:00 UTC Akamai Aids India Through Corporate Social Responsibility Partnerships Akamai’s Corporate Social Responsibility Trust partners with nonprofit organizations to help enhance the lives of people across India. https://www.akamai.com/blog/culture/akamai-aids-india-through-corporate-social-responsibility-partnerships Neha Jain https://www.akamai.com/blog/culture/akamai-aids-india-through-corporate-social-responsibility-partnerships Fri, 30 Sep 2022 13:00:00 UTC API Security for DevSecOps https://www.akamai.com/blog/security/2024/sep/api-security-for-devsecops Stas Neyman https://www.akamai.com/blog/security/2024/sep/api-security-for-devsecops Thu, 29 Sep 2022 14:19:00 UTC Flagging 13 Million Malicious Domains in 1 Month with Newly Observed Domains Threat Intelligence feeds are an integral part of any security strategy. In this new research see how Akamai researchers were able to find 8 million malicious domains every month to further protect our customers. https://www.akamai.com/blog/security-research/newly-observed-domains-discovered-13-million-malicious-domains Stijn Tilborghs https://www.akamai.com/blog/security-research/newly-observed-domains-discovered-13-million-malicious-domains Wed, 28 Sep 2022 13:00:00 UTC Akamai Named a Leader in The Forrester Wave™: Web Application Firewalls, Q3 2022 Forrester’s 2022 evaluation of web application firewalls ranks Akamai as a Leader with the top score among all evaluated vendors in the attack detection criterion. https://www.akamai.com/blog/security/akamai-named-a-leader-in-the-forrester-wave Danielle Walter https://www.akamai.com/blog/security/akamai-named-a-leader-in-the-forrester-wave Tue, 27 Sep 2022 13:00:00 UTC Akamai Turns Up Linode Past 11 Akamai plans to add more than a dozen data centers, equipped with Linode’s full product suite – across North America, APAC, LATAM and Europe by the end of 2023. https://www.akamai.com/blog/cloud/akamai-turns-up-linode-past-11 Shawn Michels https://www.akamai.com/blog/cloud/akamai-turns-up-linode-past-11 Tue, 27 Sep 2022 01:00:00 UTC 6 Key Insights from Akamai India Leadership Industry Summits What does the future look like for consumer-to-internet and OTT media services in India? Here are six thought-provoking insights from CXOs. https://www.akamai.com/blog/security/6-key-insights-from-akamai-india-leadership-industry-summits Mitesh Jain https://www.akamai.com/blog/security/6-key-insights-from-akamai-india-leadership-industry-summits Mon, 26 Sep 2022 13:00:00 UTC What’s New for Developers: September 2022 Learn about Akamai’s voxel art contest, the updates to EdgeWorkers and EdgeKV demo sites, and how the beta Test Center CLI allows you to test the behavior of configuration changes on your own in this month’s blog. https://www.akamai.com/blog/developers/whats-new-for-developers-september-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-september-2022 Fri, 23 Sep 2022 13:00:00 UTC Purple Fox Rootkit Now Propagates as a Worm Purple Fox is an active malware campaign targeting Windows machines. Up until recently, Purple Fox’s operators infected machines by using exploit kits and phishing emails. https://www.akamai.com/blog/security/purple-fox-rootkit-now-propagates-as-a-worm Guardicore Labs Team https://www.akamai.com/blog/security/purple-fox-rootkit-now-propagates-as-a-worm Thu, 22 Sep 2022 19:59:00 UTC FritzFrog: A New Generation of Peer-to-Peer Botnets Guardicore has discovered FritzFrog, a sophisticated peer-to-peer (P2P) botnet that has been actively breaching SSH servers since January 2020. https://www.akamai.com/blog/security/fritzfrog-a-new-generation-of-peer-to-peer-botnets Ophir Harpaz https://www.akamai.com/blog/security/fritzfrog-a-new-generation-of-peer-to-peer-botnets Wed, 21 Sep 2022 20:36:00 UTC EDR vs. Segmentation: Understanding the Differences https://www.akamai.com/blog/security/understanding-the-differences-between-edr-and-segmentation Marco Raffaelli https://www.akamai.com/blog/security/understanding-the-differences-between-edr-and-segmentation Wed, 21 Sep 2022 13:00:00 UTC Meet Prachi Shah, Senior Service Architect Senior Service Architect Prachi Shah discusses how customer feedback plays a crucial role in product development at Akamai. https://www.akamai.com/blog/developers/meet-prachi-shah-senior-service-architect Chuck Freedman https://www.akamai.com/blog/developers/meet-prachi-shah-senior-service-architect Mon, 19 Sep 2022 13:00:00 UTC In-App Browsers and Akamai Client-Side Protection & Compliance Learn how Akamai's Client-Side Protection & Compliance tracks In-App browser injections to make sure sensitive information is kept safe and private. https://www.akamai.com/blog/security-research/in-app-browsers-and-akamai-page-integrity-manager Gal Meiri https://www.akamai.com/blog/security-research/in-app-browsers-and-akamai-page-integrity-manager Fri, 16 Sep 2022 13:00:00 UTC Akamai’s Perspective on September’s Patch Tuesday Every Patch Tuesday stirs up the community. See Akamai's September insights and recommendations on what to focus on, and patch, patch, patch! https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-september Akamai Security Intelligence Group https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-september Fri, 16 Sep 2022 05:00:00 UTC Record-Breaking DDoS Attack in Europe On Monday, September 12, 2022, Akamai successfully detected and mitigated the now-largest DDoS attack ever launched. https://www.akamai.com/blog/security/record-breaking-ddos-attack-in-europe Craig Sparling & Max Gebhardt https://www.akamai.com/blog/security/record-breaking-ddos-attack-in-europe Thu, 15 Sep 2022 13:00:00 UTC How to Fight Video Piracy: Notes from a Real-Life Battle Video streaming is increasing and so is video piracy. Learn more about these types of piracy cybercrimes, and how to be proactive in stopping them. https://www.akamai.com/blog/security/how-to-fight-video-piracy-notes-from-a-real-life-battle Mark H. Barron https://www.akamai.com/blog/security/how-to-fight-video-piracy-notes-from-a-real-life-battle Thu, 08 Sep 2022 13:00:00 UTC DDoS in Financial Services: What to Know and What to Do Akamai explores trends of recent application-layer DDoS attacks across the Financial Services industry https://www.akamai.com/blog/security-research/ddos-in-financial-services Mark Schimmelbusch & Dennis Birchard https://www.akamai.com/blog/security-research/ddos-in-financial-services Thu, 08 Sep 2022 13:00:00 UTC Cyberterrorists Target Record Number of Victims with DDoS Attacks in Q2 In Q2, cyberterrorists targeted a record number of customer locations (groupings of assets based on cloud presence or physical data center) with DDoS attacks. https://www.akamai.com/blog/security/cyberterrorists-target-record-number-of-victims Craig Sparling & Max Gebhardt https://www.akamai.com/blog/security/cyberterrorists-target-record-number-of-victims Wed, 07 Sep 2022 13:00:00 UTC Akamai Named a 2022 Gartner® Magic Quadrant Leader for Cloud Web Application and API Protection Akamai was named a Leader in the 2022 Gartner® Magic Quadrant for Cloud Web Application and API Protection (WAAP) report, and was positioned highest for Ability to Execute and furthest for Completeness of Vision. https://www.akamai.com/blog/security/akamai-named-a-2022-gartner-magic-quadrant-leader Danielle Walter https://www.akamai.com/blog/security/akamai-named-a-2022-gartner-magic-quadrant-leader Tue, 06 Sep 2022 15:00:00 UTC Holiday Readiness, Part I: Best Practices for Maintaining Peak Performance Preparing for a post-pandemic holiday season means managing for peak application and system performance. https://www.akamai.com/blog/performance/holiday-readiness-part-1-best-practices-for-maintaining-peak-performance Jeff Darnton https://www.akamai.com/blog/performance/holiday-readiness-part-1-best-practices-for-maintaining-peak-performance Thu, 01 Sep 2022 13:00:00 UTC Now Available on GitHub: Akamai CLI Utility v1.0 for Akamai Terraform With v0.9 of the Akamai CLI for Terraform, application development teams can build on infrastructure as code (IaC) and maintain rapid development without compromising security. https://www.akamai.com/blog/security/now-available-on-github-akamai-cli-utility-for-akamai-terraform Alfred Chung https://www.akamai.com/blog/security/now-available-on-github-akamai-cli-utility-for-akamai-terraform Tue, 30 Aug 2022 13:00:00 UTC New Prolexic Partner Megaport Now Live in Australia As part of Akamai’s focus on serving local market needs, we are thrilled to announce new Prolexic connectivity options via Megaport Elastic Fabric in Australia. https://www.akamai.com/blog/news/new-prolexic-partner-megaport-now-live-in-australia Greg Burns https://www.akamai.com/blog/news/new-prolexic-partner-megaport-now-live-in-australia Mon, 29 Aug 2022 13:00:00 UTC What’s New for Developers: August 2022 This August’s developer update brings you some of the things we’ve been most excited to tell you about. We’re highlighting Terraform updates and more. https://www.akamai.com/blog/developers/whats-new-for-developers-august-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-august-2022 Thu, 25 Aug 2022 13:00:00 UTC Mitigating Log4j Abuse Using Akamai Guardicore Segmentation Learn how Akamai Guardicore Segmentation can help you reveal vulnerable servers and applications, and stop exploitation. https://www.akamai.com/blog/security/recommendations-for-log4j-mitigation Guardicore Labs Team https://www.akamai.com/blog/security/recommendations-for-log4j-mitigation Thu, 25 Aug 2022 13:00:00 UTC Akamai’s Insights on DNS in Q2 2022 https://www.akamai.com/blog/security-research/q2-dns-akamai-insights Or Katz & Jim Black https://www.akamai.com/blog/security-research/q2-dns-akamai-insights Thu, 25 Aug 2022 13:00:00 UTC Meet Jessica Scherlag: Senior Manager of Social Media and Engagement Jessica Scherlag discusses the importance of social media platforms, her unconventional career path, and the benefits of pushing past your comfort zone. https://www.akamai.com/blog/culture/meet-jessica-scherlag-senior-manager-social-media-engagement Tashema Nichols-Jones https://www.akamai.com/blog/culture/meet-jessica-scherlag-senior-manager-social-media-engagement Fri, 19 Aug 2022 13:00:00 UTC Deploying Akamai MFA at Scale: 6 Lessons Learned Planning a multi-factor authentication (MFA) rollout? Take a look at the six lessons we learned when we deployed Akamai MFA. https://www.akamai.com/blog/security/6-lessons-learned-deploying-akamai-mfa-at-scale Keith Tomlinson https://www.akamai.com/blog/security/6-lessons-learned-deploying-akamai-mfa-at-scale Wed, 17 Aug 2022 13:00:00 UTC CVE-2022-30216 - Authentication coercion of the Windows “Server” service In this blog, see how an off-by-one error could lead to domain controller access in Microsoft Server Service. https://www.akamai.com/blog/security-research/authentication-coercion-windows-server-service Akamai Security Research https://www.akamai.com/blog/security-research/authentication-coercion-windows-server-service Sat, 13 Aug 2022 08:00:00 UTC It’s Time to Protect Every SIM Ensuring the security of billions of mobile devices is a priority. Learn how Akamai aims to protect and secure every SIM as we continually adapt to new threats. https://www.akamai.com/blog/security/its-time-to-protect-every-sim Jonathan Morgan https://www.akamai.com/blog/security/its-time-to-protect-every-sim Fri, 12 Aug 2022 13:00:00 UTC Meet Tim Vereecke: Technical Solutions Architect Tim Vereecke, technical solutions architect at Akamai, discusses how he uses a developer-first mindset to find internet performance solutions. https://www.akamai.com/blog/developers/meet-tim-vereecke-technical-solutions-architect Chuck Freedman https://www.akamai.com/blog/developers/meet-tim-vereecke-technical-solutions-architect Thu, 11 Aug 2022 13:00:00 UTC Feature Spotlight: Extending Zero Trust Segmentation to the MacOS Announcing our new agent for MacOS endpoints. Of all the leading Zero Trust segmentation providers, Akamai is the only vendor to support MacOS. https://www.akamai.com/blog/security/extending-zero-trust-segmentation-to-the-macos Ravit Greitser https://www.akamai.com/blog/security/extending-zero-trust-segmentation-to-the-macos Wed, 10 Aug 2022 13:00:00 UTC Akamai Has Addressed Browser-Powered Desync Attacks On August 10, 2022, security researcher James Kettle presented a set of novel HTTP request smuggling attacks in his Black Hat talk, https://www.akamai.com/blog/security/akamai-has-addressed-browser-powered-desync-attacks Kaan Onarlioglu https://www.akamai.com/blog/security/akamai-has-addressed-browser-powered-desync-attacks Wed, 10 Aug 2022 13:00:00 UTC Akamai’s Perspective on August Patch Tuesday Want the rundown of what to focus on with Patch Tuesday in one place? Check out this blog, and patch, patch, patch! https://www.akamai.com/blog/security-research/patch-tuesday-august-akamai-insights Akamai Security Research https://www.akamai.com/blog/security-research/patch-tuesday-august-akamai-insights Wed, 10 Aug 2022 07:00:00 UTC Is Your Security Strategy Focused? Strategic security leadership is the overarching recommendation in “How to Respond to the 2022 Cyberthreat Landscape,” a new report from Gartner®. Download your complimentary copy in this blog. https://www.akamai.com/blog/security/is-your-security-strategy-focused Danielle Walter https://www.akamai.com/blog/security/is-your-security-strategy-focused Tue, 09 Aug 2022 13:00:00 UTC Cybersecurity Issues in the Gaming Industry Portend Metaverse Challenges The metaverse has greatly expanded the threat landscape. As industries gamify, gaming’s cybersecurity issues become a checklist for the future. https://www.akamai.com/blog/trends/security-trends-to-address-now-on-our-way-to-the-metaverse Jonathan Singer https://www.akamai.com/blog/trends/security-trends-to-address-now-on-our-way-to-the-metaverse Thu, 04 Aug 2022 13:00:00 UTC Risky Business: Determining Malicious Probabilities Through ASNs Akamai researchers have analyzed ASNs to determine some shocking stats about the state of malicious IPs and where they are from. https://www.akamai.com/blog/security/determining-malicious-probabilities-through-asns Will Rogers https://www.akamai.com/blog/security/determining-malicious-probabilities-through-asns Tue, 02 Aug 2022 13:00:00 UTC India Becomes Top Global Target for API Attacks An increased adoption of APIs also increases the risk of API attacks. Read about how India has become a top global target for API attacks in 2022. https://www.akamai.com/blog/security/india-becomes-top-global-target-for-api-attacks Dean Houari https://www.akamai.com/blog/security/india-becomes-top-global-target-for-api-attacks Thu, 28 Jul 2022 13:00:00 UTC Largest European DDoS Attack on Record On Thursday, July 21st, Akamai detected and mitigated the largest DDoS attack ever launched against a European customer on the Prolexic platform. https://www.akamai.com/blog/security/largest-european-ddos-attack-ever Craig Sparling & Max Gebhardt https://www.akamai.com/blog/security/largest-european-ddos-attack-ever Wed, 27 Jul 2022 09:00:05 UTC Power Digital Growth with App & API Protector Experience “no trade-offs protection” with a free trial of Akamai App & API Protector. https://www.akamai.com/blog/security/power-digital-growth-with-api-protector Danielle Walter https://www.akamai.com/blog/security/power-digital-growth-with-api-protector Tue, 26 Jul 2022 13:00:00 UTC What’s New for Developers: July 2022 This month’s developer update is jam-packed with exciting news, helpful articles, and useful code, including a new Terraform Provider release and much more. https://www.akamai.com/blog/developers/what-new-for-developers-july-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/what-new-for-developers-july-2022 Fri, 22 Jul 2022 13:00:00 UTC PCI DSS v4.0: Meeting Emerging Needs for Script Monitoring and Management PCI DSS v4.0 makes Akamai Client-Side Protection & Compliance essential for any customer that processes or transmits cardholder data. https://www.akamai.com/blog/security/pci-dssv4-meeting-needs-for-script-monitoring-and-management Christine Ferrusi Ross https://www.akamai.com/blog/security/pci-dssv4-meeting-needs-for-script-monitoring-and-management Wed, 20 Jul 2022 13:00:00 UTC Game On! Rooter Achieves Massive Esports Growth Learn how Rooter, India’s leading esports platform, achieved massive esports growth, delivering a gripping experience to players and fans alike. https://www.akamai.com/blog/security/game-on-rooter-achieves-massive-esports-growth Jonathan Singer https://www.akamai.com/blog/security/game-on-rooter-achieves-massive-esports-growth Mon, 18 Jul 2022 05:00:00 UTC Cybersecurity Is a Team Sport: 3 Takeaways from Israel’s Cyber Week The future of cybersecurity relies on successful international partnerships and collaboration to ultimately thwart cybercriminals and cyberattacks. https://www.akamai.com/blog/news/cybersecurity-three-takeaways-from-israel-cyber-week Julie Klein https://www.akamai.com/blog/news/cybersecurity-three-takeaways-from-israel-cyber-week Thu, 14 Jul 2022 13:00:00 UTC The Kit That Wants It All: Scam Mimics PayPal’s Known Security Measures Identity theft affects millions of people every year. See this piece on a scam purporting to be PayPal in an effort to gain total identity theft. https://www.akamai.com/blog/security-research/paypal-phishing-scam-mimics-known-security-measures Larry Cashdollar & Aline Eliovich https://www.akamai.com/blog/security-research/paypal-phishing-scam-mimics-known-security-measures Wed, 13 Jul 2022 13:00:00 UTC Meet Tedd Smith: Solutions Engineer at Akamai Meet Tedd Smith, solutions engineer at Akamai. He discusses today’s media-streaming landscape and how he crafts solutions for higher-quality user experiences. https://www.akamai.com/blog/developers/meet-tedd-smith-solutions-engineer Chuck Freedman https://www.akamai.com/blog/developers/meet-tedd-smith-solutions-engineer Thu, 07 Jul 2022 13:00:00 UTC Ransomware Attack on Airline Industry: Turning Point for India and Others Cybercriminals are attacking organizations in the APAC region with ransomware. Learn how to implement security strategies to mitigate and recover from attacks. https://www.akamai.com/blog/security/ransomware-attack-airline-industry Dean Houari https://www.akamai.com/blog/security/ransomware-attack-airline-industry Tue, 05 Jul 2022 13:00:00 UTC Bloomfield Robotics Wins Funding to Feed People on Earth and in Space Akamai awarded Bloomfield Robotics $1M in cloud, compute, and security products to grow their AI business and help feed the world. https://www.akamai.com/blog/news/bloomfield-robotics-wins-funding Peter Chave https://www.akamai.com/blog/news/bloomfield-robotics-wins-funding Fri, 01 Jul 2022 13:00:00 UTC Akamai’s Observations of Confluence Zero Day (CVE-2022-26134) The Atlassian Confluence vulnerability is here to stay. See Akamai's research into the stats two weeks after the advisory was released. https://www.akamai.com/blog/security-research/atlassian-confluence-vulnerability-observations Chen Doytshman https://www.akamai.com/blog/security-research/atlassian-confluence-vulnerability-observations Tue, 28 Jun 2022 13:00:00 UTC What’s New for Developers: June 2022 Read about our recent Terraform updates and managed database services, our latest Meet the Developer articles, and stream videos on edge computing. https://www.akamai.com/blog/developers/whats-new-for-developers-june-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-june-2022 Fri, 24 Jun 2022 13:00:00 UTC The Relentless Evolution of DDoS Attacks Explore how DDoS attacks are practically unrecognizable from those of the past few years thanks to constant innovation in the threat landscape https://www.akamai.com/blog/security/relentless-evolution-of-ddos-attacks Craig Sparling & Max Gebhardt https://www.akamai.com/blog/security/relentless-evolution-of-ddos-attacks Thu, 23 Jun 2022 13:00:00 UTC Bots Are Scalping Israeli Government Services Bots can be used for good, but can also be nefarious. In this post, see Akamai's research on the Israeli Gamken bot copycat. https://www.akamai.com/blog/security-research/bots-scalping-israeli-government-services Gon Avnon https://www.akamai.com/blog/security-research/bots-scalping-israeli-government-services Thu, 23 Jun 2022 13:00:00 UTC What's the Value of a Key-Value Store? Learn about the benefits and drawbacks of a key-value store: a data structure designed for storing and returning values associated with keys as unique identifiers. https://www.akamai.com/blog/edge/whats-the-value-of-a-key-value-store Jeffrey Costa https://www.akamai.com/blog/edge/whats-the-value-of-a-key-value-store Fri, 17 Jun 2022 13:00:00 UTC Meet Josh Johnson: Senior Enterprise Architect A love of technology and coding brought Josh Johnson to Akamai. Learn what he thinks a developer-first approach means for the Akamai developer community. https://www.akamai.com/blog/developers/meet-josh-johnson-senior-enterprise-architect Chuck Freedman https://www.akamai.com/blog/developers/meet-josh-johnson-senior-enterprise-architect Thu, 16 Jun 2022 13:00:00 UTC Panchan’s Mining Rig: New Golang Peer-to-Peer Botnet Says “Hi!” Akamai researchers have discovered a new P2P botnet targeting APJ. Read about it here. https://www.akamai.com/blog/security-research/new-p2p-botnet-panchan Stiv Kupchik https://www.akamai.com/blog/security-research/new-p2p-botnet-panchan Wed, 15 Jun 2022 13:00:00 UTC Akamai: Protecting Life Online with Secure Internet Access Easily deliver value-added security services to families and businesses with Akamai Secure Internet Access services for ISPs and MNOs. https://www.akamai.com/blog/security/akamai-protecting-life-online-with-secure-internet-access Jim Black https://www.akamai.com/blog/security/akamai-protecting-life-online-with-secure-internet-access Mon, 06 Jun 2022 13:00:00 UTC 10 Years Since World IPv6 Launch A decade past World IPv6 Launch and we are well through the migration away from legacy IPv4, but still have a long way to go. https://www.akamai.com/blog/trends/10-years-since-world-ipv6-launch Erik Nygren https://www.akamai.com/blog/trends/10-years-since-world-ipv6-launch Mon, 06 Jun 2022 13:00:00 UTC The Next Generation of HTTP The IETF just released HTTP/3, an update to HTTP that leverages new transport protocol QUIC. Learn about how the new RFCs can affect any references to HTTP. https://www.akamai.com/blog/news/the-next-generation-of-http Mike Bishop https://www.akamai.com/blog/news/the-next-generation-of-http Mon, 06 Jun 2022 09:00:00 UTC How Akamai Works with Internet Organizations Learn about a few of the internet organizations, who are developing standards and best practices, that Akamai works with to help foster innovation. https://www.akamai.com/blog/culture/how-akamai-works-with-internet-organizations Rich Salz https://www.akamai.com/blog/culture/how-akamai-works-with-internet-organizations Fri, 03 Jun 2022 13:00:00 UTC Akamai Protects Against the Atlassian Confluence 0-Day (CVE-2022-26134) Atlassian has released a security advisory to address a remote code execution vulnerability (CVE-2022-26134) that’s affecting Confluence Server and Data Center products. https://www.akamai.com/blog/security/akamai-protects-against-atlassian-confluence-0-day Akamai Threat Research Team https://www.akamai.com/blog/security/akamai-protects-against-atlassian-confluence-0-day Fri, 03 Jun 2022 09:00:52 UTC DNS: The Easiest Way to Exfiltrate Data? Low throughput DNS exfiltration is a slow and low attack technique that is very hard to detect. Learn how Akamai can quickly detect this in near real time. https://www.akamai.com/blog/security/dns-the-easiest-way-to-exfiltrate-data Jim Black https://www.akamai.com/blog/security/dns-the-easiest-way-to-exfiltrate-data Fri, 27 May 2022 13:00:00 UTC How Akamai’s Employees Help Us Achieve Our Sustainability Goals Learn about our commitment to environmental sustainability, Akamai Earth Month, and other campaigns that inspire employees to take action to protect the planet. https://www.akamai.com/blog/culture/akamai-employees-helping-achieve-sustainability-goals Courtney Hadden https://www.akamai.com/blog/culture/akamai-employees-helping-achieve-sustainability-goals Thu, 26 May 2022 13:00:00 UTC What’s New for Developers: May 2022 Read on to get information on Akamai’s new managed database service powered by Linode, to watch a fun video on DDoS attacks, and more. https://www.akamai.com/blog/developers/whats-new-for-developers-may-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-may-2022 Wed, 25 May 2022 13:00:00 UTC REvil Resurgence? Or a Copycat? Has REvil returned? In this new post by Akamai's SIRT, see a DDoS incident by a threat actor claiming to be REvil. https://www.akamai.com/blog/security/revil-resurgence-or-copycat Larry Cashdollar https://www.akamai.com/blog/security/revil-resurgence-or-copycat Wed, 25 May 2022 13:00:00 UTC Meet Mike Schiessl: Senior Technical Marketing Engineer Meet Mike Schiessl to learn more about his career path, how companies can support a DevOps to DevSecOps transition, and the future of security and business. https://www.akamai.com/blog/developers/meet-senior-technical-marketing-engineer-mike-schiessl Chuck Freedman https://www.akamai.com/blog/developers/meet-senior-technical-marketing-engineer-mike-schiessl Thu, 19 May 2022 13:00:00 UTC 4 Steps to Prepare for Open Enrollment: Ready for Takeoff? Preparing for open enrollment is a key part of running efficient healthcare organizations, but it's difficult to know where to start. Learn which steps to take. https://www.akamai.com/blog/edge/4-steps-to-prepare-for-open-enrollment Bridget Meuse & Connor Dario https://www.akamai.com/blog/edge/4-steps-to-prepare-for-open-enrollment Tue, 17 May 2022 13:00:00 UTC Detecting Malicious JavaScript with Secure Internet Access Enterprise Secure Web Gateway JavaScript is everywhere, and when malicious can be hugely detrimental. In this blog, learn about the types of malicious JavaScript and how Akamai's SWG product helps keep you more secure from it. https://www.akamai.com/blog/security/detecting-malicious-javascript-with-swg Jordan Garzon https://www.akamai.com/blog/security/detecting-malicious-javascript-with-swg Fri, 13 May 2022 13:00:00 UTC How to Cover 6 Core Areas of PCI Compliance with Armis and Akamai The joint security solution from Akamai Guardicore Segmentation and Armis supports PCI compliance requirements to protect consumer data across entire networks. https://www.akamai.com/blog/security/pci-compliance-armis-akamai Marco Raffaelli https://www.akamai.com/blog/security/pci-compliance-armis-akamai Thu, 12 May 2022 13:00:00 UTC RPC Runtime, Take Two: Discovering a New Vulnerability Patching and bug hunting is a cyclical process. See part two of our Patch Tuesday RPC Runtime research, updated for May 2022. https://www.akamai.com/blog/security/rpc-runtime-patch-tuesday-take-two Ben Barnea https://www.akamai.com/blog/security/rpc-runtime-patch-tuesday-take-two Tue, 10 May 2022 20:00:00 UTC Protecting Your Healthcare Organization During Uncertain Times Explore three ways healthcare organizations can boost cybersecurity, critical infrastructure, and ransomware protection to prepare for potential cyberthreats. https://www.akamai.com/blog/security/protecting-your-healthcare-organization-during-uncertain-times Bridget Meuse & Tony Lauro https://www.akamai.com/blog/security/protecting-your-healthcare-organization-during-uncertain-times Mon, 09 May 2022 13:00:00 UTC Phishing Is Still a Security Challenge Phishing is not a new security problem. In fact, it’s been around since the earliest days of email when most users received numerous emails from African kings or other high-ranking officials who promised them great riches if they simply provided their bank account details. Things have changed a lot since then. https://www.akamai.com/blog/security/phishing-security-challenge Jim Black https://www.akamai.com/blog/security/phishing-security-challenge Thu, 05 May 2022 13:00:00 UTC An Attack Surface Workout for Web Application and API Attacks WAF Attacks have been increasing dramatically over the last 9 months. These attacks cut across industries, geos and customers. Growth has largely been driven by Local File Inclusion (lfi) attacks, which took the lead from SQL Injection attacks in early 2021 before just taking off in the fall. https://www.akamai.com/blog/security/attack-surface-workout-web-application-api-attacks Tom Emmons https://www.akamai.com/blog/security/attack-surface-workout-web-application-api-attacks Wed, 04 May 2022 13:00:00 UTC Zero Trust and the Fallacy of Secure Networks Talking about secure networks is like talking about safe pools. A pool is just a body of water, and if it has enough water to swim in, then it has more than enough water to drown in. A pool is inherently unsafe. We, therefore, take care in how we use a pool: We don’t swim alone; we don’t run around the pool; we don’t dive in the shallow end; and we don’t swim less than 15 minutes after eating. (Is that 15-minute rule still a thing?) These pool-safety policies ensure that our use of the pool is as safe as possible, but they do not make the pool safe in and of itself. https://www.akamai.com/blog/security/zero-trust-and-the-fallacy-of-secure-networks Robert Blumofe https://www.akamai.com/blog/security/zero-trust-and-the-fallacy-of-secure-networks Tue, 03 May 2022 13:00:00 UTC Platform Update: Build the Future on Akamai Today, technology is infused into nearly everything we do. The data behind personalized recommendations, connected devices, and wearables has changed how we engage with the world around us — whether we’re driving to a new destination, purchasing from a new retailer, or monitoring our health. https://www.akamai.com/blog/news/build-the-future-on-akamai Ari Weil https://www.akamai.com/blog/news/build-the-future-on-akamai Thu, 28 Apr 2022 13:00:00 UTC Reaching the Convergence of Security and Productivity It’s all too common that IT security tools and practices come at the cost of productivity. Even physical security has this trade-off. There would be no rush to arrive at the airport an hour early if it weren’t for the extensive security measures that flying entails. As a result of this trade-off, our concern often isn’t if we can increase security in our networks — rather, it’s if the increased security is worth the impact on the business. https://www.akamai.com/blog/security/reaching-convergence-security-productivity Dan Petrillo https://www.akamai.com/blog/security/reaching-convergence-security-productivity Tue, 26 Apr 2022 19:01:00 UTC Protecting the Digital Experience https://www.akamai.com/blog/news/protect-digital Christine Ferrusi Ross https://www.akamai.com/blog/news/protect-digital Tue, 26 Apr 2022 13:00:00 UTC What’s New for Developers: April 2022 We have big news this month. You may have already heard that we acquired Linode, creating the world’s most distributed compute platform. In addition, we have release announcements and new developer content to share with you! https://www.akamai.com/blog/developers/whats-new-for-developers-april-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-april-2022 Mon, 25 Apr 2022 13:00:00 UTC Australia Experiences Massive Spike in WAF Multi-Vector, DDoS Attacks With web applications under increased attacks, Akamai has analyzed data points for web application firewall (WAF) multi-vector and DDoS attacks between April 2021 and March 2022 to determine the severity of the situation in Australia. https://www.akamai.com/blog/security/australia-waf-multi-vector-ddos-attacks Dean Houari https://www.akamai.com/blog/security/australia-waf-multi-vector-ddos-attacks Thu, 21 Apr 2022 21:33:00 UTC World-Class Live Streaming From the Royal Opera House Based in Covent Garden, London, the Royal Opera House brings together the world’s most extraordinary artists to share live, streamed, and broadcast events and performances. We’re delighted that this iconic British institution has chosen to work with Akamai to bring its fantastic productions to the big screen. https://www.akamai.com/blog/culture/live-streaming-from-the-royal-opera-house Ina Christova https://www.akamai.com/blog/culture/live-streaming-from-the-royal-opera-house Thu, 21 Apr 2022 13:00:00 UTC Making the Edge Work for You For many people, “building at the edge” may conjure fantastical images of nearly sci-fi–like computational power embedded on devices all around us, crunching massive volumes of data. We’re getting there. Today’s reality is that more workloads are moving to the edge to take advantage of the benefits, but many are still too resource-intensive to be feasible. For the workloads that can be moved, the results can lead to transformational digital experiences for users and developers alike. https://www.akamai.com/blog/edge/making-the-edge-work-for-you Renny Shen https://www.akamai.com/blog/edge/making-the-edge-work-for-you Thu, 21 Apr 2022 09:00:00 UTC Demystify Supply Chain Emissions with Akamai’s New Carbon Calculator Oftentimes, organizations view supply chains as an extension of their own business and require suppliers to adhere to codes of conduct, efficiency standards, and more. Today, this has expanded to environmental sustainability goals as well. Companies understand that the environmental impact of their economic activity is not limited to their direct operations. It’s integral to look beyond direct emissions and risks to the entire value chain. https://www.akamai.com/blog/culture/akamai-carbon-calculator-supply-chain-emissions Teresa Shirkova https://www.akamai.com/blog/culture/akamai-carbon-calculator-supply-chain-emissions Fri, 15 Apr 2022 13:00:00 UTC Undetected Attacks on Anti-Malware Agents Using DNS Spoofing Although we’ve made significant progress as a community in this regard, there are still instances in which the outcome of DNS spoofing attacks can go undetected. In this article, we describe a DNS spoofing attack that goes unnoticed by users. https://www.akamai.com/blog/security/attacks-anti-malware-dns-spoofing Asaf Nadler https://www.akamai.com/blog/security/attacks-anti-malware-dns-spoofing Thu, 14 Apr 2022 13:00:00 UTC Picture-Perfect Gaming Experience for WorldMatch WorldMatch, a games and content provider for global markets, collaborates with some of the biggest international casinos. Headquartered in Italy and in operation since 2003, the gaming provider boasts a portfolio of more than 200 games, 160 slot machines with 70 game engines, 30 table games, and all types of video poker. We’re delighted that this innovative company has chosen to work with Akamai to deliver a picture-perfect experience for their customers via the services provider, Criticalcase. https://www.akamai.com/blog/security/worldmatch-gaming Ina Christova https://www.akamai.com/blog/security/worldmatch-gaming Wed, 13 Apr 2022 13:00:00 UTC Critical Remote Code Execution Vulnerabilities in Windows RPC Runtime Microsoft’s April 2022 Patch Tuesday introduced patches to more than a hundred new vulnerabilities in various components. Three critical vulnerabilities were found and patched in Windows RPC (Remote Procedure Call) runtime: CVE-2022-24492 and CVE-2022-24528 (discovered by Yuki Chen with Cyber KunLun) CVE-2022-26809 (discovered by BugHunter010 with Kunlun) https://www.akamai.com/blog/security/critical-remote-code-execution-vulnerabilities-windows-rpc-runtime Ben Barnea & Ophir Harpaz https://www.akamai.com/blog/security/critical-remote-code-execution-vulnerabilities-windows-rpc-runtime Wed, 13 Apr 2022 09:15:00 UTC Akamai Is a Leader in Bot Management — What That Means for You Obviously we’re proud to be a leader. Bot management is a contact sport, where being great is a requirement if you want to stop the persistent adversarial bots. So it’s rewarding to be recognized for the work we’re doing keeping the bad bots away from our customers’ digital businesses. https://www.akamai.com/blog/news/leadership-bot-management Christine Ferrusi Ross https://www.akamai.com/blog/news/leadership-bot-management Tue, 12 Apr 2022 15:00:00 UTC Why Linode+Akamai Is Transformational for How Developers Use the Cloud Just three weeks have gone by since Akamai officially welcomed Linode into our fold, and I’m encouraged by the excitement that so many have expressed about the combination of our two companies since we announced the acquisition in February. In conversations with us, industry analysts use the word “transformational” to sum up the potential impact of our merger on the marketplace. https://www.akamai.com/blog/news/linode-akamai-transform-how-developers-use-the-cloud Tom Leighton https://www.akamai.com/blog/news/linode-akamai-transform-how-developers-use-the-cloud Tue, 12 Apr 2022 13:00:00 UTC Markdown Menace: Discovering an LFI Vulnerability on a Blogging Platform Protecting sensitive information is a recurring and widely known concern in the security community. As researchers, we know all too well how information can be used maliciously (I mean, come on … it’s our job). Considering the size of the threat vector that is LFI, it’s something that developers and security professionals alike need to be aware of. https://www.akamai.com/blog/security/markdown-menace Adhyayan Panwar https://www.akamai.com/blog/security/markdown-menace Tue, 12 Apr 2022 13:00:00 UTC Conti’s Hacker Manuals — Read, Reviewed & Analyzed Conti is a notorious ransomware group that targets high-revenue organizations. They were first detected in 2020, and appear to be based in Russia. It is believed that the group is the successor to Ryuk ransomware group. According to Chainalysis, The ransomware group was the highest grossing of all ransomware groups in 2021, with an estimated revenue of at least 180 million dollars. https://www.akamai.com/blog/security-research/conti-hacker-manual-reviewed Stiv Kupchik https://www.akamai.com/blog/security-research/conti-hacker-manual-reviewed Tue, 05 Apr 2022 18:00:00 UTC Spring Cloud Function SpEL Injection (CVE-2022-22963) Exploited in the Wild Although Spring Cloud Functions are not as widespread as the Log4j library, and should provide a good separation from the hosting server, some draw the line between the two, due to the ease of exploitation over HTTP/s. This new vulnerability will definitely result in many threat actors launching campaigns for crypto-mining, ddos, ransomware, and as a golden ticket to break into organizations for the next years to come. https://www.akamai.com/blog/security/spring-cloud-function Akamai Threat Research Team https://www.akamai.com/blog/security/spring-cloud-function Thu, 31 Mar 2022 19:30:00 UTC Mitigating Spring Core “Spring4Shell” Zero-Day When Spring, the Java-based application, fell victim to cyberattacks, Akamai's Adaptive Security Engine detected zero-day attacks and protected customers against them. https://www.akamai.com/blog/security/spring-core-spring4shell-zero-day Akamai Threat Research Team https://www.akamai.com/blog/security/spring-core-spring4shell-zero-day Thu, 31 Mar 2022 13:00:00 UTC Meet Anthony Hogg: Senior Enterprise Architect and Lifelong Learner At Akamai and across the tech industry at large, best practices and tools are constantly evolving. To keep up with these changes, a passion for learning is key, especially among those who support and enable others. One Senior Enterprise Architect on Akamai’s Advanced Solutions team, Anthony Hogg, truly embodies this value. https://www.akamai.com/blog/developers/meet-anthony-hogg-enterprise-architect Chuck Freedman https://www.akamai.com/blog/developers/meet-anthony-hogg-enterprise-architect Wed, 30 Mar 2022 13:00:00 UTC Welcome to Edge Diagnostics After more than a year of dedication and hard work, we are delighted to officially announce the launch of our new Edge Diagnostics application on March 30, 2022. Diagnosing network and content issues quickly and effectively is critical to your success! Therefore the aim is to make the existing diagnostic tools faster, easier to navigate, more user-friendly, and with improved functionality and a developer focus in mind. https://www.akamai.com/blog/news/welcome-to-edge-diagnostics Amit Mohanty https://www.akamai.com/blog/news/welcome-to-edge-diagnostics Wed, 30 Mar 2022 13:00:00 UTC A Fast and Seamless Gaming Experience for Gameloft Gameloft is a leading gaming provider with more than 20 years of history. The company, created in 2000, has a passion for games and a desire to distribute them to even more players around the world. By bringing the wonders of games to mobile devices and, now, to all digital platforms, Gameloft has helped to create an entirely new market that has become the biggest one in gaming. We’re very excited that this company, which has revolutionized the gaming industry, has chosen to work with Akamai. https://www.akamai.com/blog/security/gameloft Ina Christova https://www.akamai.com/blog/security/gameloft Tue, 29 Mar 2022 13:00:00 UTC Akamai Accelerator Program: Technological Solutions for India’s Water Crisis Akamai’s India Corporate Social Responsibility (CSR) Trust is helping to tackle this major challenge. In accordance with the country’s CSR mandates, the trust allocates 2% of the branch’s revenue to CSR programs. Its flagship initiative is the Akamai Accelerator Program, which supports innovators who use scalable and sustainable technologies to solve India’s water crisis. As the impacts of climate change accelerate, so must we. https://www.akamai.com/blog/culture/water-crisis-tech-solutions Neha Jain https://www.akamai.com/blog/culture/water-crisis-tech-solutions Mon, 28 Mar 2022 13:00:00 UTC What’s New for Developers: March 2022 We have some excellent highlights this month. We’re excited to announce new videos, useful articles, an event recap, and much more. https://www.akamai.com/blog/developers/whats-new-for-developers-march-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-march-2022 Fri, 25 Mar 2022 13:00:00 UTC What's Driving Multi-Factor Authentication Adoption? The need for businesses to deploy MFA for the protection of employee accounts has never been greater — according to the latest Verizon Data Breach report, nearly 80% of data breaches involve the use of stolen or compromised employee credentials and brute force logins. https://www.akamai.com/blog/security/mfa-adoption Jim Black https://www.akamai.com/blog/security/mfa-adoption Thu, 24 Mar 2022 13:00:00 UTC Akamai and Linode: Giving Developers One Place to Build, Run, and Secure Apps I am incredibly excited to announce that today we have completed the acquisition of Linode. You may have seen our press release announcing the acquisition, or listened to our earnings call during which our executives discussed why this is the right strategic investment for Akamai. But I wanted to use this opportunity to highlight why, as a technologist, this is such an important step forward for both Akamai and Linode, and what you can expect to see from us in the future. https://www.akamai.com/blog/news/akamai-and-linode Noam Freedman https://www.akamai.com/blog/news/akamai-and-linode Mon, 21 Mar 2022 08:05:00 UTC Adding Akamai Shared Domains to the Public Suffix List Akamai plans to submit a number of our shared domains to the “PRIVATE” section of the Public Suffix List (PSL) at some point on or after March 31, 2022. The PSL contains multi-party domain suffixes and is used by a wide range of client software (for example, web browsers) to implement policy decisions, such as to prevent cookies from being set on public or multi-party domains. https://www.akamai.com/blog/developers/adding-akamai-shared-domains-to-the-public-suffix-list Erik Nygren https://www.akamai.com/blog/developers/adding-akamai-shared-domains-to-the-public-suffix-list Mon, 21 Mar 2022 05:00:00 UTC The “PhoneHome” DDoS Attack — Everything You Need to Know A vulnerability in enterprise collaboration suite MiCollab by telecommunications company Mitel has been abused for distributed denial-of-service (DDoS) attacks with record-breaking amplification potential. https://www.akamai.com/blog/security/phonehome-ddos-attack Sven Dummer https://www.akamai.com/blog/security/phonehome-ddos-attack Thu, 17 Mar 2022 13:00:00 UTC Akamai Is a Leader in Forrester New Wave: Microsegmentation We are excited to be named a Leader in The Forrester New Wave™: Microsegmentation, Q1 2022. We were evaluated alongside eight other vendors in the microsegmentation space and ranked in 10 criteria, including product vision, interface and reporting, host agents, agentless aspect, product, and services support. https://www.akamai.com/blog/security/akamai-microsegmentation Ravit Greitser https://www.akamai.com/blog/security/akamai-microsegmentation Tue, 15 Mar 2022 13:00:00 UTC Six Key Takeaways from the OMB Memo In May 2021, following a number of high-profile security incidents, U.S. President Biden issued an executive order that set out a high-level agenda to modernize and improve the government’s cyber resilience. This January, the U.S. Office of Management and Budget (OMB) issued a memo to the heads of executive departments and agencies that gave much more detail on how the U.S. government will move toward Zero Trust security principles. https://www.akamai.com/blog/security/omb-memo Jim Black https://www.akamai.com/blog/security/omb-memo Fri, 11 Mar 2022 14:00:00 UTC In China and Japan, Malicious Botnets Surge Amidst Holiday Ecommerce Traffic Akamai data shows that in the days leading up to and including Lunar New Year, the activity of malicious bots increased 15% in China over the previous month. While a similar surge occurs during the high-traffic seen at the end-of-year holidays in EMEA and the U.S. — China and Japan present a particularly enticing opportunity for successful cyberattacks because of the sheer volume in traffic: Retailers and ecommerce here serve some of the largest populations in the world. https://www.akamai.com/blog/security/china-and-japan-holiday-botnets Boaz Gelbord https://www.akamai.com/blog/security/china-and-japan-holiday-botnets Thu, 10 Mar 2022 14:00:00 UTC DNS Cybersquatting: The Case for Edge DNS Zone Protect Cybersquatting, also known as domain squatting, is a type of scam that mimics a brand's domain to confuse potential victims and gain their trust. According to Revision Legal, “Cybersquatting is prohibited in the U.S. by federal law under the Anticybersquatting Consumer Protection Act (ACPA.)” These fake domains can be used in cyberattacks — especially phishing attacks. https://www.akamai.com/blog/security/dns-cybersquatting Noy Aizenberg https://www.akamai.com/blog/security/dns-cybersquatting Thu, 10 Mar 2022 14:00:00 UTC The Akamai Foundation: Making a Global Impact In 2021, the impact of the Akamai Foundation’s philanthropic activities continued to expand beyond science, technology, engineering, and mathematics (STEM) education, deepening our commitment to digital equity and inclusion around the globe and to making a positive impact in the communities we serve. https://www.akamai.com/blog/news/akamai-foundation-global-impact Kim Salem-Jackson https://www.akamai.com/blog/news/akamai-foundation-global-impact Wed, 09 Mar 2022 14:00:00 UTC Greenwashing or Legit? I think we can all agree that sustainability is one of the most important topics that we will discuss this year. It's driving consumer habits, business practices, and investment decisions. And it’s a discussion that’s happening at every level of the business; from procurement all the way up to the boardroom. https://www.akamai.com/blog/trends/greenwashing Natalie Billingham https://www.akamai.com/blog/trends/greenwashing Wed, 09 Mar 2022 14:00:00 UTC How We’re Conserving Energy While Energizing Online Experiences I’ve always loved building things. At Akamai, I get to be part of a team that builds amazing things — things that power and protect online experiences and make life better for billions of people, billions of times a day. But delivering those online experiences comes with a catch. https://www.akamai.com/blog/news/conserving-energy Robert Blumofe https://www.akamai.com/blog/news/conserving-energy Tue, 08 Mar 2022 14:00:00 UTC CVE-2022-26143: TP240PhoneHome Reflection/Amplification DDoS Attack Vector A new reflection/amplification distributed denial of service (DDoS) vector with a record-breaking potential amplification ratio of 4,294,967,296:1 has been abused by attackers in the wild to launch multiple high-impact DDoS attacks. https://www.akamai.com/blog/security/phone-home-ddos-attack-vector Chad Seaman https://www.akamai.com/blog/security/phone-home-ddos-attack-vector Tue, 08 Mar 2022 14:00:00 UTC What Does Fishing for Rebar Have to Do with Building a More Sustainable Internet? Danny Lewin Community Care Days (DLCCDs) are a celebration of our late co-founder Danny Lewin’s generous spirit and his tenacious appetites for collaboration, innovation, and (especially) giving back to our global community. DLCCDs bring to life our values and empower all Akamai employees to volunteer in the communities where we work, operate, and live. https://www.akamai.com/blog/culture/fishing-for-rebar Mike Mattera https://www.akamai.com/blog/culture/fishing-for-rebar Mon, 07 Mar 2022 14:00:00 UTC Actions Akamai Is Taking on Russia and Ukraine Akamai stands with the people of Ukraine. As the assault on Ukraine continues, we are inspired by the courageous citizens defending their sovereignty. https://www.akamai.com/blog/news/ukraine-statement Akamai https://www.akamai.com/blog/news/ukraine-statement Mon, 07 Mar 2022 12:59:00 UTC Powering and Protecting Online Privacy: iCloud Private Relay and Information for Akamai Customers See how Apple worked with Akamai to launch iCloud Private Relay. Learn about the service and how it can be best leveraged for Akamai customers. https://www.akamai.com/blog/cloud/powering-and-protecting-online-privacy-icloud-private-relay Kit Knox https://www.akamai.com/blog/cloud/powering-and-protecting-online-privacy-icloud-private-relay Wed, 02 Mar 2022 14:00:00 UTC Creating a More Diverse Tech Future with the Akamai Foundation 2021, a year of creating a more diverse tech future with The Akamai Foundation. https://www.akamai.com/blog/culture/akamai-foundation-diverse-tech-future Kara DiGiacomo https://www.akamai.com/blog/culture/akamai-foundation-diverse-tech-future Tue, 01 Mar 2022 15:00:00 UTC TCP Middlebox Reflection: Coming to a DDoS Near You Over the past week, Akamai Security Researchers have detected and analyzed a series of TCP reflection attacks, peaking at 11 Gbps at 1.5 Mpps, that were leveled against Akamai customers. The attack, amplified with a technique called TCP Middlebox Reflection, abuses vulnerable firewalls and content filtering systems to reflect and amplify TCP traffic to a victim machine, creating a powerful DDoS attack. https://www.akamai.com/blog/security/tcp-middlebox-reflection Security Intelligence Response Team https://www.akamai.com/blog/security/tcp-middlebox-reflection Tue, 01 Mar 2022 13:38:00 UTC Geopolitical Tensions Increase Risk of DDoS Attacks Among Other Damaging Intrusions With Ukraine moving beyond the brink of war with an official invasion by Russia underway, organizations both near and afar must brace for potential repercussions in the form of crippling cyberattacks and intrusions. Already Ukraine has been bombarded with DDoS assaults aimed at taking down government sites, communication providers, and financial institutions. https://www.akamai.com/blog/security/increasing-ddos-attacks-geopolitical-tension Craig Sparling https://www.akamai.com/blog/security/increasing-ddos-attacks-geopolitical-tension Fri, 25 Feb 2022 22:32:00 UTC What’s New for Developers: February 2022 A lot has happened since we published our January recap blog. Akamai launched a new documentation site on readme.io, we started a new season of Terraform Tapas, and we saw many amazing contributions from our Developer Champions. https://www.akamai.com/blog/developers/whats-new-for-developers-february-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-february-2022 Fri, 25 Feb 2022 14:00:00 UTC Operational Readiness and Response to the Ukraine Crisis Akamai’s security and network teams use our vast view of internet activity to closely monitor and act upon potential cyber threats, and we are taking appropriate measures to review our defensive posture and ensure the integrity of Akamai systems and the Akamai network. https://www.akamai.com/blog/security/operational-readiness-response-to-ukraine-crisis Akamai https://www.akamai.com/blog/security/operational-readiness-response-to-ukraine-crisis Thu, 24 Feb 2022 22:00:00 UTC Akamai Wins Brandon Hall Award for Best Learning Technology The Technical Enablement and Education team, part of Akamai’s Global Services organization, has won a coveted Brandon Hall Group silver medal for “Excellence in Technology,” for their automatic hands-on Lab Validation System (LVS). The automatic LVS is used throughout Global Service training courses, as well as in Channel Partner product certification, to provide real-time evaluations quickly and accurately for hands-on lab training associated with learning how to implement Akamai products. https://www.akamai.com/blog/news/akamai-wins-brandon-hall-award Magdalena Frankiewicz https://www.akamai.com/blog/news/akamai-wins-brandon-hall-award Thu, 24 Feb 2022 14:00:00 UTC A Definitive Guide to the Remote Procedure Call (RPC) Filter https://www.akamai.com/blog/security/guide-rpc-filter Ophir Harpaz & Stiv Kupchik https://www.akamai.com/blog/security/guide-rpc-filter Wed, 23 Feb 2022 14:00:00 UTC Adding Multi-Factor Authentication to Employee Logins: A Sound Security Principle The year 2021 was definitely challenging for security practitioners. The number of data breaches continued to rise; a report issued by the Identity Theft Resource Center stated that the total number of breaches in the first three quarters of 2021 exceeded the total number of events in all of 2020 by 17%. https://www.akamai.com/blog/security/adding-multi-factor-authentication Jim Black https://www.akamai.com/blog/security/adding-multi-factor-authentication Tue, 22 Feb 2022 14:00:00 UTC Meet Mike Elissen: Founder of Our Akamai Developer Champions Program Our longest-standing Developer Advocate, Mike Elissen, noticed an opportunity to make Akamai’s developer relations even stronger. He co-created Developer Champions, an advocacy program that helps Akamai employees better meet customer needs. https://www.akamai.com/blog/developers/meet-mike-elissen-founder-of-our-akamai-developer-champions-program Chuck Freedman https://www.akamai.com/blog/developers/meet-mike-elissen-founder-of-our-akamai-developer-champions-program Fri, 18 Feb 2022 14:00:00 UTC Building the Future — Akamai’s Outlook on the Linode Acquisition Akamai announced our intent to acquire Linode. The acquisition is intended to create the world’s most distributed compute platform. This new cloud to edge platform will make it easier for developers and businesses to build, run, and secure applications, especially given the complexities of Web3. https://www.akamai.com/blog/news/building-the-future-akamai-and-linode Adam Karon https://www.akamai.com/blog/news/building-the-future-akamai-and-linode Thu, 17 Feb 2022 15:00:00 UTC 1&1 Versatel Expands Its Business Portfolio in Germany with Akamai 1&1 Versatel is a B2B provider for fibre gigabit connections and network-related services in Germany. The company is part of the United Internet AG and as such a sister company of 1&1 AG. 1&1 Versatel operates one of the biggest and most powerful fibre networks in Germany - providing its own network in more than 250 German cities and has implemented over 50,000 business customer solutions. We’re delighted that such an innovative company has chosen to partner with Akamai to increase the reach of its customer base to include smaller enterprises and to make its operations secure. https://www.akamai.com/blog/news/versatel-expands-portfolio-with-akamai Akamai https://www.akamai.com/blog/news/versatel-expands-portfolio-with-akamai Thu, 17 Feb 2022 14:00:00 UTC Akamai’s Compliance with Cross-border Transfer Laws Akamai is compliant with applicable data privacy regulations in countries where we and our customers conduct business. This is a fundamental tenet of our company’s core values. After all, when you make life better for billions of people, billions of times a day, there’s an expectation that you will also protect their lives online. And that is exactly what we do. https://www.akamai.com/blog/security/akamai-data-privacy-compliance James Casey https://www.akamai.com/blog/security/akamai-data-privacy-compliance Wed, 16 Feb 2022 14:00:00 UTC Log4j Bringing You Down? Try Infection Monkey’s New Log4Shell Attack Simulation What if you could see how a real cyberattack might unfold in your network? Imagine the insights you would gain into your security posture if you could safely and easily simulate the behavior of malicious actors before they hit your defenses. That’s what the Infection Monkey does. https://www.akamai.com/blog/security/infection-monkey-new-log4shell-simulation The Infection Monkey team https://www.akamai.com/blog/security/infection-monkey-new-log4shell-simulation Mon, 14 Feb 2022 14:00:00 UTC Why You Shouldn't Tie IP Addresses to Tokens Locking tokens to the client IP address might seem like a good way to prevent content theft, such as sharing of authenticated URLs that include tokens. It might even appear to work in small-scale test environments. However, the internet has evolved to a point where it’s quite common for clients to use multiple source IP addresses. This is especially true when a token is created by a server on one hostname (such as a CMS) but then validated by a server on another hostname, such as an Akamai edge server, when serving content. https://www.akamai.com/blog/developers/why-you-shouldn-t-tie-ip-addresses-to-tokens Alex Balford & Erik Nygren https://www.akamai.com/blog/developers/why-you-shouldn-t-tie-ip-addresses-to-tokens Fri, 11 Feb 2022 14:00:00 UTC Exceptional Brand Experiences Go Far Beyond the 30-Second Super Bowl Ad Super Bowl LVI is almost here, and with that comes one of my favorite pastimes: watching the commercials! And you know I’m not alone — 30% of viewers tune in to the big game primarily to see the commercials, upping the pressure on CMOs to “get it right.” But winning the hearts and minds of the more than 100 million anticipated viewers goes far beyond creating a captivating 30- or 60-second spot. In fact, the production, supporting digital assets, celebrity endorsements, talking animals, etc. just scratch the surface when it comes to delivering an exceptional brand experience. https://www.akamai.com/blog/security/power-and-protect-your-brand-during-the-big-game-and-beyond Kim Salem-Jackson https://www.akamai.com/blog/security/power-and-protect-your-brand-during-the-big-game-and-beyond Fri, 11 Feb 2022 14:00:00 UTC Welcome to Akamai TechDocs We're pleased to announce the launch of Akamai’s brand-new documentation site: techdocs.akamai.com. Powered by ReadMe, our new site offers intuitive and interactive content designed to help you get the most out of your Akamai products. https://www.akamai.com/blog/developers/welcome-to-akamai-techdocs Beth Favini https://www.akamai.com/blog/developers/welcome-to-akamai-techdocs Thu, 10 Feb 2022 20:40:00 UTC An Unprecedented Opportunity to Build Dynamic, Secure Broadband Access for All of the U.S. All Americans, regardless of background or location, deserve a fast, safe, and reliable digital experience. Whether in Silicon Valley, rural Montana, or an underserved area in Chicago, entrepreneurs, businesses, and consumers should be on an equal footing online. Unfortunately, that is not the current reality, and the pandemic only amplified and exacerbated the existing digital divides we know so well. https://www.akamai.com/blog/news/dynamic-secure-broadband-access Lauren Van Wazer & Robert Blumofe https://www.akamai.com/blog/news/dynamic-secure-broadband-access Thu, 10 Feb 2022 19:00:31 UTC FritzFrog: P2P Botnet Hops Back on the Scene FritzFrog is a peer-to-peer botnet, which means its command and control server is not limited to a single, centralized machine, but rather can be done from every machine in its distributed network. In other words, every host running the malware process becomes part of the network, and is capable of sending, receiving, and executing the commands to control machines in the network. https://www.akamai.com/blog/security-research/fritzfrog-p2p Ben Barnea, Shiran Guez & Ophir Harpaz https://www.akamai.com/blog/security-research/fritzfrog-p2p Thu, 10 Feb 2022 14:00:00 UTC A New Approach to Blocking Malicious JavaScript https://www.akamai.com/blog/security/new-approach-blocking-malicious-javaScript Jim Black https://www.akamai.com/blog/security/new-approach-blocking-malicious-javaScript Wed, 09 Feb 2022 14:00:00 UTC What’s New for Developers: January 2022 Hello, and welcome to our very first Developer Community update of 2022. In this new monthly series, we’ll share highlights of what is happening across the Akamai Developer Community. Since this is the first blog we’re posting, we will also catch up on news from October 2021 through today. https://www.akamai.com/blog/developers/whats-new-for-developers-january-2022 Jessica Capuano Mora https://www.akamai.com/blog/developers/whats-new-for-developers-january-2022 Mon, 31 Jan 2022 14:00:00 UTC Universal Plug and Play (UPnP): What You Need to Know Universal Plug and Play (UPnP) is a widely used protocol with a decade-long history of flawed implementations across a wide range of consumer devices. In this paper, we will cover how these aws are still present on devices, how these vulnerabilities are actively being abused, and how a feature/vulnerability set that seems to be mostly forgotten could lead to continued problems in the future with DDoS, account takeover, and malware distribution. https://www.akamai.com/blog/security/universal-plug-and-play-upnp-what-you-need-to-know Akamai SIRT https://www.akamai.com/blog/security/universal-plug-and-play-upnp-what-you-need-to-know Thu, 27 Jan 2022 20:00:00 UTC UPnProxy: Eternal Silence UPnProxy is alive and well. There are 277,000 devices, out of a pool of 3.5 million, running vulnerable implementations of UPnP. Of those, Akamai can confirm that more than 45,000 have been compromised in a widely distributed UPnP NAT injection campaign. https://www.akamai.com/blog/security/upnproxy-eternal-silence Chad Seaman https://www.akamai.com/blog/security/upnproxy-eternal-silence Thu, 27 Jan 2022 19:30:00 UTC Combat Piracy with Akamai Managed Content Protection Learn how Akamai’s Managed Content Protection offering helps combat and mitigate the growing effects of online piracy for Akamai customers. https://www.akamai.com/blog/security-research/combat-piracy-with-akamai-managed-content-protection Harish Menon https://www.akamai.com/blog/security-research/combat-piracy-with-akamai-managed-content-protection Wed, 26 Jan 2022 11:30:00 UTC Deploying Zero Trust Network Access for Secure Application Access? Don’t Forget to Secure Your Employees Secure your workforce with the help of multi-factor authentication and Akamai's Zero Trust Network Access application in place of a virtual private network (VPN). https://www.akamai.com/blog/security/deploying-zero-trust-network-access-for-secure-application-access-dont-forget-to-secure-your-employees Jim Black https://www.akamai.com/blog/security/deploying-zero-trust-network-access-for-secure-application-access-dont-forget-to-secure-your-employees Tue, 25 Jan 2022 14:00:00 UTC The Crypto Revolution Reaches Fever Pitch for Today’s Phishing Scammers Akamai threat researchers tracked continuous cyberattack and crypto-phishing campaigns that took advantage of cryptocurrency-based scams. https://www.akamai.com/blog/security/the-crypto-revolution-reaches-fever-pitch-for-todays-phishing-scammers Or Katz https://www.akamai.com/blog/security/the-crypto-revolution-reaches-fever-pitch-for-todays-phishing-scammers Thu, 20 Jan 2022 15:00:00 UTC We Need to Encrypt DNS: Here’s Another Compelling Reason Why Encrypting DNS servers is a necessary next step in web security to prevent sensitive materials from being breached, thus improving user privacy and security. https://www.akamai.com/blog/security/we-need-to-encrypt-dns-heres-another-compelling-reason-why Jim Black https://www.akamai.com/blog/security/we-need-to-encrypt-dns-heres-another-compelling-reason-why Wed, 19 Jan 2022 14:00:00 UTC Mirai Botnet Abusing Log4j Vulnerability Threat Researcher Larry Cashdollar has discovered evidence of the Mirai botnet abusing Log4j vulnerability and shares code examples. https://www.akamai.com/blog/security/mirai-botnet-abusing-log4j-vulnerability Larry Cashdollar https://www.akamai.com/blog/security/mirai-botnet-abusing-log4j-vulnerability Tue, 18 Jan 2022 14:00:00 UTC A Log4j Retrospective Part 4: 5 Lessons Learned from Log4j Read about strategies to help protect against new and more impactful security threats and vulnerabilities in Log4j from Akamai CTO Charlie Gero. https://www.akamai.com/blog/security/a-log4j-retrospective-part-4-5-lessons-learned-from-log4j Charlie Gero https://www.akamai.com/blog/security/a-log4j-retrospective-part-4-5-lessons-learned-from-log4j Thu, 13 Jan 2022 14:00:00 UTC A Log4j Retrospective Part 3: Evolution — Payloads and Attack Diversification https://www.akamai.com/blog/security/a-log4j-retrospective-part-3-evolution-payloads-and-attack-diversification Charlie Gero https://www.akamai.com/blog/security/a-log4j-retrospective-part-3-evolution-payloads-and-attack-diversification Wed, 12 Jan 2022 14:00:00 UTC Discover and Announce: A Serverless Location Application Built on Akamai IoT Edge Connect Learn about Discover and Announce, a 100% serverless application built on Akamai IoT Edge Connect, which can run entirely on the Akamai edge. https://www.akamai.com/blog/edge/discover-and-announce-a-serverless-location-application-built-on-akamai-iot-edge-connect Brian Apley https://www.akamai.com/blog/edge/discover-and-announce-a-serverless-location-application-built-on-akamai-iot-edge-connect Tue, 11 Jan 2022 14:00:00 UTC A Log4j Retrospective Part 2: Data Exfiltration and Remote Code Execution Exploits Akamai CTO Charlie Gero shows how the Log4j threat surface could extend to unpatchable embedded and IoT devices. https://www.akamai.com/blog/security/a-log4j-retrospective-part-2-data-exfiltration-and-remote-code-execution-exploits Charlie Gero https://www.akamai.com/blog/security/a-log4j-retrospective-part-2-data-exfiltration-and-remote-code-execution-exploits Mon, 10 Jan 2022 10:00:00 UTC Abuse and Fraud Prevention's Co-Created Future — Predictions for 2022 and Beyond Explore some of the Akamai Abuse and Fraud Prevention team’s predictions for the future of abuse and fraud protection in 2022 and beyond. https://www.akamai.com/blog/security/abuse-and-fraud-preventions-co-created-future-predictions-for-2022-and-beyond Christine Ferrusi Ross https://www.akamai.com/blog/security/abuse-and-fraud-preventions-co-created-future-predictions-for-2022-and-beyond Fri, 07 Jan 2022 14:00:00 UTC A Log4j Retrospective Part 1: Vulnerability Background Learn about the widely used Java-based logging library Log4j and how its vulnerability and other capabilities presented a major opportunity to attackers. https://www.akamai.com/blog/security/a-log4j-retrospective Charlie Gero https://www.akamai.com/blog/security/a-log4j-retrospective Fri, 07 Jan 2022 14:00:00 UTC Secure Your Kubernetes Clusters to Stop Ransomware While containers offer speed and flexibility that have not been possible before in the data center, they are also exposed to security threats such as ransomware, cryptomining, and botnets. https://www.akamai.com/blog/security/secure-your-kubernetes-clusters-to-stop-ransomware Ravit Greitser & Yuval Goldberg https://www.akamai.com/blog/security/secure-your-kubernetes-clusters-to-stop-ransomware Fri, 07 Jan 2022 14:00:00 UTC The Great Christmas Download Video game downloads and console updates helped game industry traffic peak at 125% above average on Christmas day according to Akamai, which supports more than 225 game publishers globally. https://www.akamai.com/blog/trends/the-great-christmas-download Chris Nicholson https://www.akamai.com/blog/trends/the-great-christmas-download Wed, 05 Jan 2022 10:00:00 UTC Keeping Up with the Botnets It’s no secret that the global pandemic increased opportunities for threat actors and cybercriminals to target financial services. Throughout 2020, scammers used the economic tension caused by COVID-19 — the promise of financial assistance, the stress of financial hardship — to target people across the globe via phishing attacks. https://www.akamai.com/blog/trends/keeping-up-with-the-botnets Gerhard Giese https://www.akamai.com/blog/trends/keeping-up-with-the-botnets Tue, 28 Dec 2021 14:00:06 UTC Our Journey to Detect Log4j-Vulnerable Machines Log4Shell (CVE-2021-44228) is a remote code execution (RCE) vulnerability in the Apache-foundation open-source logging library Log4j. It was published on December 9, 2021, and then all hell broke loose. As Log4j is a common logging library for Java applications, it is highly widespread. https://www.akamai.com/blog/security/our-journey-to-detect-log4j-vulnerable-machines Stiv Kupchik https://www.akamai.com/blog/security/our-journey-to-detect-log4j-vulnerable-machines Mon, 27 Dec 2021 19:30:00 UTC The Everyday Impacts of Diversity and Inclusion at Akamai To me, Diversity & Inclusion means a new way of thinking and engaging with society. It seems to be one of the most popular phrases that every person sees on the internet every day. I have been appointed as an ambassador of D&I for Akamai’s Asia-Pacific Japan region, and have been learning the essential principles along with some of my colleagues for the past several months. https://www.akamai.com/blog/culture/the-everyday-impacts-of-diversity-and-inclusion-at-akamai Hisashi Yamaguchi https://www.akamai.com/blog/culture/the-everyday-impacts-of-diversity-and-inclusion-at-akamai Thu, 23 Dec 2021 20:30:00 UTC Why I’m Proud to Protect Billions of People Worldwide I decided to pursue a career in IT after working as a support engineer for internal employees as part of my very first job. It immediately opened my eyes to something that I found as interesting as I did shocking: Lots of people don’t understand information security — and what’s more, they don’t protect their personal data. https://www.akamai.com/blog/culture/why-im-proud-to-protect-billions-of-people-worldwide Jessie Park https://www.akamai.com/blog/culture/why-im-proud-to-protect-billions-of-people-worldwide Wed, 22 Dec 2021 10:00:51 UTC Quantifying Log4Shell: Vulnerability on a Massive Scale The Log4Shell vulnerability is here to stay. There is a lot of speculation about the scope and true impact of the vulnerability: While many have labeled it “severe,” information is limited on how widespread the risk is. In order to shed some light on the issue, Akamai Threat Labs is utilizing its visibility into numerous data centers worldwide to assess the actual risk Log4Shell poses to organizations. https://www.akamai.com/blog/security/quantifying-log4shell-vulnerability-on-a-massive-scale Akamai Security Intelligence Group https://www.akamai.com/blog/security/quantifying-log4shell-vulnerability-on-a-massive-scale Tue, 21 Dec 2021 20:30:35 UTC How to Get Started With Application Security With a comprehensive security stack, Akamai’s application security solutions defend your entire ecosystem from threats. But before you can reap the benefits that come with application security, you need to create a configuration with Akamai’s APIs. Our Developer Advocacy team is here to walk you through the process so you can achieve Infrastructure as Code — or, as we like to call it here, Akamai as Code. Akamai as Code has the ability to support all the DevSecOps practices you know and love, such as automating repetitive tasks and streamlining configurations and workflows, along with reducing manual work and errors. https://www.akamai.com/blog/developers/how-to-get-started-with-application-security Mike Elissen https://www.akamai.com/blog/developers/how-to-get-started-with-application-security Tue, 21 Dec 2021 14:00:00 UTC Akamai Reports Another DoS in Log4j2 (CVE-2021-45105): What You Need to Know The series of vulnerabilities recently discovered in Log4j2 has shocked the internet. As part of our continuing research, on December 17, Hideki Okamoto from Akamai found and responsibly reported an additional denial-of-service (DoS) vulnerability, which was assigned as CVE-2021-45105. https://www.akamai.com/blog/security/akamai-reports-another-dos-inlog4j2 Akamai Threat Research Team https://www.akamai.com/blog/security/akamai-reports-another-dos-inlog4j2 Mon, 20 Dec 2021 18:30:57 UTC Threat Intelligence on Log4j CVE: Key Findings and Their Implications Continuing with our research into CVE-2021-44228, Akamai has previously written about what the vulnerability is and given recommendations on how to go beyond patching for extra protection. Across the Akamai network, we see traffic from 1.3 billion unique devices daily, with record traffic of 182 Tbps. The threat research team has been investigating this traffic to gain deeper insights into how this vulnerability is being exploited. We want to share more technical findings and what they mean for threat hunters. Here are some implications for defenders and threat hunters to consider https://www.akamai.com/blog/security/threat-intelligence-on-log4j-cve-key-findings-and-their-implications Application Security Threat Research Team https://www.akamai.com/blog/security/threat-intelligence-on-log4j-cve-key-findings-and-their-implications Fri, 17 Dec 2021 19:30:00 UTC Akamai Recommendations for Log4j Mitigation https://www.akamai.com/blog/security/akamai-recommendations-for-log4j-mitigation Aparna Rayasam, SVP & GM Application Security, Akamai https://www.akamai.com/blog/security/akamai-recommendations-for-log4j-mitigation Thu, 16 Dec 2021 10:30:00 UTC Livery Delivers a Seamless Low Latency Streaming Experience with Help from Akamai Our new normal has ushered in the advent of hybrid events — a mix of in-person and virtual events. This has made seamless live streaming with active participation of the audience, both live and remote, more important than ever. Amsterdam-headquartered company Livery is an end-to-end SaaS solution running on the Akamai content distribution network (CDN), which is perfectly suited for interactive sports, interactive learning, and live commerce productions. We’re delighted that they have chosen to work with us to deliver the experience their clients have come to love. https://www.akamai.com/blog/performance/livery-delivers-a-seamless-low-latency-streaming-experience-with-help-from-akamai Ina Christova https://www.akamai.com/blog/performance/livery-delivers-a-seamless-low-latency-streaming-experience-with-help-from-akamai Wed, 15 Dec 2021 14:00:00 UTC Magecart Skimmers Are Alive and Well – Constant Vigilance Is Required Magecart skimmers are here to stay, and they’re becoming more sophisticated, more creative, and harder to detect. In this post, we reveal a new skimmer infrastructure that targets ecommerce sites all over the world with advanced methods of detection evasion and obfuscation. https://www.akamai.com/blog/security/magecart-skimmers-are-alive-and-well-constant-vigilance-is-required Roman Lvovsky https://www.akamai.com/blog/security/magecart-skimmers-are-alive-and-well-constant-vigilance-is-required Tue, 14 Dec 2021 14:00:00 UTC CVE-2021-44228 - Patching is Recommended for Evolving Zero Day Vulnerability in Apache Log4j that allows remote code execution (RCE) Akamai has been monitoring the rapidly evolving developments of CVE-2021-44228. We have been working closely with our customers and internal application teams to mitigate the risks posed by the threat of unauthorized remote code execution. This includes deploying an update to our existing Apache WAF rules to include mitigation for this Zero Day CVE, and updating the Log4j library to version 2.15.0 or later. https://www.akamai.com/blog/news/cve-2021-44228-patching-is-recommended Akamai https://www.akamai.com/blog/news/cve-2021-44228-patching-is-recommended Sat, 11 Dec 2021 11:00:53 UTC CVE-2021-44228 - Zero Day Vulnerability in Apache Log4j that allows remote code execution (RCE) See how Akamai helped open-source logging library Log4j fight against a critical unauthenticated remote code execution (RCE) vulnerability and reduce customer exposure. https://www.akamai.com/blog/news/cve-2021-44228-zero-day-vulnerability Akamai https://www.akamai.com/blog/news/cve-2021-44228-zero-day-vulnerability Fri, 10 Dec 2021 21:00:00 UTC Announcing Property Manager Extensions for the Integrated Development Environment We’re proud to announce the 1.0 release of the Property Manager extension to Visual Studio Code and Eclipse. With the new Property Manager extension, you can edit and validate Property Manager API (PAPI) JSON rule trees right from your integrated development environment (IDE). It allows you to make and validate critical changes to your configuration closer to your DevOps environment. Once you've updated and validated the configuration file in your IDE, you can easily push it back to the platform with PAPI or Akamai command-line interface (CLI). https://www.akamai.com/blog/news/announcing-property-manager-extensions-for-the-ide Iga Koprowska https://www.akamai.com/blog/news/announcing-property-manager-extensions-for-the-ide Fri, 10 Dec 2021 14:00:00 UTC Security's Role in Internet Resilience One aspect of resilience on the internet is that things — notably servers and resources — move around. Sometimes moves are legitimate, such as when a popular site evolves from hosting their own website to moving to a cloud provider to using a CDN to handle the ever-increasing traffic. Sometimes the moves are not legitimate, such as when an attacker pretends to be an ecommerce or banking site and steals a user’s credentials upon login. How can the end user tell the difference between legitimate and not-so-legitimate moves? https://www.akamai.com/blog/security/securitys-role-in-internet-resilience Rich Salz https://www.akamai.com/blog/security/securitys-role-in-internet-resilience Thu, 09 Dec 2021 14:00:00 UTC Wedia, Digital Asset Management Software Provider, Delivers Seamless Digital Experiences with Help from Akamai Wedia makes it possible for some of the world’s biggest companies to effectively manage, customize, and deliver their marketing assets. Akamai is delighted that this fantastic brand has chosen us to deliver a rich and engaging web experience for its customers while also ensuring the highest level of security for the great array of multimedia assets stored on their platform by a number of Fortune 500 companies. https://www.akamai.com/blog/performance/wedia-delivers-seamless-digital-asset-management-with-help-from-akamai Ina Christova https://www.akamai.com/blog/performance/wedia-delivers-seamless-digital-asset-management-with-help-from-akamai Wed, 08 Dec 2021 14:00:00 UTC 2021 SOTI Security: Year End Review What a year 2021 has been. Even as the world continues to re-open to various degrees, we’re still feeling the impact from 2020’s move to an almost completely virtual world. Many large companies are shifting to a hybrid model, mixing the ability to work from home with working in the office. Some are even offering their employees the opportunity to work remotely indefinitely. There is no denying that the way we work, bank, play, and relax has been impacted by COVID-19. Shouting “pivot” may have shot into popular culture in the TV show Friends, but it’s a rallying cry that’s been revived in the 2020s by businesses, individuals, and criminals alike. https://www.akamai.com/blog/security/soti-security-year-end-review Akamai https://www.akamai.com/blog/security/soti-security-year-end-review Wed, 08 Dec 2021 14:00:00 UTC Cyber Monday Web Traffic Up Over 2020 Online retail traffic that Akamai delivered during Cyber Monday was up 5% globally compared to Cyber Monday 2020 and 31% compared to average Monday traffic. https://www.akamai.com/blog/trends/cyber-monday-web-traffic-up-over-2020 Chris Nicholson https://www.akamai.com/blog/trends/cyber-monday-web-traffic-up-over-2020 Wed, 01 Dec 2021 21:05:00 UTC ID&E: Akamai’s Journey of Continuous Improvement Akamai was founded to give the brightest minds somewhere to grow – and by surrounding ourselves with supportive individuals and an open culture, we can all bring our best, every day. It’s for this reason that our commitment to inclusion, diversity, and engagement is a key cornerstone of how we operate. Not as an objective or goal to be achieved, but as a journey of continuous learning and improvement that we can all benefit from, individually and collectively. https://www.akamai.com/blog/culture/id-and-e-akamais-journey-of-continuous-improvement Bill Bangs https://www.akamai.com/blog/culture/id-and-e-akamais-journey-of-continuous-improvement Mon, 29 Nov 2021 14:00:00 UTC Black Friday Web Traffic Up Over 2020 Online retail traffic that Akamai delivered during Black Friday was up 2% globally compared to Black Friday 2020 and 14% compared to average Friday retail traffic. The modest year-over-year increase can be attributed to the significant rise in 2020 traffic due to COVID-19–related lockdowns and restrictions that kept many shoppers out of physical stores. https://www.akamai.com/blog/trends/black-friday Chris Nicholson https://www.akamai.com/blog/trends/black-friday Mon, 29 Nov 2021 09:00:00 UTC DataStream: Real-time Log Delivery for All Akamai Customers We are pleased to announce that DataStream 2 is now available for all our customers. DataStream 2 provides customers with detailed log data from requests on the Akamai Intelligent Edge Platform within minutes. DataStream 2 gives customers unparalleled visibility into events at the Akamai edge and puts developers first by empowering them with the data needed to support critical operations. https://www.akamai.com/blog/news/datastream-real-time-log-delivery-for-all-akamai-customers Trevor Blackford https://www.akamai.com/blog/news/datastream-real-time-log-delivery-for-all-akamai-customers Tue, 23 Nov 2021 14:00:00 UTC Placing Accessibility at Akamai – In Reach Encouraging and supporting open discussions about disability and mental health at work. We define disability as a condition that affects everyday activities — physically, cognitively, and/or neurologically. In Reach helps the Akamai community understand what disability means in the workplace. As a team, we also ensure disabled colleagues have the support they need to thrive – so that success is always "in reach." https://www.akamai.com/blog/culture/placing-accessibility-at-akamai-in-reach molly-elise-young-group https://www.akamai.com/blog/culture/placing-accessibility-at-akamai-in-reach Fri, 19 Nov 2021 14:00:00 UTC Getting Ready for Some Holiday Shopping? So Are the Bots https://www.akamai.com/blog/news/getting-ready-for-some-holiday-shopping-so-are-the-bots Susan McReynolds https://www.akamai.com/blog/news/getting-ready-for-some-holiday-shopping-so-are-the-bots Fri, 19 Nov 2021 14:00:00 UTC Retail Data Needs Better Security in a Contextual World Do you remember the first time you made an online purchase? Me neither. I’ve made so many online purchases over the years, and I’ve probably made more in the past 18 months than in the past 5 years combined. https://www.akamai.com/blog/trends/retail-data-needs-better-security-in-a-contextual-world Gerhard Giese https://www.akamai.com/blog/trends/retail-data-needs-better-security-in-a-contextual-world Thu, 18 Nov 2021 20:00:00 UTC Healthcare Modernization? More Like Building the Plane While Flying It Anyone running a business is likely familiar with the phrase “building the plane as you’re flying it.” And through the craziness of the past 19 months, many of us lived the phrase, becoming pilots and engineers of our new realities overnight. https://www.akamai.com/blog/trends/healthcare-modernization-more-like-building-the-plane Bridget Meuse https://www.akamai.com/blog/trends/healthcare-modernization-more-like-building-the-plane Thu, 18 Nov 2021 19:00:00 UTC Finding My Way as an Akamai Intern It’s an exciting time to be starting a career in digital – but even more so when it’s at a company like Akamai. An organization driven by a commitment to developing talent within the industry, Akamai is an intellectually rigorous, demanding, and rewarding environment to be in at any level. But for new starters, programs like the summer internship can provide a 10- to 12-week opportunity to meet people and learn new skills – with real-world experiences, close working relationships, and access to subject matter experts. https://www.akamai.com/blog/culture/finding-my-way-as-an-akamai-intern Steven Gamatan https://www.akamai.com/blog/culture/finding-my-way-as-an-akamai-intern Thu, 18 Nov 2021 14:00:00 UTC Fighting Video Piracy Is Strengthened by Collaboration Here’s what I know: My personal email has been “pwned” or stolen at least 18 times. Here’s what I don’t know: if any of the times I have been unable to log in to one of my OTT subscription services was due to my kids sharing our credentials or because of an account takeover — that kill chain that starts with harvesting stolen username/password combinations and then testing them via a credential stuffing attack. https://www.akamai.com/blog/trends/fighting-video-piracy-is-strengthened-by-collaboration Shane Keats https://www.akamai.com/blog/trends/fighting-video-piracy-is-strengthened-by-collaboration Thu, 18 Nov 2021 14:00:00 UTC RTL Nederland Makes Weather Forecasting Fast, Reliable and Sustainable with Help From Akamai Media giant RTL Nederland offers a weather app that gives users the ability to get a comprehensive overview of the weather in their location at the click of a button. Akamai is delighted that this exciting media brand has chosen us to deliver a rich and engaging web experience for its viewers while providing a sustainable infrastructure via our Akamai Intelligent Edge Platform. https://www.akamai.com/blog/news/rtl-nederland-makes-weather-forecasting-fast-reliable-sustainable-with-help-from-akamai Ina Christova https://www.akamai.com/blog/news/rtl-nederland-makes-weather-forecasting-fast-reliable-sustainable-with-help-from-akamai Wed, 17 Nov 2021 14:00:00 UTC Digging Deeper – An In-Depth Analysis of a Fast Flux Network Fast Flux is a DNS technique used by botnets to hide various types of malicious activities, such as phishing, web proxying, malware delivery, and malware communication, behind an ever-changing network of compromised hosts acting as proxies. The Fast Flux network concept was first introduced in 2006, with the emergence of Storm Worm malware variants. The Fast Flux network is typically used to make the communication between malware and its command and control (C2) server more resistant to discovery. Akamai’s research team has analyzed sophisticated botnet infrastructure that leverages Fast Flux techniques including domains, nameservers, and IP address changes. Figure 1 shows an overview of such a network, which can also be referred to as a form of bulletproof hosting, that hosts various malicious services. These networks empower threat actors to execute attack campaigns by utilizing network capabilities to host malware binaries, proxy communication to C2 servers, phishing websites, or proxy attacks on websites across the internet. https://www.akamai.com/blog/security/digging-deeper-an-in-depth-analysis-of-a-fast-flux-network Or Katz https://www.akamai.com/blog/security/digging-deeper-an-in-depth-analysis-of-a-fast-flux-network Tue, 16 Nov 2021 14:00:00 UTC New Updates to Guardicore Centra Boost Zero Trust Posture and Enhance Ransomware Protection In our update to Guardicore Hunt see how you can enhance your ransomware protections as well as Zero Trust. https://www.akamai.com/blog/security/centra-update-zero-trust-posture-and-enhance-ransomware-protection Ravit Greitser https://www.akamai.com/blog/security/centra-update-zero-trust-posture-and-enhance-ransomware-protection Mon, 15 Nov 2021 16:47:00 UTC Open Finance — 5 Reasons to Consider Akamai The increased use of smart devices, improved connectivity, and today’s hyper demanding customers are driving the need for digital transformation in the finance sector. Emerging technologies like open banking are creating new opportunities for both incumbent banks and fintechs. https://www.akamai.com/blog/news/open-finance-5-reasons-to-consider-akamai Vitor Nakano https://www.akamai.com/blog/news/open-finance-5-reasons-to-consider-akamai Mon, 15 Nov 2021 14:00:00 UTC Developers Push Coding to the Edge in Akamai The first-ever Akamai EdgeWorkers Coding Challenge gave participants the opportunity to harness the power and potential of serverless computing using the Akamai Intelligent Edge Platform. Winning developer teams built functions using Akamai EdgeWorkers and EdgeKV products that ranged from DNS acceleration and cost-reducing traffic efficiencies to personalized experiences for news and cloud gaming. https://www.akamai.com/blog/developers/developers-push-coding-to-the-edge-in-akamai Chris Nicholson https://www.akamai.com/blog/developers/developers-push-coding-to-the-edge-in-akamai Thu, 11 Nov 2021 14:00:00 UTC Redefining Security at the Mobile Edge During the pandemic, organizations became more geographically dispersed, even if that only means people working from home instead of the office. As businesses begin to open up again, the trend is leaning toward mobility as a means to support a hybrid working environment, in which employees have more flexibility to work wherever it suits them best. The remote user, who was once the exception, has become the norm. https://www.akamai.com/blog/edge/redefining-security-at-the-mobile-edge Octavio Hernandez https://www.akamai.com/blog/edge/redefining-security-at-the-mobile-edge Wed, 10 Nov 2021 14:00:00 UTC Akamai Is Now a Cybersecurity Powerhouse Over the past five years, we’ve grown Akamai’s security portfolio from point solutions into a comprehensive platform that provides defense in depth to address our customers’ biggest threats. The unique breadth of our defenses is important to our customers who want the most effective security capabilities, and more of them from fewer vendors. https://www.akamai.com/blog/news/akamai-is-now-a-cybersecurity-powerhouse Tom Leighton https://www.akamai.com/blog/news/akamai-is-now-a-cybersecurity-powerhouse Tue, 09 Nov 2021 16:00:59 UTC Finding Purpose in Wellness “Wellness” is something that many employers are racing to embrace. Good for both their organizations and their people, wellness is an investment in creating a happier and more engaged workforce, as well as reducing the effects of stress and burnout. It has the potential to increase productivity, foster ideas, and reconnect to a sense of purpose – for both individuals and the business. https://www.akamai.com/blog/culture/finding-purpose-in-wellness Nathalie Faint https://www.akamai.com/blog/culture/finding-purpose-in-wellness Tue, 09 Nov 2021 14:00:00 UTC Celebrating Hispanic Heritage Month with Ohana National Hispanic American Heritage Month (September 15 to October 15) is a time to recognize the achievements and contributions of trailblazing Hispanic Americans whose legacies have inspired the world. Akamai stands with our American colleagues whose ancestors came from Spain, Mexico, the Caribbean, and Central and South America in celebrating those achievements. And with groups like the Ohana ERG, we’re able to use this month to share insights that help make our company a better place to be. https://www.akamai.com/blog/culture/celebrating-hispanic-heritage-month-with-ohana Jo Gumbs & Yancy Carrasco https://www.akamai.com/blog/culture/celebrating-hispanic-heritage-month-with-ohana Mon, 08 Nov 2021 14:00:57 UTC Internet Resilience, Part 2: What It Takes to “Just Work” One of the greatest signs of the success of the internet as a technology is how little the average person thinks about it. I’m not talking about the content itself. The streaming videos, online shopping sites, news and educational content, workplace productivity tools, and many other pieces of content we view and interact with online garner a great deal of attention. I’m instead talking about what’s involved in getting that content delivered reliably, quickly, and securely to a device. https://www.akamai.com/blog/performance/internet-resilience-part2-what-it-takes-to-just-work James Kretchmar https://www.akamai.com/blog/performance/internet-resilience-part2-what-it-takes-to-just-work Mon, 08 Nov 2021 14:00:00 UTC Akamai App & API Protector: Maximize Security Through Simplicity Building incredible digital experiences often involves leveraging serverless edge computing, microservices-based architectures, IaaS environments, client-side functionality, and APIs. These modern development practices, while designed to produce highly personalized, fast, and always-on user experiences, also inextricably introduce new vulnerabilities and risks. https://www.akamai.com/blog/news/akamai-app-and-api-protector-maximize-security-through-simplicity Charles Choe https://www.akamai.com/blog/news/akamai-app-and-api-protector-maximize-security-through-simplicity Mon, 08 Nov 2021 11:30:00 UTC Keeping Up with Biden Administration Cybersecurity Mandates With Wednesday’s sweeping cybersecurity mandates issued by the Biden administration, patching Common Vulnerabilities and Exposures (CVEs) are top of mind — for both federal and private-sector companies alike — to help prevent damaging intrusions. Intensifying the pressure surrounding the latest round of mandates, federal agencies are required to address high-risk vulnerabilities discovered in 2021 within two weeks. However, for the vast majority of organizations and their security teams, addressing every critical vulnerability at the software or infrastructure level quickly is not feasible. Instead, many enterprise defenders look to virtual patching via solutions like WAF policy updates and rule changes as a quick fix to help reduce immediate risk, while longer-term software updates are issued. https://www.akamai.com/blog/news/akamai-stays-one-step-ahead-of-biden-cve-mandates Amol Mathur https://www.akamai.com/blog/news/akamai-stays-one-step-ahead-of-biden-cve-mandates Fri, 05 Nov 2021 16:00:00 UTC Akamai + Guardicore: End-to-End Zero Trust Ransomware attacks increased by over 150% in 2020. As criminals find new ways to attack networks and systems, protect work-from-home employees with Akamai. https://www.akamai.com/blog/news/akamai-guardicore-end-to-end-zero-trust Robert Blumofe & Ariel Zeitlin https://www.akamai.com/blog/news/akamai-guardicore-end-to-end-zero-trust Wed, 03 Nov 2021 13:00:00 UTC Holiday Readiness, Part Four: What You Should Be Thinking About One Month Out — Monitoring and Alerting November is here. Now it’s crunch time. Hopefully, implementing the solutions in parts one through three of this series has kept you busy over the last few months. In those articles, we covered security, flash crowd management, disaster recovery, and performance optimization checklists. If you are not in a code freeze yet, work with your Akamai account team to review the content to determine what features you still have time to enable. https://www.akamai.com/blog/trends/holiday-readiness-part-four-what-you-should-be-thinking-about-one-month-out-monitoring-and-alerting Michael Hansen https://www.akamai.com/blog/trends/holiday-readiness-part-four-what-you-should-be-thinking-about-one-month-out-monitoring-and-alerting Mon, 01 Nov 2021 13:00:00 UTC Strategy for the Office Anywhere Organizations must deploy a remote working strategy that suits the office anywhere model CIOs need to demonstrate leadership as we move out of lockdown into a new model of working in which the office is wherever the employee is. It’s time to build on this initial success and embed a remote working strategy within organizations. https://www.akamai.com/blog/security/strategy-for-the-office-anywhere Octavio Hernandez https://www.akamai.com/blog/security/strategy-for-the-office-anywhere Mon, 01 Nov 2021 12:55:00 UTC Securing the Enterprise Network for the Office Anywhere During the pandemic, it was reassuring to see businesses demonstrating resilience and enabling remote working for their employees — in some cases, practically overnight. As businesses slowly reopen their doors, it is clear that many things have changed, key amongst them the increasing risks to the enterprise network as more work is carried out from mobile devices. https://www.akamai.com/blog/security/securing-the-enterprise-network-for-the-office-anywhere Octavio Hernandez https://www.akamai.com/blog/security/securing-the-enterprise-network-for-the-office-anywhere Wed, 27 Oct 2021 13:00:00 UTC Your Best Defense Against Ransomware: Akamai + Guardicore For decades, Akamai has been focused on solving tough problems for our customers. We started by addressing the challenges of the “World Wide Wait,” and quickly started to leverage our edge network’s scale, proximity to users, and expert operations staff to mitigate security threats for our customers. Today, Akamai has category-leading solutions including DDoS, web app and API protection, bot management, and Zero Trust Network Access. Given the incredible surge in ransomware attacks, we are excited to be adding Zero Trust segmentation to our portfolio through the acquisition of Guardicore. https://www.akamai.com/blog/news/your-best-defense-against-ransomware-akamai-and-guardicore Ari Weil https://www.akamai.com/blog/news/your-best-defense-against-ransomware-akamai-and-guardicore Thu, 21 Oct 2021 15:30:37 UTC Over 25% of Malicious JavaScript Is Being Obfuscated Last year, Akamai released research on obfuscation techniques being used by cybercriminals to create malicious JavaScript. The code is unreadable, un-debuggable, and as a result, much more challenging to analyze and detect. https://www.akamai.com/blog/security/over-25-percent-of-malicious-javascript-is-being-obfuscated Or Katz https://www.akamai.com/blog/security/over-25-percent-of-malicious-javascript-is-being-obfuscated Tue, 19 Oct 2021 13:00:00 UTC What Microsoft Bing’s IndexNow Means for CDN Users Microsoft Bing today announced the rollout of IndexNow, a new protocol designed in conjunction with Yandex that can allow “websites to easily notify search engines whenever their website content is created, updated, or deleted.” The goal is to reduce the amount of time it takes for search engines to discover and index website changes — a process often measured in days and even weeks — to mitigate traffic loss and the potential adverse effects on customers and even revenues. https://www.akamai.com/blog/news/what-microsoft-bings-indexnow-means-for-cdn-users Jon Alexander https://www.akamai.com/blog/news/what-microsoft-bings-indexnow-means-for-cdn-users Mon, 18 Oct 2021 10:00:00 UTC Integrating Akamai mPulse with Consent Management Providers Akamai mPulse is a real user monitoring solution, providing detailed information about the user experiences delivered by your web applications. mPulse can be configured within your Akamai property to automatically start collecting data from your customer visits. This initial setup will gather the data required to use advanced features in Adaptive Acceleration such as Script Manager, Automatic Server Push, and Automatic Preconnect. https://www.akamai.com/blog/performance/integrating-akamai-mpulse-with-consent-management-providers Simon Hearne https://www.akamai.com/blog/performance/integrating-akamai-mpulse-with-consent-management-providers Thu, 14 Oct 2021 13:00:00 UTC Akamai MFA in Action: Single Sign-On is Phish-Proof and Simple to Use Breaking news: we just completed an 850-user pilot with Akamai MFA. In this blog, the first in a series, I’ll explain why we switched to Akamai MFA, how we ran our pilot, and employee feedback so far. Check back for my next blog, when we’re midway through our global deployment. A burglar checks for open windows. Neglecting to lock just one is like leaving the door wide open. In the same way, cyber attackers look for the easiest user accounts to take over — whether that’s network access credentials, email, on-premise applications, or cloud/SaaS applications. If they’re lucky, they can also use the stolen credentials to breach other systems, an action known as lateral movement. https://www.akamai.com/blog/security/akamai-mfa-in-action-single-sign-on-is-phish-proof-and-simple-to-use Keith Tomlinson https://www.akamai.com/blog/security/akamai-mfa-in-action-single-sign-on-is-phish-proof-and-simple-to-use Wed, 13 Oct 2021 13:00:00 UTC Mitigating CVE-2021-41773: Apache HTTP Server Path Traversal On September 29, Ash Daulton, along with the cPanel Security Team, reported a path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.29 to the Apache security team. The issue was fixed within two days, under CVE-2021-41773, and the patch was released on October 4. Apache urged to deploy the fix, as it is already being actively exploited. https://www.akamai.com/blog/news/how-akamai-helps-you-protect-against-0-days Assaf Vilmovsky & Maxim Zavodchik https://www.akamai.com/blog/news/how-akamai-helps-you-protect-against-0-days Thu, 07 Oct 2021 20:15:00 UTC Coming Together to Tackle Phishing — For the Greater Good Every day, Akamai’s Threat Research team tracks and mitigates phishing attack campaigns to help keep our customers — and their reputations — protected. Recently, they tracked an orchestrated attack campaign comprising more than 9,000 domains and subdomains, mainly targeting victims located in China. The phishing scam was abusing more than 15 high-profile and trusted brands spanning ecommerce, travel, and food & beverage industries. By using well-known brand names, the threat actors attempted to engage victims to participate in a quiz that, once completed, would result in winning an attractive prize. Akamai refers to this malicious modus operandi as a “question quiz” phishing attack campaign. https://www.akamai.com/blog/security/coming-together-to-tackle-phishing-for-the-greater-good Akamai Threat Research Team https://www.akamai.com/blog/security/coming-together-to-tackle-phishing-for-the-greater-good Thu, 07 Oct 2021 13:20:00 UTC Attack Campaigns Ramp Up for Organizations Down Under DDoS and AppSec attacks impacting the ANZ region (Australia and New Zealand) have been in the headlines of late, with several high profile companies seeing prolonged outages and leading to speculation as to whether the region is being specifically targeted? Let’s take a closer look at the types of attack vectors and malicious activity we’ve seen focused on customers down under. https://www.akamai.com/blog/security/attack-campaigns-ramp-up-for-organizations-down-under Tom Emmons https://www.akamai.com/blog/security/attack-campaigns-ramp-up-for-organizations-down-under Thu, 07 Oct 2021 13:15:00 UTC Making the Internet Resilient: Part One Think how many websites you visit or videos you stream. Do you check your bank account or transfer money, download apps, play music, share updates on social media, or use the internet for any of the thousands of other digital experiences it enables every day? https://www.akamai.com/blog/performance/making-the-internet-resilient-part-one Adam Karon https://www.akamai.com/blog/performance/making-the-internet-resilient-part-one Thu, 07 Oct 2021 13:00:00 UTC The Impact of Third-Party Scripts on the Facebook Outage A lot has already been written about the Facebook outage earlier this week. In case you missed it (if that’s possible), Facebook, Facebook Messenger, Instagram, and WhatsApp were all down for several hours on Monday. Facebook provided an update on the cause of the outage late Monday, citing a configuration change on their backbone routers as the root cause, with additional details in a subsequent blog post. https://www.akamai.com/blog/news/the-impact-of-third-party-scripts-on-the-facebook-outage Kunjal Botadra https://www.akamai.com/blog/news/the-impact-of-third-party-scripts-on-the-facebook-outage Wed, 06 Oct 2021 15:00:14 UTC Forrester: Embrace Zero Trust for Australia’s Essential Eight Understand why it's important to refine your organization’s approach. See how to enact a security model that protects your business and enables growth. https://www.akamai.com/blog/news/forrester-embrace-zero-trust-for-australias-essential-eight Johnny Yeo https://www.akamai.com/blog/news/forrester-embrace-zero-trust-for-australias-essential-eight Wed, 06 Oct 2021 13:00:00 UTC The Power of Why: Rediscovering Akamai’s Purpose As I took on the role of Chief Marketing Officer of Akamai earlier this year, I set out to inspire and challenge our teams to build an impactful global campaign that showcases not just what we do, but what we make possible. What quickly became clear is that to be authentic in talking about what we make possible, we first needed to get crystal clear on our why — WHY our company exists, and what our greater impact on the world is. https://www.akamai.com/blog/news/the-power-of-why-rediscovering-akamais-purpose Kim Salem-Jackson https://www.akamai.com/blog/news/the-power-of-why-rediscovering-akamais-purpose Tue, 05 Oct 2021 16:00:26 UTC Holiday Readiness, Part Three: What you Should be Thinking About Two Months Out—Performance Optimizations October is here, and that means we are less than two months away from the busiest weekend of the year. Parts one and two of the Holiday Readiness blog series covered topics ranging from security checklists to disaster recovery strategies and flash crowd management. If you haven’t had a chance to review those topics and checklists, now is a critical time to start to ensure you are ready for the traffic rush the holiday season brings. https://www.akamai.com/blog/trends/holiday-preparedness-things-to-think-about-2-months-out-performance-configurations Michael Hansen https://www.akamai.com/blog/trends/holiday-preparedness-things-to-think-about-2-months-out-performance-configurations Mon, 04 Oct 2021 22:02:00 UTC EAA Client Escalation of Privilege Vulnerability on Windows This post covers the details of CVE-2021-40683 (CVSS 6.5), the vulnerability impacting the Akamai Enterprise Application Access (EAA) Client running on Windows systems, for which Akamai has provided a patch to its customers. https://www.akamai.com/blog/news/eaa-client-escalation-of-privilege-vulnerability Akamai https://www.akamai.com/blog/news/eaa-client-escalation-of-privilege-vulnerability Mon, 04 Oct 2021 20:13:00 UTC Attacking a Macro Security Problem with Micro-segmentation Ransomware is everywhere. And the shift of workloads to the cloud and employees to work-from-home models has only expanded the attack surface, creating new opportunities for attackers to leverage. Companies need Zero Trust solutions that not only defend against threat actors gaining access to enterprise systems, but also mitigate the impact of infections that slip through the cracks. https://www.akamai.com/blog/security/attacking-a-macro-security-problem-with-micro-segmentation Charlie Gero https://www.akamai.com/blog/security/attacking-a-macro-security-problem-with-micro-segmentation Wed, 29 Sep 2021 10:04:00 UTC Monitoring Our Hay Storage with Edge Connect and Machine Learning What do hay storage, Akamai’s Edge Connect solution, and machine learning have in common? We use the serverless machine learning system to keep our hay storage safe and secure. https://www.akamai.com/blog/edge/monitoring-our-hay-storage-with-edge-connect-and-machine-learnin Brian Apley https://www.akamai.com/blog/edge/monitoring-our-hay-storage-with-edge-connect-and-machine-learnin Thu, 23 Sep 2021 07:00:00 UTC Akamai Named a Gartner Magic Quadrant Leader for Web Application and API Protection This week, Gartner released its new 2021 Magic Quadrant for Web Application and API Protection (WAAP) report, which replaces the Magic Quadrant for Web Application Firewalls (WAF) report, and Akamai has been named a Leader. Akamai was named a Leader in the four previous WAF Magic Quadrants. https://www.akamai.com/blog/news/akamai-named-a-gartner-magic-quadrant-leader-for-web-application-and-api-protection Akamai https://www.akamai.com/blog/news/akamai-named-a-gartner-magic-quadrant-leader-for-web-application-and-api-protection Wed, 22 Sep 2021 18:00:00 UTC Autodiscovering the Great Leak See the most recent research from Amit Serper on a vulnerability in Autodiscover from Microsoft Outlook that affects credential leaks. https://www.akamai.com/blog/security/autodiscovering-the-great-leak Amit Serper https://www.akamai.com/blog/security/autodiscovering-the-great-leak Wed, 22 Sep 2021 13:00:00 UTC What Is a TCP Three-Way Handshake? The TCP three-way handshake is one of the critical building blocks of the internet. It facilitates the smooth and consistent flow of information across and among different networks without compromising security. https://www.akamai.com/blog/security/tcp-three-way-handshake Akamai https://www.akamai.com/blog/security/tcp-three-way-handshake Tue, 21 Sep 2021 13:00:00 UTC DDoS Chart Toppers—BPS, PPS and RPS Greatest Hits New to the scene, monster-sized botnet Mēris is raising some eyebrows with giant requests per second (rps) attacks as shared by Cloudflare (17.2M rps, reported August 19), Yandex (peaking at 21.8M rps on September 5), and KrebsOnSecurity (2M rps on September 9). Some commentary came in on Slashdot, The Record, and The Hacker News. https://www.akamai.com/blog/security/ddos-chart-toppers-bps-pps-and-rps-greatest-hits Tom Emmons https://www.akamai.com/blog/security/ddos-chart-toppers-bps-pps-and-rps-greatest-hits Fri, 17 Sep 2021 13:00:00 UTC Learn How Akamai Enables AI Powered Analytics Tools to Reduce Water Losses The Accelerator Program, a flagship initiative of Akamai India’s Corporate Social Responsibility Trust, enables early-stage innovations for water conservation. Over the past two years, along with our mentoring partner, the International Center for Clean Water (ICCW; an initiative of the Indian Institute of Technology Madras), we onboarded two social innovators as Cohort 1 grantees: Ashoka Trust for Research in Ecology and the Environment and Foundation for Environmental Monitoring, and two social innovators as Cohort 2 grantees, SmartTerra and Jaljeevika. https://www.akamai.com/blog/culture/learn-how-akamai-enables-ai-powered-analytics-tools-to-reduce-wa Sushma Shashidhara https://www.akamai.com/blog/culture/learn-how-akamai-enables-ai-powered-analytics-tools-to-reduce-wa Fri, 17 Sep 2021 07:00:00 UTC Capoae Malware Ramps Up: Uses Multiple Vulnerabilities and Tactics to Spread Recently, there has been a plethora of UPX packed crypto-mining malware written in Golang targeting Linux systems and web applications popping up in the news. The malware’s primary tactic is to spread by taking advantage of vulnerable systems and weak administrative credentials. Once they’ve been infected, these systems are then used to mine cryptocurrency. I’ve named the sample I examined for this post ‘Capoae,’ based on the code’s output to my terminal. https://www.akamai.com/blog/security/capoae-malware-ramps-up-uses-multiple-vulnerabilities-and-tactics-to-spread Larry Cashdollar https://www.akamai.com/blog/security/capoae-malware-ramps-up-uses-multiple-vulnerabilities-and-tactics-to-spread Thu, 16 Sep 2021 13:00:00 UTC Kinsing evolves, adds Windows to attack list The campaign was first seen by the Akamai SIRT on February 16, 2021, and appears to be targeting both Windows and Linux systems. The botnet caught our interest because it has shown to be highly active across a diverse set of geographical regions, including the Americas, Europe, and Asia. https://www.akamai.com/blog/security/kinsing-evolves-adds-windows-to-attack-list Evyatar Saias https://www.akamai.com/blog/security/kinsing-evolves-adds-windows-to-attack-list Thu, 16 Sep 2021 13:00:00 UTC Akamai’s Flagship Customer Enablement Program, Akamai University, Wins Gold “Excellence in Learning” Award The Technical Enablement and Education team, part of Akamai’s Global Services organization, has won a coveted Brandon Hall Group Gold award for “Best Customer Training Program,” for Akamai’s flagship customer training and enablement program, Akamai University. https://www.akamai.com/blog/news/akamai-s-flagship-customer-enablement-program--akamai-university Magdalena Frankiewicz https://www.akamai.com/blog/news/akamai-s-flagship-customer-enablement-program--akamai-university Wed, 15 Sep 2021 07:00:00 UTC Confluence Server Webwork OGNL Injection (CVE-2021-26084): How Akamai Helps You Protect Against Zero-Day Attacks Recently Atlassian has disclosed a critical RCE (Remote Code Execution) vulnerability in its Confluence server and Data Center products (CVE-2021-26084), which might allow unauthenticated users to execute arbitrary code on vulnerable servers. https://www.akamai.com/blog/security/confluence-server-webwork-ognl-injection-cve-2021-26084 Assaf Vilmovsky , Abdeslam Bella & Maxim Zavodchik https://www.akamai.com/blog/security/confluence-server-webwork-ognl-injection-cve-2021-26084 Wed, 15 Sep 2021 07:00:00 UTC Now Live: On-Demand Learning and Hands-On Labs at Learn Akamai I’m excited to announce our new all-inclusive Learning Hub as the single destination for all product learning resources at Akamai. This new Hub gives users the ability to choose the method of learning that suits them best, whether that’s reading through technical documentation, exploring our on-demand elearning modules and hands-on labs, or joining a community discussion. https://www.akamai.com/blog/news/now-live--on-demand-learning-and-hands-on-labs-at-learn-akamai Bonnie Howden https://www.akamai.com/blog/news/now-live--on-demand-learning-and-hands-on-labs-at-learn-akamai Tue, 14 Sep 2021 07:00:00 UTC Jest Mocks—Unit Testing for EdgeWorkers In case you haven’t already been working with EdgeWorkers, it allows you to run JavaScript code across more than 4,200 locations for proximity to users and fast application response times. With more and more application functionality moving to the edge, it’s increasingly important to ensure that each function is doing what it needs to do. A unit test runs code over each segment of your program, checking the input and output. These tests allow developers to check individual areas of a program to see where (and why) errors are occurring. Several frameworks allow you to easily run your tests, including popular frameworks like Jest, Mocha, Jasmine, and Cypress. https://www.akamai.com/blog/developers/jest-mocks-unit-testing-for-edgeworkers Varuna GP https://www.akamai.com/blog/developers/jest-mocks-unit-testing-for-edgeworkers Wed, 08 Sep 2021 07:00:00 UTC Holiday Readiness, Part Two: What you Should be Thinking About Three Months Out—Capacity Planning Welcome back to the Holiday Readiness blog series. We hope part one has kept you busy over the past month as you continue to improve your security posture. If you haven’t finished all of the security checklist items, don’t worry — there is still time before Black Friday and Cyber Monday. https://www.akamai.com/blog/trends/holiday-readiness--part-two--what-you-should-be-thinking-about-t Michael Hansen https://www.akamai.com/blog/trends/holiday-readiness--part-two--what-you-should-be-thinking-about-t Tue, 07 Sep 2021 04:00:00 UTC Passwords — Extinction Event Looming? Passwords are the bane of users and security teams’ lives. Despite years of security teams educating users about not using 123456 as a password, not recycling passwords across multiple personal and professional accounts, and implementing even more rigorous password rules and investments in password manager tools, these combinations of letters, numbers, and special characters remain a rich target for attackers. https://www.akamai.com/blog/security/passwords---extinction-event-looming- Richard Meeus https://www.akamai.com/blog/security/passwords---extinction-event-looming- Wed, 01 Sep 2021 07:00:00 UTC UPX Packed Headaches Researching malware has many challenges. One of those challenges is obfuscated code and intentionally corrupted binaries. To address challenges like this, we've written a small tool in C that could fix intentionally corrupted binaries automatically. We also plan to open-source the project so other researchers could use it too, and perhaps improve and expand upon the tool's capabilities as needed. https://www.akamai.com/blog/security/upx-packed-headaches Akamai SIRT https://www.akamai.com/blog/security/upx-packed-headaches Mon, 23 Aug 2021 04:00:00 UTC Dogged Persistence—The Name of the Game for One DDoS Attacker With DDoS, we typically observe a moderate degree of attacker persistence. DDoS attacks are relatively easy to launch from a number of online booter services, and the availability of cryptocurrencies for payment has made it easy to remain anonymous. Attackers can try their hand at DDoS for little effort and money, and in relative safety. They give it a go, try a few things (vector, endpoint, and scale changes), and for those with effective defenses, the attacker eventually burns out. https://www.akamai.com/blog/news/dogged-persistence-the-name-of-the-game-for-one-ddos-attacker Tom Emmons https://www.akamai.com/blog/news/dogged-persistence-the-name-of-the-game-for-one-ddos-attacker Wed, 18 Aug 2021 04:00:00 UTC Tokyo Streaming Traffic Runs Rings Around Rio With 35 medals at stake, the last full day of competition during the games in Tokyo generated the highest video streaming traffic for 30-plus customers on the Akamai Intelligent Edge Platform. Medal matches for baseball, basketball, and soccer, along with several track and field finals, drove related traffic to 10 Tbps on Saturday, August 7. https://www.akamai.com/blog/performance/tokyo-streaming-traffic-runs-rings-around-rio Cory Sakakeeny https://www.akamai.com/blog/performance/tokyo-streaming-traffic-runs-rings-around-rio Mon, 16 Aug 2021 04:00:00 UTC HTTP/2 Request Smuggling HTTP Request Smuggling (also known as an HTTP Desync Attack) has experienced a resurgence in security research recently, thanks in large part to the outstanding work by security researcher James Kettle. His 2019 Blackhat presentation on HTTP Desync attacks exposed vulnerabilities with different implementations of the HTTP Standards, particularly within proxy servers and Content Delivery Networks (CDNs).These implementation differences with regard to how proxy servers interpret the construction of web requests have led to new request smuggling vulnerabilities. (Direct link to information on new vulnerability). https://www.akamai.com/blog/security/http-2-request-smuggling Ryan Barnett https://www.akamai.com/blog/security/http-2-request-smuggling Thu, 05 Aug 2021 04:00:00 UTC hAFL1 – Our Journey of Fuzzing Hyper-V and Discovering a Critical 0-Day Within hours from the moment our in-house built fuzzer, hAFL1, started running – it found a critical, CVSS 9.9 RCE vulnerability in Hyper-V’s virtual driver. https://www.akamai.com/blog/security/discovering-a-critical-0-day Ophir Harpaz & Peleg Hadar https://www.akamai.com/blog/security/discovering-a-critical-0-day Wed, 04 Aug 2021 13:00:00 UTC Putting Purpose First as an Akamai Co-Op As I began my CSR Co-op position this year, I wanted to see up-close how a corporate foundation works. What I've found is that the work the Akamai Foundation does around the world is inspiring! Whether it's partnering with STEM educators, responding to the COVID-19 crisis, planning employee volunteerism efforts, or creating a hardship fund to support our community, what we do here has a positive impact across the globe. And, thanks to this co-op opportunity, I've been able to play a real part in driving this impact forward. https://www.akamai.com/blog/culture/putting-purpose-first-as-akamai-co-op Caitlin Brightman https://www.akamai.com/blog/culture/putting-purpose-first-as-akamai-co-op Mon, 02 Aug 2021 04:00:00 UTC Akamai's Commitment to Reliability For more than 20 years, Akamai has worked very hard to earn the trust and confidence of our customers and partners by developing services that can be relied upon to be available and secure at all times. https://www.akamai.com/blog/news/akamais-commitment-to-reliability Tom Leighton https://www.akamai.com/blog/news/akamais-commitment-to-reliability Fri, 30 Jul 2021 04:00:00 UTC Zero Trust Should Not Give IT a Bad Name Maybe you’ve just found out that your company’s IT organization is implementing Zero Trust. Does that mean they don’t trust you? “Zero Trust” sure sounds that way. Maybe you’ve read about it online or heard somebody talk about it in terms that equate Zero Trust with the idea that users and devices are never trusted. https://www.akamai.com/blog/security/zero-trust-should-not-give-it-a-bad-name Robert Blumofe https://www.akamai.com/blog/security/zero-trust-should-not-give-it-a-bad-name Thu, 29 Jul 2021 04:00:00 UTC Holiday Readiness, Part One: What you Should be Thinking About Four Months Out—Security The beginning of August is upon us, and if you haven’t already started thinking about the busiest time of the year, now is a good time to do so. Whether you’re an experienced veteran of managing peak traffic or new to the game, Q4 can bring surprises when it comes to performance and security. And while it’s nearly impossible to prepare for every situation, there are a number of options and solutions available at Akamai to help manage the surge of traffic (both good and bad) that will be hitting the retail industry during the holiday season, especially on Black Friday and Cyber Monday. https://www.akamai.com/blog/trends/holiday-readiness-what-you-should-be-thinking-about-four-months Michael Hansen https://www.akamai.com/blog/trends/holiday-readiness-what-you-should-be-thinking-about-four-months Thu, 29 Jul 2021 04:00:00 UTC Critical 9.9 Vulnerability in Hyper-V Allowed Attackers to Exploit Azure Guardicore Labs, in collaboration with SafeBreach Labs, found a critical vulnerability in Hyper-V’s virtual network switch driver (vmswitch.sys). https://www.akamai.com/blog/security/critical-vulnerability-in-hyper-v-allowed-attackers-to-exploit-azure Ophir Harpaz & Peleg Hadar https://www.akamai.com/blog/security/critical-vulnerability-in-hyper-v-allowed-attackers-to-exploit-azure Wed, 28 Jul 2021 13:00:00 UTC Software-Defined Networking Concept Adoption at Akamai Akamai engineering has adopted new technology concepts to enhance and expand routing capabilities at the edge. Previously, Akamai’s traffic-steering capabilities were mainly focused on DNS-based routing. In this article, we would like to give you an in-depth look at how Akamai has embraced new routing technology concepts and merged them into the Akamai edge to enhance routing capabilities, provide faster and better traffic steering, and offer even better performance. https://www.akamai.com/blog/performance/software-defined-networking-concept-adoption-at-akamai Eran Gal https://www.akamai.com/blog/performance/software-defined-networking-concept-adoption-at-akamai Wed, 28 Jul 2021 04:00:00 UTC Cutting the Red Tape: Lessons Learned from CyberThreats 2021 If I had a dollar for every time I heard the phrase “digital transformation,” I would have a lot of dollars. I’m sure you would too. We’d have even more if we counted the term “Zero Trust.” (Maybe we should start counting them, now that I think about it!) https://www.akamai.com/blog/news/cutting-the-red-tape-lessons-learned-from-cyberthreats-2021 Bridget Meuse https://www.akamai.com/blog/news/cutting-the-red-tape-lessons-learned-from-cyberthreats-2021 Tue, 27 Jul 2021 04:00:00 UTC All Access Is (or Should Be) Remote Access With the transition to remote work, we often hear the term remote access used in unison. Typically, remote work application access is facilitated via a remote access mechanism and, presumably, local work application access is facilitated via a local access mechanism. But I argue that this connection does not really hold true. Sure, remote work does require the use of a remote access mechanism, but the mechanism can and should also be used for local work. There's really no such thing as local access. https://www.akamai.com/blog/security/all-access-is-or-should-be-remote-access Robert Blumofe https://www.akamai.com/blog/security/all-access-is-or-should-be-remote-access Tue, 27 Jul 2021 04:00:00 UTC Anyone for Alphabet Soup? ZTNA, SWGs, MFA, and More: Lessons Learned from Fed Day CyberThreats 2021 Last week, we gathered a few of the most prominent leaders and experts from every corner of the federal space to talk about all things cybersecurity and digital transformation. Discussions ranged from the move toward Zero Trust Network Access (ZTNA), and effectively managing identities and access with a secure web gateway (SWG) to keep data safe, to what the executive order on cybersecurity means for agencies -- time to implement a multi-factor authentication (MFA) solution. https://www.akamai.com/blog/news/anyone-for-alphabet-soup-ztna-swgs-mfa-and-more-lessons-learned Bridget Meuse https://www.akamai.com/blog/news/anyone-for-alphabet-soup-ztna-swgs-mfa-and-more-lessons-learned Mon, 26 Jul 2021 04:00:00 UTC G2A's Journey to Global Growth, Part 1: Keeping Gamers and Geeks Playing During a Pandemic Near the end of March 2020, G2A.COM saw its traffic virtually double overnight. The pandemic had just begun, and people were looking for ways to stay entertained and connected under lockdown. Not surprisingly, a lot of people turned to video games, and G2A.COM was one of the first places they went to for affordable game keys and activation codes. https://www.akamai.com/blog/performance/g2as-journey-to-global-growth-part-1-keeping-gamers-and-geeks Jonathan Singer https://www.akamai.com/blog/performance/g2as-journey-to-global-growth-part-1-keeping-gamers-and-geeks Mon, 26 Jul 2021 04:00:00 UTC Why Zero Trust Needs the Edge Backhauling traffic destroys performance, and backhauling attack traffic can destroy even more. Nevertheless, in a traditional security deployment model, we are faced with the lose-lose options of either backhauling all traffic to the security stack or allowing some accesses to not go through the security stack. Of course, in the modern world where cyberattacks can cause enormous damage, the latter option is not really an option at all. All traffic must route through a robust security stack. So how do we accomplish this goal without backhauling? The answer is Zero Trust security deployed and delivered as an edge service. https://www.akamai.com/blog/security/why-zero-trust-needs-the-edge Robert Blumofe https://www.akamai.com/blog/security/why-zero-trust-needs-the-edge Mon, 26 Jul 2021 04:00:00 UTC Akamai Summarizes Service Disruption (RESOLVED) At 15:45 UTC on July 22, 2021, a software configuration update triggered a bug in our Secure Edge Content Delivery Network impacting that network's domain name service (DNS) system (the system that directs browsers to websites for that specific service). This caused a disruption impacting availability of some customer websites. The disruption lasted up to an hour. Upon rolling back the software configuration update, the services resumed normal operations. https://www.akamai.com/blog/news/akamai-summarizes-service-disruption-resolved Mani Sundaram https://www.akamai.com/blog/news/akamai-summarizes-service-disruption-resolved Thu, 22 Jul 2021 04:00:00 UTC Zero Trust Network Access Is an Oxymoron Though Zero Trust is really quite simple and should be viewed as a very strong form of the age-old principle of least privilege, that does not mean that it is the same thing. In fact, one of the most significant differences from what came before is that when it comes to access, Zero Trust is based on application access, not network access. I was surprised, then, when Gartner's new SASE (secure access service edge) model included something called Zero Trust Network Access (ZTNA). This term is an oxymoron, and I make this point because it matters. The distinction between network access and application access is important. https://www.akamai.com/blog/security/zero-trust-network-access-is-an-oxymoron Robert Blumofe https://www.akamai.com/blog/security/zero-trust-network-access-is-an-oxymoron Tue, 20 Jul 2021 04:00:00 UTC Zero Trust: Not As Scary As It Sounds If the term Zero Trust has been popping up in your news feed with astonishing frequency lately, you may be tempted to think that Zero Trust must be a brand-new technology cooked up in a research lab at MIT and powered by the latest artificial intelligence, machine learning, quantum computing, and a 1.21 gigawatt flux capacitor. In this and subsequent blog posts, I want to make the case that, in fact, Zero Trust is all about simplicity, and that at its core, Zero Trust is a strong form of the age-old principle of least privilege. https://www.akamai.com/blog/security/zero-trust-network-access-not-as-scary-as-it-sounds Robert Blumofe https://www.akamai.com/blog/security/zero-trust-network-access-not-as-scary-as-it-sounds Thu, 15 Jul 2021 04:00:00 UTC Kaseya Supply Chain Ransomware Attack On July 2, 2021, Kaseya disclosed an active attack against customers using its VSA product, and urged all on-premise customers to switch-off Kaseya VSA. Shortly before this alert, users on Reddit started describing ransomware incidents against managed security providers (MSPs), and the common thread among them was on-premise VSA deployments. In the hours to follow, several indicators of compromise (IOCs) were released, and Akamai was able to observe some of that traffic. A patch for the VSA product was released by Kaseya on July 11. https://www.akamai.com/blog/security/kaseya-supply-chain-ransomware-attack Ryan Barnett https://www.akamai.com/blog/security/kaseya-supply-chain-ransomware-attack Thu, 15 Jul 2021 04:00:00 UTC Streaming Numbers Jump for European Football Tournament Delivered by Akamai The video streaming traffic that Akamai delivered for more than 30 rights-holding customers during the July 11 Italy-England football (soccer) final as part of the delayed-to-2021European soccer tournament peaked at 34.9 Tbps on the Akamai edge platform. The traffic peak during the final match was the highest that Akamai reached for the tournament and was nearly 5x greater than the 7.3 Tbps peak of the 2016 Portugal-France championship match. Traffic during the June 29, 2021, round-of-16 match between Germany and England was the second-highest peak for the tournament, reaching 33.9 Tbps; third-highest was the July 6 Italy-Spain semi-final at 32.6 Tbps. https://www.akamai.com/blog/performance/streaming-numbers-jump-for-european-football-tournament-delivered Chris Nicholson https://www.akamai.com/blog/performance/streaming-numbers-jump-for-european-football-tournament-delivered Wed, 14 Jul 2021 04:00:00 UTC Location-and Device-agnostic Security for the Mobile Workforce I've spent my entire career in technology and can still recall the time when a desktop PC was the only way to work. (Truth be told, I'm also old enough to remember dumb terminals.) I also remember my first company laptop -- a beast of a thing with a monochrome display so thick it came with an integrated 2.5" floppy drive and a battery life that made it barely usable. My first mobile phone was a Motorola Timeport, the first tri-band mobile phone that could work in Europe and North America. https://www.akamai.com/blog/performance/location-and-device-agnostic-security-for-the-mobile-workforce Jim Black https://www.akamai.com/blog/performance/location-and-device-agnostic-security-for-the-mobile-workforce Wed, 14 Jul 2021 04:00:00 UTC Mind the Gap: Securely Embracing the Digital Explosion State and local governments are weathering a digital explosion. The move to "virtual everything" means that greater amounts of information are being produced and transmitted electronically, but the digital infrastructure powering these operations is straining under the weight. https://www.akamai.com/blog/security/mind-the-gap-securely-embracing-the-digital-explosion Bridget Meuse https://www.akamai.com/blog/security/mind-the-gap-securely-embracing-the-digital-explosion Tue, 13 Jul 2021 04:00:00 UTC Zero Trust: The Protection Model for the Post-Pandemic World One year and a half following the start of the COVID-19 pandemic, we're seeing most companies either maintaining their remote work policies or slowly moving to a hybrid model. In fact, an estimated 36.2 million Americans will be working remotely by 2025, which is nearly double pre-pandemic levels. https://www.akamai.com/blog/security/zero-trust-the-protection-model-for-the-post-pandemic-world Robert Blumofe https://www.akamai.com/blog/security/zero-trust-the-protection-model-for-the-post-pandemic-world Tue, 13 Jul 2021 04:00:00 UTC Akamai Helps Q-dance Bring Its Tribe to Defqon.1 at Home -- a Global Virtual Festival Experience Every year, Q-dance (part of the ID&T group), a Dutch electronic music experience company, delights its die-hard fans (or their "tribe") at the world's largest hardstyle festival, Defqon.1. Helicopters, simulated earthquakes, special moments like Power Hour, and amazing shows make up the unique experience. https://www.akamai.com/blog/performance/akamai-helps-q-dance-bring-its-tribe-to-defqon-1-at-home-a-glance Ina Christova https://www.akamai.com/blog/performance/akamai-helps-q-dance-bring-its-tribe-to-defqon-1-at-home-a-glance Thu, 08 Jul 2021 04:00:00 UTC Your Employees Want Passwordless. Isn't It Time You Gave It to Them? I hate passwords. There, I said it. I dread getting an email from Akamai IT telling me it will soon be time to update my password. I procrastinate until the last possible moment instead of immediately doing what is actually a trivial process. I suspect I'm not alone in my dislike for passwords. https://www.akamai.com/blog/security/your-employees-want-passwordless-isnt-it-time-you-gave-it-to-them Jim Black https://www.akamai.com/blog/security/your-employees-want-passwordless-isnt-it-time-you-gave-it-to-them Wed, 07 Jul 2021 04:00:00 UTC The Countdown Has Started - The Move Toward Zero Trust and MFA In early May 2021, the President of the United States issued an executive order on cybersecurity, and though it will take some time for executive branch agencies to develop formal rules, the order itself includes a lot of what I consider to be best practice in cybersecurity, including the use of multi-factor authentication (MFA) and Zero Trust, mentioned by name. https://www.akamai.com/blog/security/the-countdown-has-started-the-move-toward-zero-trust-and-mfa Robert Blumofe https://www.akamai.com/blog/security/the-countdown-has-started-the-move-toward-zero-trust-and-mfa Fri, 02 Jul 2021 04:00:00 UTC SMB Worm Indexsinas New details in the Indexsinas SMB worm, also dubbed NSABuffMiner. https://www.akamai.com/blog/security/smb-worm-indexsinas Liad Mordekoviz & Ophir Harpaz https://www.akamai.com/blog/security/smb-worm-indexsinas Wed, 30 Jun 2021 13:00:00 UTC The Threat That Never Went Away Is Back (with a Vengeance) What is your recollection of May 2017? Emmanuel Macron won the French election. The Ringling Bros. and Barnum & Bailey Circus gave its final performance after a 146-year run. The U.S. FCC voted to overturn net neutrality rules. And the National Health Service in the United Kingdom was crippled by a massive ransomware attack that ended up costing over $120 million. https://www.akamai.com/blog/security/the-threat-that-never-went-away-is-back-with-a-vengeance Jim Black https://www.akamai.com/blog/security/the-threat-that-never-went-away-is-back-with-a-vengeance Tue, 29 Jun 2021 04:00:00 UTC How to Perform a Zero Trust AWS Assessment with Infection Monkey and ScoutSuite Take action on issues highlighted in the report to ensure your AWS cloud defenses are protected in a data breach, minimizing impact and data loss. https://www.akamai.com/blog/security/monkey-scoutsuite-ztx Mike Salvatore https://www.akamai.com/blog/security/monkey-scoutsuite-ztx Wed, 23 Jun 2021 14:34:00 UTC Targeted Cache Control Content delivery networks (CDNs) have been around and have evolved over a long time (in internet years). They all speak HTTP and you can safely rely on them to work with just about anything else that speaks HTTP. https://www.akamai.com/blog/news/targeted-cache-control Stephen Ludin https://www.akamai.com/blog/news/targeted-cache-control Wed, 23 Jun 2021 04:00:00 UTC World-Class OTT Streaming from MwareTV with Akamai Since the onset of the pandemic, home entertainment has never been more important. Millions of users across the globe have turned to over-the-top (OTT) streaming and live TV to bring much-needed diversion and exciting content into their lives. https://www.akamai.com/blog/performance/world-class-ott-streaming-from-mwaretv-with-akamai Ina Christova https://www.akamai.com/blog/performance/world-class-ott-streaming-from-mwaretv-with-akamai Wed, 23 Jun 2021 04:00:00 UTC Crypto Threats Surge by 500%, and It's All About the Money Previously reserved for early adopters and tech-savvy consumers, cryptocurrencies have gone mainstream -- with tech entrepreneurs and prominent financial institutions leading the charge. https://www.akamai.com/blog/security/crypto-threats-surge-by-500-and-its-all-about-the-money Or Katz https://www.akamai.com/blog/security/crypto-threats-surge-by-500-and-its-all-about-the-money Tue, 22 Jun 2021 04:00:00 UTC NorthSec CTF 2021 Write Up: 'Impurity Assessment Form' This is a write up of a NorthSec 2021 CTF problem I solved with Allan Wirth (@Allan_Wirth) as part of team SaaS which finished in 3rd. It was an extremely creative problem to solve so I wanted to share it here. https://www.akamai.com/blog/security/northsec-ctf-2021-write-up-impurity-assessment-form Samuel Erb https://www.akamai.com/blog/security/northsec-ctf-2021-write-up-impurity-assessment-form Tue, 22 Jun 2021 04:00:00 UTC New Admin Portal for Akamai Enterprise Application Access The definition of a user has evolved to comprise much more than an employee, making secure access to the right application, for the right user, at the right time difficult and complex. https://www.akamai.com/blog/news/new-admin-portal-for-akamai-enterprise-application-access Sanjay Sadarangani https://www.akamai.com/blog/news/new-admin-portal-for-akamai-enterprise-application-access Mon, 21 Jun 2021 04:00:00 UTC HTTP/3 and QUIC: Past, Present, and Future You may have seen the announcements over the past two weeks -- the IETF QUIC RFCs have been published! That leads to a lot of questions, depending on how closely you've followed this space. https://www.akamai.com/blog/performance/http3-and-quic-past-present-and-future Mike Bishop https://www.akamai.com/blog/performance/http3-and-quic-past-present-and-future Mon, 21 Jun 2021 04:00:00 UTC What A Funny App I Got Here! When you hear the word "malware", the first thing that might come to your mind is a PC or laptop. You think about some weird advertising pop-ups or unrecognized processes running in the background. https://www.akamai.com/blog/security/what-a-funny-app-i-got-here Aleksandra Blaszczyk https://www.akamai.com/blog/security/what-a-funny-app-i-got-here Mon, 21 Jun 2021 04:00:00 UTC Better Real User Monitoring with BoomerangJS and Akamai mPulse In this blog, we'll walk through a few different snippet insertion methods and available optimizations. https://www.akamai.com/blog/performance/better-real-user-monitoring-with-boomerangjs-and-akamai-mpulse Will Smithee https://www.akamai.com/blog/performance/better-real-user-monitoring-with-boomerangjs-and-akamai-mpulse Sun, 20 Jun 2021 04:00:00 UTC Akamai Provides Prolexic DDoS Service Impact Update (Status: Resolved) Akamai experienced an outage for one of its Prolexic DDoS services (Routed 3.0) starting at 4:20 AM UTC. We detected the issue immediately, and impacted customers received an error alert within seconds. The impact was limited to Akamai customers using version 3.0 of the Routed service. https://www.akamai.com/blog/news/akamai-provides-prolexic-ddos-service-impact-update Akamai https://www.akamai.com/blog/news/akamai-provides-prolexic-ddos-service-impact-update Thu, 17 Jun 2021 04:00:00 UTC Stopping Ransomware and Lateral Movement with Segmentation Learn how to take on the growing ransomware threat, and the necessity of network segmentation from VP of Cyber Research, Amit Serper. https://www.akamai.com/blog/security/stopping-ransomware-with-segmentation Amit Serper https://www.akamai.com/blog/security/stopping-ransomware-with-segmentation Wed, 16 Jun 2021 19:50:00 UTC Akamai Platform Update: New Security Enhancements That Intelligently Automate Application and API Security, Mitigate Online Fraud, and Reduce Burden on Security Professionals Today is Day 2 of Akamai's Platform Update. Yesterday, we talked about the acceleration of modern app development and how we're empowering users to shift more compute and data to the edge. https://www.akamai.com/blog/news/akamai-platform-update-new-security-enhancements-that-intelligently Charles Choe https://www.akamai.com/blog/news/akamai-platform-update-new-security-enhancements-that-intelligently Wed, 16 Jun 2021 04:00:00 UTC Platform Update: Akamai Boosts Edge Application Power, Expanding Possibilities for Developers Welcome to the Akamai Platform Update -- two days of new capabilities and innovations across our edge technology and security product portfolios. https://www.akamai.com/blog/news/platform-update-akamai-boosts-edge-application-power-expanding Alex Balford https://www.akamai.com/blog/news/platform-update-akamai-boosts-edge-application-power-expanding Tue, 15 Jun 2021 04:00:00 UTC The Adaptive Security Engine – A Quantum Leap Forward for Application and API Protection At Akamai, our mission is to make application and API security highly effective and easy. As part of that effort, we are excited to announce the Adaptive Security Engine -- a new core technology powering Akamai's application and API protection offerings, designed to enable a hands-off approach to protecting web applications and APIs with the highest degree of confidence. https://www.akamai.com/blog/security/the-adaptive-security-engine-a-quantum-leap-forward-for-application Amol Mathur https://www.akamai.com/blog/security/the-adaptive-security-engine-a-quantum-leap-forward-for-application Mon, 14 Jun 2021 04:00:00 UTC Trusting Locations Bites Us Yet Again Recently, Microsoft announced the discovery of yet another attack being launched by the now infamous Nobelium group, which has been responsible for numerous successful attacks, including the widespread SolarWinds breach in 2020. https://www.akamai.com/blog/news/trusting-locations-bites-us-yet-again Charlie Gero https://www.akamai.com/blog/news/trusting-locations-bites-us-yet-again Mon, 07 Jun 2021 04:00:00 UTC How Network Segmentation Simplifies PCI DSS Compliance Read more about how proper network segmentation can simplify PCI DSS compliance by effectively reducing the number of assets in scope. https://www.akamai.com/blog/security/pci-dss-network-segmentation Tricia Howard https://www.akamai.com/blog/security/pci-dss-network-segmentation Thu, 03 Jun 2021 17:57:00 UTC Now Available: EdgeKV Distributed Key-Value Store We're excited to announce the availability of EdgeKV, a distributed key-value store database that enables EdgeWorkers to leverage data stored at the edge when deploying custom code across our serverless computing platform. https://www.akamai.com/blog/news/now-available-edgekv-distributed-key-value-store Josh Johnson https://www.akamai.com/blog/news/now-available-edgekv-distributed-key-value-store Thu, 03 Jun 2021 04:00:00 UTC How Enigmo Moved Logic from Client to Origin to Edge Enigmo owns BUYMA, a Japanese fashion C2C marketplace that helps people buy and sell high-quality goods from overseas on www.buyma.com. https://www.akamai.com/blog/edge/how-enigmo-moved-logic-from-client-to-origin-to-edge Hideki Ito https://www.akamai.com/blog/edge/how-enigmo-moved-logic-from-client-to-origin-to-edge Tue, 01 Jun 2021 04:00:00 UTC The Rapid Resurgence of DDoS Extortion (That Didn't Take Long) Just when we thought DDoS extortion was fading into the rearview mirror, it's time to circle up the trucks again (gas tanks full). https://www.akamai.com/blog/news/the-rapid-resurgence-of-ddos-extortion-that-didnt-take-long Tom Emmons https://www.akamai.com/blog/news/the-rapid-resurgence-of-ddos-extortion-that-didnt-take-long Tue, 01 Jun 2021 04:00:00 UTC SOGo and PacketFence Impacted by SAML Implementation Vulnerabilities Part of Akamai's incident management process for vulnerabilities in third party software involves verifying potential impact in other systems using the same or similar libraries. https://www.akamai.com/blog/news/sogo-and-packetfence-impacted-by-saml-implementation-vulnerabilities Akamai https://www.akamai.com/blog/news/sogo-and-packetfence-impacted-by-saml-implementation-vulnerabilities Tue, 01 Jun 2021 04:00:00 UTC SAML Implementation Vulnerability Impacting Some Akamai Services This blog post provides an overview of a vulnerability discovered in Akamai's Enterprise Application Access (EAA) product which has been patched. https://www.akamai.com/blog/news/saml-implementation-vulnerability-impacting-some-akamai-services Akamai https://www.akamai.com/blog/news/saml-implementation-vulnerability-impacting-some-akamai-services Tue, 01 Jun 2021 04:00:00 UTC Akamai EAA Impersonation Vulnerability - A Deep Dive In this post, we cover the technical details of CVE-2021-28091, the vulnerability impacting Akamai's Enterprise Application Access (EAA) platform. https://www.akamai.com/blog/news/akamai-eaa-impersonation-vulnerability-a-deep-dive Akamai https://www.akamai.com/blog/news/akamai-eaa-impersonation-vulnerability-a-deep-dive Tue, 01 Jun 2021 04:00:00 UTC 5 Benefits of Network Segmentation Learn more about how microsegmentation can enable you to achieve granular network segmentation, quickly and securely. https://www.akamai.com/blog/security/network-segmentation-benefits Tricia Howard https://www.akamai.com/blog/security/network-segmentation-benefits Fri, 28 May 2021 15:14:00 UTC Edge DNS Secondary Implementation: Order of Operations for NS Zone and Registrar Records Akamai Edge DNS service delivers edge-based, authoritative domain services for thousands of organizations. https://www.akamai.com/blog/edge/edge-dns-secondary-implementation-order-of-operations-for-ns-zone Sam Preston https://www.akamai.com/blog/edge/edge-dns-secondary-implementation-order-of-operations-for-ns-zone Thu, 27 May 2021 04:00:00 UTC ThinkPHP Exploit Actively Exploited in the Wild https://www.akamai.com/blog/security/thinkphp-exploit-actively-exploited-in-the-wild Larry Cashdollar https://www.akamai.com/blog/security/thinkphp-exploit-actively-exploited-in-the-wild Wed, 26 May 2021 04:00:00 UTC It's Official - Akamai is a Great Place to Work When Akamai Costa Rica won the 'Great Place to Work' award, we were delighted. It's a wonderful achievement that really means a lot to Akamai and to all the collaborators who have worked here. It highlights the great working environment that Akamai have created for us. But it also shines a light on all the contributions made by our collaborators over the years. https://www.akamai.com/blog/culture/its-official-we-are-a-great-place-to-work-andres-gonzalez Andres Gonzalez https://www.akamai.com/blog/culture/its-official-we-are-a-great-place-to-work-andres-gonzalez Tue, 25 May 2021 04:00:00 UTC Romanian Crypto Mining Infection While examining my honeypot logs and digging through the newly downloaded binaries last week, I noticed a large compressed file. I figured it would be a crypto miner, typically a tar archive and gzip (normally erroneously) compressed. I moved the archive over to my test lab and started examining the contents. https://www.akamai.com/blog/security/romanian-crypto-mining-infection Larry Cashdollar https://www.akamai.com/blog/security/romanian-crypto-mining-infection Mon, 24 May 2021 04:00:00 UTC Digital Transformation Usain Bolt-Style: Health Care's Sprint to Modernization In the present age, patients now use smartphone apps to schedule doctor's visits, contact insurance companies, and get prescriptions instead of picking up the phone. https://www.akamai.com/blog/cloud/digital-transformation-usain-bolt-style-health-cares-sprint-to-modernization Bridget Meuse https://www.akamai.com/blog/cloud/digital-transformation-usain-bolt-style-health-cares-sprint-to-modernization Fri, 21 May 2021 04:00:00 UTC Why FIDO2 Is the Answer to Better Security A groundbreaking increase in security incidents is affecting governments around the world. In light of this, the United States issued a formal order to implement a robust set of security measures designed to improve the security of federal systems. https://www.akamai.com/blog/news/why-fido2-is-the-answer-to-better-security Jim Black https://www.akamai.com/blog/news/why-fido2-is-the-answer-to-better-security Fri, 21 May 2021 04:00:00 UTC Why FIDO2 is the Answer to Better Security A groundbreaking increase in security incidents is affecting governments around the world. In light of this, the United States issued a formal order to implement a robust set of security measures designed to improve the security of federal systems. In his most recent executive order, President Biden acknowledged that the United States and many other governments around the world are facing increasing malicious cyberattacks. In order to prevent, and recover from security incidents, the President is pushing to significantly improve the government's security stack, including the implementation of multi-factor authentication (MFA). In this post, I'll discuss how the government's plan to leverage MFA could be even better. https://www.akamai.com/blog/security/why-fido2-is-the-answer-to-better-security- Jim Black https://www.akamai.com/blog/security/why-fido2-is-the-answer-to-better-security- Fri, 21 May 2021 04:00:00 UTC How Does Ransomware Actually Spread? We all know the damage ransomware can do - but how does ransomware actually spread? Our blog shows you how - and how it can be stopped. https://www.akamai.com/blog/security/how-ransomware-actually-spreads Tricia Howard https://www.akamai.com/blog/security/how-ransomware-actually-spreads Thu, 20 May 2021 16:24:00 UTC XITE Music Video Platform Amplifies Entertainment with Akamai's Help With so many people around the globe seeking socially distanced fun and solace, at-home entertainment has never been more important. XITE aims to offer the best music video experience in the world. Akamai is delighted that this exciting, interactive video platform chose to work with us to provide high-quality, secure online video, which enables XITE to deliver on the experience its fans have come to love. https://www.akamai.com/blog/performance/xite-music-video-platform-amplifies-entertainment-with-akamais-help Ralph Aantjes https://www.akamai.com/blog/performance/xite-music-video-platform-amplifies-entertainment-with-akamais-help Wed, 19 May 2021 04:00:00 UTC A/B Testing, Now with EdgeKV Now that we've written the framework of our code, let's layer in EdgeKV (EKV), our distributed key-value store database. https://www.akamai.com/blog/developers/ab-testing-now-with-edgekv Jeffrey Costa https://www.akamai.com/blog/developers/ab-testing-now-with-edgekv Tue, 18 May 2021 04:00:00 UTC How Akamai Employees Showed Up for Akamai Earth Month Akamai employees across the globe showed up in full force for Akamai Earth Month 2021 -- our campaign to help employees take small actions at home and in their community to make a difference for the planet. https://www.akamai.com/blog/culture/how-akamai-employees-showed-up-for-akamai-earth-month Courtney Hadden https://www.akamai.com/blog/culture/how-akamai-employees-showed-up-for-akamai-earth-month Thu, 13 May 2021 04:00:00 UTC Partnering With Verizon on the 2021 DBIR By the time you read this post, the 2021 Verizon Data Breach Investigation Report (DBIR) will be published. Akamai has been one of the many partners contributing data to this report for more than half a decade. We greatly value the time, effort, and dedicated data science that goes into providing this level of research to the security community. https://www.akamai.com/blog/security/partnering-with-verizon-on-the-2021-dbir Martin McKeay https://www.akamai.com/blog/security/partnering-with-verizon-on-the-2021-dbir Thu, 13 May 2021 04:00:00 UTC Visualize and Analyze Bots With Real User Monitoring https://www.akamai.com/blog/security/visualize-bots-with-real-user-monitoring Hitoshi Kaneko https://www.akamai.com/blog/security/visualize-bots-with-real-user-monitoring Wed, 12 May 2021 13:00:00 UTC Visualize and Analyze Bots with Real User Monitoring You interact with more than just customers on your website. Bots make up a disproportionate amount of traffic, which can skew human behavior analysis data -- and cause you to make the wrong business decisions. https://www.akamai.com/blog/security/visualize-and-analyze-bots-with-real-user-monitoring Hitoshi Kaneko https://www.akamai.com/blog/security/visualize-and-analyze-bots-with-real-user-monitoring Wed, 12 May 2021 04:00:00 UTC Why Developers Are Writing Apps on Our Edge Platform A lot of companies talk about edge computing today, but at Akamai, we've been doing it for more than 20 years. https://www.akamai.com/blog/trends/why-developers-are-writing-apps-on-our-edge-platform Tom Leighton https://www.akamai.com/blog/trends/why-developers-are-writing-apps-on-our-edge-platform Tue, 11 May 2021 04:00:00 UTC Defeating the Pirates In Akamai's paper, "Inside the World of Video Pirates," we discovered why digital intellectual property theft (aka "piracy") is possibly the most misunderstood form of cybercrime facing the TV, sports, and film industries. https://www.akamai.com/blog/security/defeating-the-pirates Ian Munford https://www.akamai.com/blog/security/defeating-the-pirates Thu, 06 May 2021 04:00:00 UTC Two Years of Tax Phishing - The Oldest Scam in the Book Tax scams are some of the oldest scams in a criminal's book, and they're highly attractive to criminals for many reasons. https://www.akamai.com/blog/security/two-years-of-tax-phishing-the-oldest-scam-in-the-book Or Katz https://www.akamai.com/blog/security/two-years-of-tax-phishing-the-oldest-scam-in-the-book Wed, 05 May 2021 04:00:00 UTC Ohana — An Impact an ERG Can Make Akamai's Ohana ERG launched in 2015, along with a number of other ERGs, with the mission to broaden and facilitate the inclusion and contributions of employees of African American, Black, Hispanic, and Latin American descent and association. https://www.akamai.com/blog/culture/ohana-an-impact-an-erg-can-make Alex Caro https://www.akamai.com/blog/culture/ohana-an-impact-an-erg-can-make Fri, 30 Apr 2021 04:00:00 UTC CISA Emergency Directive 21-03: VPN Vulnerabilities Actively Exploited On April 20, 2021, the Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) released an alert on the exploitation of Pulse Connect Secure Vulnerabilities with Alert AA21-110A: Exploitation of Pulse Connect Secure Vulnerabilities, as well as Emergency Directive (ED) 21-03, after a FireEye blog shed light on security incidents involving compromises of Pulse Secure VPN appliances. https://www.akamai.com/blog/news/cisa-emergency-directive-21-03-vpn-vulnerabilities-actively-exploited Patrick Sullivan https://www.akamai.com/blog/news/cisa-emergency-directive-21-03-vpn-vulnerabilities-actively-exploited Thu, 29 Apr 2021 04:00:00 UTC Anyone For a Smart Network Slice? As with any standardization effort, development of 5G specifications accounted for numerous technology trends and new use cases. https://www.akamai.com/blog/security/anyone-for-a-smart-network-slice Mick Higgins https://www.akamai.com/blog/security/anyone-for-a-smart-network-slice Thu, 29 Apr 2021 04:00:00 UTC Supporting Akamai Communities Impacted by COVID-19 While those of us in places like the U.S. are experiencing some relief with access to the COVID-19 vaccine, it has been heartbreaking to see surges in infection, hospitalization, and death across the globe, including the dire situation in India. https://www.akamai.com/blog/news/supporting-akamai-communities-impacted-by-covid-19 Mani Sundaram https://www.akamai.com/blog/news/supporting-akamai-communities-impacted-by-covid-19 Wed, 28 Apr 2021 04:00:00 UTC Observed Changes to the Threat Landscape in 2020 Reflecting on the cybersecurity threat landscape in 2020, we can't overlook the massive changes that landed on us. Global security attacks increased at a significant pace between 2019 and 2020, and the COVID-19 pandemic only deepened these troubling conditions. https://www.akamai.com/blog/trends/observed-changes-to-the-threat-landscape-in-2020 Shiran Guez https://www.akamai.com/blog/trends/observed-changes-to-the-threat-landscape-in-2020 Wed, 28 Apr 2021 04:00:00 UTC Don't Risk Getting Caught by Kr3pto Phishing Kits https://www.akamai.com/blog/security/dont-risk-getting-caught-by-kr3pto-phishing-kits Jim Black https://www.akamai.com/blog/security/dont-risk-getting-caught-by-kr3pto-phishing-kits Mon, 26 Apr 2021 04:00:00 UTC Announcing Akamai's 2030 Sustainability Goals There are 4.66 billion (yes, with a B) internet users. Rough math will tell us that's three in every five people around the world -- talk about lessening the six degrees. I see head nods and shoulder shrugs. 4.66 billion people? https://www.akamai.com/blog/culture/announcing-akamais-2030-sustainability-goals Mike Mattera https://www.akamai.com/blog/culture/announcing-akamais-2030-sustainability-goals Thu, 22 Apr 2021 04:00:00 UTC Innovative Ways Customers Compute on the Edge Moving everything closer to the edge is the key to delivering better, faster experiences to people through billions of devices around the world. https://www.akamai.com/blog/trends/innovative-ways-customers-compute-on-the-edge CJ Arnesen https://www.akamai.com/blog/trends/innovative-ways-customers-compute-on-the-edge Thu, 22 Apr 2021 04:00:00 UTC Akamai Recognized as 2021 Gartner Peer Insights Customers' Choice for Web Application Firewalls Akamai has been named a Gartner Peer Insights Customers' Choice for Web Application Firewalls (for the second time). https://www.akamai.com/blog/news/akamai-recognized-as-2021-gartner-peer-insights-customers-choice Lorenz Jakober https://www.akamai.com/blog/news/akamai-recognized-as-2021-gartner-peer-insights-customers-choice Mon, 19 Apr 2021 04:00:00 UTC Building an A/B Test with EdgeWorkers and EdgeKV When paired with our new EdgeKV distributed key-value database, the Akamai EdgeWorkers serverless platform gives you the ability to do powerful things at the CDN level. https://www.akamai.com/blog/developers/building-an-a-b-test-with-edgeworkers-and-edgekv Jeffrey Costa https://www.akamai.com/blog/developers/building-an-a-b-test-with-edgeworkers-and-edgekv Sat, 17 Apr 2021 04:00:00 UTC Adapting Security to Work Anywhere "Working from home 2021" was the title of my talk at The Cyber Security Summit in January, and the strikethrough is important. https://www.akamai.com/blog/security/adapting-security-to-work-anywhere Richard Meeus https://www.akamai.com/blog/security/adapting-security-to-work-anywhere Wed, 14 Apr 2021 04:00:00 UTC Taking Action This Earth Month There's a fascinating human phenomenon often studied in the behavioral science field called the intention-action gap. https://www.akamai.com/blog/culture/taking-action-this-earth-month Kenda Carlson https://www.akamai.com/blog/culture/taking-action-this-earth-month Tue, 13 Apr 2021 04:00:00 UTC Gambling, Streaming Traffic Up During Men's College Basketball Tourney Gambling industry-related web traffic delivered by Akamai jumped 31% over the category average for all of Q4 2020 on March 31st. https://www.akamai.com/blog/performance/gambling-streaming-traffic-up-during-mens-college-basketball Chris Nicholson https://www.akamai.com/blog/performance/gambling-streaming-traffic-up-during-mens-college-basketball Mon, 12 Apr 2021 04:00:00 UTC Akamai Titans 2020: Celebrating Outstanding Achievements To Akamai's Co-Founder Danny Lewin, calling someone a "Titan" was the highest praise he would give. Danny himself was a remarkably talented and hard-working leader whose heart, passion, and spirit still inspire us. https://www.akamai.com/blog/culture/akamai-titans-2020-celebrating-outstanding-achievements PJ Joseph https://www.akamai.com/blog/culture/akamai-titans-2020-celebrating-outstanding-achievements Fri, 09 Apr 2021 04:00:00 UTC Caught on Camera: Rethinking IoT Security We all know that we're on camera pretty much constantly -- most coffee shops, convenience stores, and even offices employ security cameras for protection. But what happens when those devices built to keep us safe become unsafe? https://www.akamai.com/blog/security/caught-on-camera-rethinking-iot-security Mani Sundaram https://www.akamai.com/blog/security/caught-on-camera-rethinking-iot-security Fri, 09 Apr 2021 04:00:00 UTC Emerging Edge Computing Use Cases The first rule of edge compute thought leadership is: don't overuse the term edge. Over the course of my blog series on the topic, I have defined the edge, explained edge computing, and discussed the economics of edge computing. https://www.akamai.com/blog/edge/emerging-edge-computing-use-cases Ari Weil https://www.akamai.com/blog/edge/emerging-edge-computing-use-cases Thu, 08 Apr 2021 04:00:00 UTC Tax Season: Criminals Play the Numbers Game Too Criminals love tax season. The stress and urgency surrounding this time of year makes the victim pool highly vulnerable to various types of schemes. https://www.akamai.com/blog/security/tax-season-criminals-play-the-numbers-game-too Steve Ragan https://www.akamai.com/blog/security/tax-season-criminals-play-the-numbers-game-too Tue, 06 Apr 2021 04:00:00 UTC 2021: Volumetric DDoS Attacks Rising Fast In our 2020 DDoS retrospective, we highlighted the twists and turns of a very, very active threat landscape. As a quick refresher, we mitigated some of the largest attacks ever seen (1.44 Tbps and 809 Mpps); https://www.akamai.com/blog/security/2021-volumetric-ddos-attacks-rising-fast Tom Emmons https://www.akamai.com/blog/security/2021-volumetric-ddos-attacks-rising-fast Wed, 31 Mar 2021 04:00:00 UTC 4 Helpful Features for Centra Users - Policy Monitoring and More https://www.akamai.com/blog/security/guardicore-4-helpful-features-for-centra-users Guardicore Labs Team https://www.akamai.com/blog/security/guardicore-4-helpful-features-for-centra-users Mon, 29 Mar 2021 13:00:00 UTC CVE-2020-15915 -- Quest for KACE blind SQLi At Akamai, the Enterprise Security Red Team (ESRT) continuously strives to evaluate the security of both our external and internal services. https://www.akamai.com/blog/security/cve-2020-15915-quest-for-kace-blind-sqli Samuel Erb https://www.akamai.com/blog/security/cve-2020-15915-quest-for-kace-blind-sqli Fri, 26 Mar 2021 04:00:00 UTC The Akamai Foundation: Our Chance to Give Back The Akamai Foundation was set up in 2018 to improve the impact and focus of our long-term philanthropic activities. https://www.akamai.com/blog/culture/akamai-foundation-our-chance-to-give-back-by-kim-salem-jackson Kim Salem-Jackson https://www.akamai.com/blog/culture/akamai-foundation-our-chance-to-give-back-by-kim-salem-jackson Wed, 24 Mar 2021 04:00:00 UTC Authentication: Lessons Learned From Microsoft Exchange And F5 Big-IP Hacks The past month has been a very dynamic time in the world of security for hackers and threat researchers, but it has been an extended nightmare for CSOs responsible for securing their enterprise networks. https://www.akamai.com/blog/news/authentication-lessons-learned-from-microsoft-exchange-and-f5 Charlie Gero https://www.akamai.com/blog/news/authentication-lessons-learned-from-microsoft-exchange-and-f5 Wed, 24 Mar 2021 04:00:00 UTC Akamai Focused on What's Next Following New Traffic Milestone Akamai hit a new milestone last week when web traffic delivered across our edge network peaked at 200 terabits per second (Tbps). https://www.akamai.com/blog/trends/akamai-focused-following-new-traffic-milestone Adam Karon https://www.akamai.com/blog/trends/akamai-focused-following-new-traffic-milestone Wed, 24 Mar 2021 04:00:00 UTC Threat Advisory - DCCP for (D)DoS Recent attacks against Akamai customers have leveraged a networking protocol known as protocol 33, or Datagram Congestion Control Protocol (DCCP). https://www.akamai.com/blog/security/threat-advisory-dccp-for-ddos Chad Seaman https://www.akamai.com/blog/security/threat-advisory-dccp-for-ddos Tue, 23 Mar 2021 04:00:00 UTC 4 Techniques for Early Ransomware Detection If you receive a ransom note, it’s already too late. Detect and stop ransomware attacks early in the kill chain with these 4 techniques. https://www.akamai.com/blog/security/4-techniques-for-early-ransomware-detection Avishag Daniely https://www.akamai.com/blog/security/4-techniques-for-early-ransomware-detection Sun, 21 Mar 2021 18:40:00 UTC Akamai Launch Cohort 2 of Accelerator Program For Early-Stage Innovations in Water Akamai Technologies India Pvt. Ltd. has chosen the grantees for Cohort 2 of Accelerator Program for Early-Stage Innovations in Water. https://www.akamai.com/blog/culture/akamai-launch-cohort-2-of-accelerator-program-for-early-stage-innovations Neha Jain https://www.akamai.com/blog/culture/akamai-launch-cohort-2-of-accelerator-program-for-early-stage-innovations Fri, 19 Mar 2021 04:00:00 UTC The Edge is Becoming More Critical in a World of 5G and IoT The edge is becoming more critical in a world of 5G and IoT. I've seen the evolution from 1x to 3G to 4G and now 5G over the many years I've worked in the mobile space, and 5G and IoT will drive the biggest changes we have seen on the edge in 10 or 20 years. https://www.akamai.com/blog/edge/the-edge-is-becoming-more-critical-in-a-world-of-5g-and-iot Jonathan Morgan https://www.akamai.com/blog/edge/the-edge-is-becoming-more-critical-in-a-world-of-5g-and-iot Fri, 19 Mar 2021 04:00:00 UTC Finding the Cracks in the Wall - How Modern Scams Bypass MFA In my previous blog, I discussed the important role multi-factor authentication (MFA) plays in further securing access to enterprise and consumer services. We also established the fact that although MFA increases authentication security and decreases the risk of account takeover, MFA can, and is, being bypassed in the wild. https://www.akamai.com/blog/security/finding-the-cracks-in-the-wall-how-modern-scams-bypass-mfa-blog2 Or Katz https://www.akamai.com/blog/security/finding-the-cracks-in-the-wall-how-modern-scams-bypass-mfa-blog2 Wed, 17 Mar 2021 04:00:00 UTC Phish-Proof Multi-Factor Authentication with Akamai MFA Today, Akamai announced Akamai MFA, a phish-proof multi-factor authentication (MFA) service for the workforce that delivers all of the security benefits of FIDO2 with the frictionless end-user experience of a mobile push on a smartphone. Why has Akamai introduced this new service? https://www.akamai.com/blog/security/phish-proof-multi-factor-authentication-with-akamai-mfa-blog-3 Jim Black https://www.akamai.com/blog/security/phish-proof-multi-factor-authentication-with-akamai-mfa-blog-3 Tue, 16 Mar 2021 04:00:00 UTC Finding the Cracks in the Wall - The Hazard of Single Authentication Factor The use of authentication factors, one of the most fundamental and well understood concepts in information security, enables secure access to applications, services, and networks. It can affect an enterprise's security posture, however, as the drastic increase in data breaches and system attacks are largely based on compromised authentication. https://www.akamai.com/blog/security/finding-the-cracks-in-the-wall-the-hazard-of-single-authentication-factor Or Katz https://www.akamai.com/blog/security/finding-the-cracks-in-the-wall-the-hazard-of-single-authentication-factor Tue, 16 Mar 2021 04:00:00 UTC Another Golang Crypto Miner On the Loose There are many crypto mining malware variants infecting systems on the internet. On Friday, March 4, 2021, I noticed an interesting hit in my honeypot logs. The binary it captured stood out, as it was rather large at 4MB. I immediately thought it would be a crypto miner written in the Go language. I was correct. This one however, has some newer exploits it's using for proliferation. https://www.akamai.com/blog/security/another-golang-crypto-miner-on-the-loose Larry Cashdollar https://www.akamai.com/blog/security/another-golang-crypto-miner-on-the-loose Tue, 16 Mar 2021 04:00:00 UTC How Akamai Can Help You Fight the Latest Exploitation Attempts Against Microsoft Exchange On March 2, 2021, the Microsoft Security Response Center alerted its customers to several critical security updates to Microsoft Exchange Server, addressing vulnerabilities currently under attack. https://www.akamai.com/blog/security/appsec-protections-for-microsoft-exchange-cve Amol Mathur https://www.akamai.com/blog/security/appsec-protections-for-microsoft-exchange-cve Mon, 15 Mar 2021 04:00:00 UTC Microsoft Exchange and Verkada Hacks: Isolate Your Apps and APIs from the Internet Cesspool It's been an interesting start to March in terms of public security incidents. This month kicked off with multiple zero-day exploits being used to attack on-premises versions of Microsoft Exchange Server. And, as if that wasn't enough, that attack was quickly followed by the news that a hacktivist https://www.akamai.com/blog/security/microsoft-exchange-and-verkada-hacks-isolate-your-apps-and-apis-from-the-internet-cesspool Lorenz Jakober https://www.akamai.com/blog/security/microsoft-exchange-and-verkada-hacks-isolate-your-apps-and-apis-from-the-internet-cesspool Sun, 14 Mar 2021 05:00:00 UTC Act Against Geopiracy with Enhanced Proxy Detection According to the description, the service is a virtual private network (VPN) desktop application and proxy browser extension that helps viewers mask their physical location, circumvent censorship, and restore access to blocked content. https://www.akamai.com/blog/performance/act-against-geopiracy-with-enhanced-proxy-detection Sandeep Singh https://www.akamai.com/blog/performance/act-against-geopiracy-with-enhanced-proxy-detection Fri, 12 Mar 2021 05:00:00 UTC Akamai Offers Free Tier for Client-Side Edge Security In March 2020, Akamai saw a dramatic 30% rise in internet traffic -- equivalent to an entire year of growth. Post-pandemic, we believe there will be a return to normal internet traffic growth, but many things will never be the same. https://www.akamai.com/blog/security/akamai-offers-free-tier-for-client-side-edge-security Mike Kane https://www.akamai.com/blog/security/akamai-offers-free-tier-for-client-side-edge-security Fri, 12 Mar 2021 05:00:00 UTC EdgeKV: Serverless Storage at the Edge We are pleased to announce the launch of EdgeKV, our distributed key-value store, into beta! EdgeKV is enabling technology for EdgeWorkers, our serverless computing platform that enables developers to create services using JavaScript and deploy them across our platform. When writing JavaScript, data persistence is often necessary to save data from a user interaction, or to retrieve contextual data to evaluate inside a function. https://www.akamai.com/blog/edge/serverless-storage-at-the-edge-edgekv-beta Jeffrey Costa https://www.akamai.com/blog/edge/serverless-storage-at-the-edge-edgekv-beta Wed, 10 Mar 2021 05:00:00 UTC Now Launching - SOTI: Research https://www.akamai.com/blog/security/now-launching-soti-research Amanda Goedde https://www.akamai.com/blog/security/now-launching-soti-research Wed, 10 Mar 2021 05:00:00 UTC Finding the Best Servers to Answer Queries — Edge DNS and Anycast While Unicast defines a single destination endpoint for a given IP, Anycast is an addressing technique in which the same IP is advertised from multiple servers simultaneously. https://www.akamai.com/blog/edge/finding-the-best-servers-to-answer-queries-edge-dns-and-anycast Sam Preston https://www.akamai.com/blog/edge/finding-the-best-servers-to-answer-queries-edge-dns-and-anycast Tue, 09 Mar 2021 05:00:00 UTC Sensor Architecture Can Help Keep Us Up and Running: Part 2 Previously, I introduced the field of sensor systems architecture and posed a real world example scenario of the unnecessary resource costs and hazards that can happen when the deployment of sensors isn't carefully thought out. https://www.akamai.com/blog/security/sensor-architecture-can-help-keep-us-up-and-running-part-2 Kristin Nelson-Patel https://www.akamai.com/blog/security/sensor-architecture-can-help-keep-us-up-and-running-part-2 Tue, 09 Mar 2021 05:00:00 UTC Akamai Startup Program: Fostering Innovation Akamai, the intelligent edge platform for securing and delivering digital experiences, continues to focus on innovation by launching Cohort 2 of the Akamai Startup program. https://www.akamai.com/blog/news/akamai-startup-program-fostering-innovation Arjun Rampal https://www.akamai.com/blog/news/akamai-startup-program-fostering-innovation Mon, 08 Mar 2021 05:00:00 UTC Is MFA a Security Illusion? A recent Akamai Security blog post, Massive Campaign Targeting UK Banks Bypassing 2FA, written by my colleague Or Katz, is a great insight into how attackers used very simple techniques to bypass two-factor (2FA) authentication security to obtain access to U.K. consumers' bank accounts. https://www.akamai.com/blog/security/is-mfa-a-security-illusion Jim Black https://www.akamai.com/blog/security/is-mfa-a-security-illusion Mon, 08 Mar 2021 05:00:00 UTC Sensor Architecture Can Help Keep Us Up and Running: Part 1 In the constant press of rolling out ever better products and services to our customers, it can be easy-- and often necessary-- to fall into a reactive mode around reliability. https://www.akamai.com/blog/security/sensor-architecture-can-help-keep-us-up-and-running-part-1 Kristin Nelson-Patel https://www.akamai.com/blog/security/sensor-architecture-can-help-keep-us-up-and-running-part-1 Thu, 04 Mar 2021 05:00:00 UTC Compromised enterprise devices detection based on abnormal behavior patterns-- UEBA in action Recently, many reports of incidents have been making headlines, proving that no business or industry is immune to advanced threat actors. Applying user and entity behavior analytics (UEBA) for the challenging task of the detection of compromised devices over time can play a critical role in enterprises' defense mechanisms. https://www.akamai.com/blog/edge/compromised-enterprise-devices-detection-based-on-abnormal-behavior-patterns-ueba-in-action Hen Tzaban https://www.akamai.com/blog/edge/compromised-enterprise-devices-detection-based-on-abnormal-behavior-patterns-ueba-in-action Wed, 03 Mar 2021 05:00:00 UTC Akamai Identified as a Leader in DDoS Mitigation by Forrester This week, Akamai was again recognized as a Leader in the latest The Forrester Wave™: DDoS Mitigation Solutions, Q1 2021. https://www.akamai.com/blog/security/akamai-identified-as-a-leader-in-ddos-mitigation-by-forrester Susan McReynolds https://www.akamai.com/blog/security/akamai-identified-as-a-leader-in-ddos-mitigation-by-forrester Wed, 03 Mar 2021 05:00:00 UTC Better, or More Effective? A colleague asked me to share my thoughts on building a "better team". I confess, I stumbled on the word "better". Better than what exactly? https://www.akamai.com/blog/security/better-or-more-effective Fadi Saba https://www.akamai.com/blog/security/better-or-more-effective Mon, 01 Mar 2021 05:00:00 UTC Akamai's New ESG Office: A Catalyst for Environmental and Social Progress We're proud of the progress Akamai has made in environmental, social, and governance (ESG) performance. https://www.akamai.com/blog/culture/akamais-new-esg-office-a-catalyst-for-environmental-and-social-progress Aaron Ahola https://www.akamai.com/blog/culture/akamais-new-esg-office-a-catalyst-for-environmental-and-social-progress Thu, 25 Feb 2021 05:00:00 UTC Optimizing For Performance, One Hire at a Time: Part 3 Having previously decided we need to make a new hire onto our team, part 1 of this series examined how to meet the needs of our team going into the future, instead of just adding surface visible technical skills. https://www.akamai.com/blog/security/optimizing-for-performance-one-hire-at-a-time-part-3 Kathryn Kun https://www.akamai.com/blog/security/optimizing-for-performance-one-hire-at-a-time-part-3 Thu, 25 Feb 2021 05:00:00 UTC What’s new in Guardicore Centra R26 New improvements to Guardicore Centra make it the fastest and simplest solution to protect against ransomware and meet the needs of zero trust. https://www.akamai.com/blog/security/centra-update-r26 Guardicore Labs Team https://www.akamai.com/blog/security/centra-update-r26 Wed, 24 Feb 2021 14:00:00 UTC Bitcoins, Blockchains, and Botnets A recent piece of malware from a known crypto mining botnet campaign has started leveraging Bitcoin blockchain transactions in order to hide its backup C2 IP address. It's a simple, yet effective, way to defeat takedown attempts. https://www.akamai.com/blog/security/bitcoins--blockchains--and-botnets Evyatar Saias https://www.akamai.com/blog/security/bitcoins--blockchains--and-botnets Tue, 23 Feb 2021 05:00:00 UTC Out of My Depth (Where I Belong) I remember well my first day as a member of Akamai's InfoSec department. The Friday prior, I'd just completed the Akamai Technical Academy, a five-month crash-course in all things tech, and was now, on a cold but sunny Monday morning, joining InfoSec for their weekly staff meeting. Eager to make a good first impression, I took a seat at the large, crowded conference table, opened my notebook, and started to take notes. https://www.akamai.com/blog/security/out-of-my-depth-where-i-belong Guest Blogger https://www.akamai.com/blog/security/out-of-my-depth-where-i-belong Fri, 19 Feb 2021 05:00:00 UTC Our Role in Inclusion, Diversity, and Engagement The work of creating the most inclusive and diverse organization is never-ending. While that may seem daunting to some, I see it as exhilarating. Sure, I say that from the perspective of VP! But at Akamai, Inclusion, Diversity, & Engagement (ID&E) is a set of habits that belong to us all, and it's a commitment we should proudly share. https://www.akamai.com/blog/culture/our-role-in-inclusion-diversity-engagement-by-khalil-smith Khalil Smith https://www.akamai.com/blog/culture/our-role-in-inclusion-diversity-engagement-by-khalil-smith Thu, 18 Feb 2021 05:00:00 UTC Can Edge Computing Exist Without the Edge? Part 3: The Economics of Edge Computing Do the math. For the past decade, digital businesses have been investing in digital transformation initiatives. The promise is to increase top-line growth while maximizing customer lifetime value. As infrastructure improves, IT spending is shifting from the cloud to the edge. But while edge computing makes headlines, can you expect a meaningful return? https://www.akamai.com/blog/edge/can-edge-computing-exist-without-the-edge-part-3-the-economics-of-edge-computing Ari Weil https://www.akamai.com/blog/edge/can-edge-computing-exist-without-the-edge-part-3-the-economics-of-edge-computing Thu, 18 Feb 2021 05:00:00 UTC Massive Campaign Targeting UK Banks Bypassing 2FA On 14 July, 2020, Oliver Hough, a security researcher from Cyjax, published a report centered on a phishing campaign targeting banking customers in the United Kingdom, which evades two-factor authentication (2FA). https://www.akamai.com/blog/security/massive-campaign-targeting-uk-banks-bypassing-2fa Or Katz https://www.akamai.com/blog/security/massive-campaign-targeting-uk-banks-bypassing-2fa Thu, 18 Feb 2021 05:00:00 UTC SolarWinds Hack and the Case of DNS Security It's not news that some of the top government agencies and companies in the world were victims of the SolarWinds attack. At this point, I can say it's the reason I didn't have a smoother transition back into work-life following a long vacation. As I understand it, the breaches happened after malicious code was inserted into a software patch that was downloaded by the companies and agencies. The installation of the patch executed malicious code, called SUNBURST, which created an entry point for other malicious codes (TEARDROP/RAINDROP). These additional codes were used to allow attackers to move laterally within the network and exfiltrate sensitive customer information to a public command and control server. https://www.akamai.com/blog/security/solarwinds-hack-and-the-case-of-dns-security Chinedu Egonu https://www.akamai.com/blog/security/solarwinds-hack-and-the-case-of-dns-security Tue, 16 Feb 2021 05:00:00 UTC Credential Stuffing and Account Takeover -- The Business View Account takeovers (ATOs), in which criminals impersonate legitimate account owners in order to take control of an account, cause tremendous pain for businesses in all industries. This pain may be monetary, such as losses from stolen accounts, but may also include a number of related problems, like regulatory and legal issues, lost customers, and the inability to gain new consumers due to a lack of trust. Losses from ATOs and new account fraud are estimated at more than $10 billion annually in the United States alone. https://www.akamai.com/blog/security/credential-stuffing-and-account-takeovers-the-business-view Christine Ferrusi Ross https://www.akamai.com/blog/security/credential-stuffing-and-account-takeovers-the-business-view Thu, 11 Feb 2021 05:00:00 UTC NHS Vaccine Scams: Criminals Still Targeting COVID-19 Anxiety It's 2021, but the anxiety, fear, uncertainty, and stress caused by the COVID-19 pandemic in 2020 is very much alive today. https://www.akamai.com/blog/security/nhs-vaccine-scams-criminals-still-targeting-covid-19-anxiety Steve Ragan https://www.akamai.com/blog/security/nhs-vaccine-scams-criminals-still-targeting-covid-19-anxiety Thu, 11 Feb 2021 05:00:00 UTC IPCDump – Guardicore’s New Open-Source Tool for Linux IPC Inspection IPCdump allows software based firewall developers, researchers, and linux users to explore the Inter-process-communication (IPC) channels. https://www.akamai.com/blog/security/ipcdump-guardicores-new-open-source-tool-for-linux-ipc-inspection JJ Lehmann https://www.akamai.com/blog/security/ipcdump-guardicores-new-open-source-tool-for-linux-ipc-inspection Wed, 10 Feb 2021 14:00:00 UTC Gambling, Social Media, and 10 Years of Streaming the 'Big Game' Thanks to the unique perspectives we have via the Akamai Intelligent Edge Platform, we're able to observe massive amounts of web traffic and data that provide insights across the various industries Akamai serves. In the wake of Super Bowl LV, we're sharing some observations on gambling traffic and social media activity, two categories that are complementary to the game. We'll also look at how online viewing has increased over the past 10 years of live streaming the https://www.akamai.com/blog/performance/gambling-social-media-and-ten-years-of-super-bowl-streaming Chris Nicholson https://www.akamai.com/blog/performance/gambling-social-media-and-ten-years-of-super-bowl-streaming Wed, 10 Feb 2021 05:00:00 UTC Optimizing for Performance, One Hire at a Time: Part 1 It's a lot of fun to imagine and design the best team. As managers, it's rare that we get to build a team from the ground up and all at once. https://www.akamai.com/blog/security/optimizing-for-performance-one-hire-at-a-time-part-1 Kathryn Kun https://www.akamai.com/blog/security/optimizing-for-performance-one-hire-at-a-time-part-1 Wed, 10 Feb 2021 05:00:00 UTC Krakow Internship The beginning of a new year is a time to look back and reflect on the previous one. December 31st is also the end date of our annual Krakow Internship Program. https://www.akamai.com/blog/culture/krakow-internship Akamai https://www.akamai.com/blog/culture/krakow-internship Tue, 09 Feb 2021 05:00:00 UTC Holiday Season Phishing Attacks on the Rise Phishing continues to be a major attack vector, and it's surprising just how many security incidents and breaches start with an employee clicking on a link in a carefully crafted phishing email (and sometimes doing the same with a not-so-well crafted phishing email -- see this example). https://www.akamai.com/blog/security/phishing-holiday-season-attacks-on-the-rise Jim Black https://www.akamai.com/blog/security/phishing-holiday-season-attacks-on-the-rise Tue, 09 Feb 2021 05:00:00 UTC Command Injection on a D-Link Router During the COVID-19 pandemic, I wanted to extend the local WiFi in my home to reach all the floors. The goal was to have full connectivity from every location in the house. https://www.akamai.com/blog/security/command-injection-on-a-d-link-router Assaf Vilmovski https://www.akamai.com/blog/security/command-injection-on-a-d-link-router Tue, 09 Feb 2021 05:00:00 UTC Inspiring the Next Generation with DigiGirlz DigiGirlz is an initiative organized by Microsoft to engage girls in technological education and careers. The initiative, which launched in 2000, consists of two main programs: DigiGirlz Day and High Tech Camp. This program has been a cornerstone of Microsoft's community engagement for more than 20 years, but this year the events were in jeopardy of being cancelled because of the pandemic. So, what do you do when your passion for helping others meets a challenge? You do what Microsoft does so well -- you innovate! https://www.akamai.com/blog/culture/inspiring-the-next-generation-with-digigirlz Courtney Hadden https://www.akamai.com/blog/culture/inspiring-the-next-generation-with-digigirlz Mon, 08 Feb 2021 05:00:00 UTC Edge Redirector Cloudlet Gets Faster Cloudlets Policy Manager often takes a long time to load, which is a by-product of its original design where every policy activation is an individual file. These files must be moved around the network, and as you might imagine, transferring thousands of files in a multi-tenant network can take a very long time. Add a synchronous API to this problem, and we quickly get into a situation where the Policy Manager UI can freeze until a back-end transfer operation times out. https://www.akamai.com/blog/performance/edge-redirector-cloudlet-gets-faster Jeffrey Costa https://www.akamai.com/blog/performance/edge-redirector-cloudlet-gets-faster Mon, 08 Feb 2021 05:00:00 UTC Akamai + Fingerbank: How an open source community can transform security Isn't it amazing how seemingly simple decisions can have far-reaching effects? When the Inverse team in Montreal took over PacketFence in 2008, it was an open source (OS) solution. https://www.akamai.com/blog/news/akamai-fingerbank-how-an-open-source-community-can-transform-security Charlie Gero https://www.akamai.com/blog/news/akamai-fingerbank-how-an-open-source-community-can-transform-security Mon, 01 Feb 2021 05:00:00 UTC The Importance of Education in Furthering the Sustainability Agenda Author: Mark Porter, Director, Supply Chain & International Collaboration, Renewable Energy Buyers Alliance (REBA) Mark Porter moved to REBA from Rocky Mountain Institute's Business Renewables Center (BRC) initiative in March 2019. Mark continues to support the BRC initiative across all areas and grow REBA's membership. He is developing initiatives to support supply chain engagement and international collaboration between NGOs acting in this space worldwide. https://www.akamai.com/blog/culture/the-importance-of-education-in-furthering-the-sustainability-agenda Mark Porter https://www.akamai.com/blog/culture/the-importance-of-education-in-furthering-the-sustainability-agenda Fri, 29 Jan 2021 05:00:00 UTC Sustainability Requires Collaboration: Akamai's Growing Community and Supply Chain Initiatives Akamai is committed to collaboration that inspires worldwide change. We know it's not enough to be environmentally conscious solely in our own business. To make a true impact on climate change, we need to use our unique position as a global corporation to encourage our partners to join us in taking sustainable action, participating in community improvement projects, and engaging in climate education. We need to consider the question: https://www.akamai.com/blog/culture/sustainability-requires-collaboration-akamais-growing-community-and-supply-chain-initiatives Courtney Hadden https://www.akamai.com/blog/culture/sustainability-requires-collaboration-akamais-growing-community-and-supply-chain-initiatives Fri, 29 Jan 2021 05:00:00 UTC Our ESG Commitment: Investing in a Better World Environmental, social, and governance (ESG) issues are quickly emerging as a key concern for investors. To use a musical analogy, the bow is just resting on the first string, with more notes sure to follow. At Akamai, our ESG instrument is well tuned and ready for the symphony to come, as evidenced by our 2020 Sustainability Report released this week. https://www.akamai.com/blog/culture/our-esg-commitment-investing-in-a-better-world Aaron Ahola https://www.akamai.com/blog/culture/our-esg-commitment-investing-in-a-better-world Thu, 28 Jan 2021 05:00:00 UTC Distinguishing Among DNS Services Part 3: Investment and Innovation This is Part 3 of a 3-part blog series highlighting some of the distinguishing aspects of Akamai's authoritative DNS services, Edge DNS and Global Traffic Management. Part 1 focused on Akamai's DNS platform and what sets it apart. Part 2... https://www.akamai.com/blog/performance/distinguishing-among-dns-services-part-3-investment-and-innovation Jonathan Zarkower https://www.akamai.com/blog/performance/distinguishing-among-dns-services-part-3-investment-and-innovation Thu, 28 Jan 2021 05:00:00 UTC Working Together with Our Customers to Build a Sustainable Future By now, we hope you've read Monday's and Tuesday's blog posts announcing the release of our annual sustainability report, our sustainability program, and the technical innovation behind it. https://www.akamai.com/blog/culture/working-together-with-our-customers-to-build-a-sustainable-future Natalie Billingham https://www.akamai.com/blog/culture/working-together-with-our-customers-to-build-a-sustainable-future Wed, 27 Jan 2021 05:00:00 UTC When Destiny is Knocking on Your Door Again - Data Mining CDN Logs to Refine and Optimize Web Attack Detection A few years ago, I wrote a blog post trying to explain, with humor, why choosing application security as a career path is destiny derived by my parents calling me "Or", and why a personal name that is a conditional word can sometimes be challenging in daily routines, since some attack payloads contain conditional words. https://www.akamai.com/blog/security/when-destiny-is-knocking-on-your-door-again-data-mining-cdn-logs Or Katz https://www.akamai.com/blog/security/when-destiny-is-knocking-on-your-door-again-data-mining-cdn-logs Wed, 27 Jan 2021 05:00:00 UTC Maintaining an Energy-Efficient Edge Platform Over the past 20 years, we've seen a lot of growth at Akamai. When I started at Akamai, we used to have traffic peaks of almost 200 Mbps. From that fledgling startup, Akamai has now grown to such a scale that we almost doubled network capacity in 2020 and were able to serve peaks of almost 200 Tbps. In short, just like the internet, Akamai has undergone quite the evolution. But as we've grown, so have our environmental impacts. In fact, the internet as a whole is responsible for more than 2% of global emissions, having the same impact as the airline industry. Our online streaming, learning, working, shopping, and playing habits have all started to add up. https://www.akamai.com/blog/culture/maintaining-an-energy-efficient-edge-platform Vinay Kanitkar https://www.akamai.com/blog/culture/maintaining-an-energy-efficient-edge-platform Tue, 26 Jan 2021 05:00:00 UTC Stacking CDNs for Improved Performance and Security I recently worked with a client whose large e-commerce site was hosted with a popular cloud-based commerce solution. Its business was growing rapidly into new geographic markets, and it was not satisfied with the embedded content delivery network (eCDN) that was bundled with the cloud solution. We demonstrated that stacking CDNs -- adding Akamai's Ion solution on top of the eCDN -- could significantly improve performance as well as provide the client with much greater control over its delivery configuration https://www.akamai.com/blog/performance/stacking-cdns-for-improved-performance-and-security Simon Hearne https://www.akamai.com/blog/performance/stacking-cdns-for-improved-performance-and-security Tue, 26 Jan 2021 05:00:00 UTC Retrospective 2020: DDoS Risk Higher Than Ever Never before has the risk of a distributed denial-of-service (DDoS) attack been higher. In 2020, we saw record-breaking attacks, a DDoS extortion campaign impacting thousands of organizations globally, more emergency customer turnups, and more Akamai customers attacked than any year on record -- and we've been successfully fighting DDoS attacks since 2003! We also saw a big increase in attacks targeting verticals that haven't seen as much activity of late, with 7 of 11 of the industries we track seeing peak attack counts in 2020. https://www.akamai.com/blog/security/part-i-retrospective-2020-ddos-was-back-bigger-and-badder-than-ever-before Tom Emmons https://www.akamai.com/blog/security/part-i-retrospective-2020-ddos-was-back-bigger-and-badder-than-ever-before Tue, 26 Jan 2021 05:00:00 UTC How Client-Side Protection & Compliance Detects Real-World Magecart Attacks In this blog, we will take a look at and break down a recent Magecart attack detected and mitigated by Client-Side Protection & Compliance. The impacted customer operates a large international e-commerce business in which one of its websites was compromised with a malicious script. https://www.akamai.com/blog/security/how-page-integrity-manager-detects-real-world-magecart-attacks Ziv Eli https://www.akamai.com/blog/security/how-page-integrity-manager-detects-real-world-magecart-attacks Tue, 26 Jan 2021 05:00:00 UTC Minecraft Players are Targets Even Off the Network When we write the SOTI and talk about attacks against gamers, we spend a good deal of time focusing on network-level events, such as DDoS and credential stuffing. https://www.akamai.com/blog/security/minecraft-players-are-targets-even-off-the-network Steve Ragan https://www.akamai.com/blog/security/minecraft-players-are-targets-even-off-the-network Tue, 26 Jan 2021 05:00:00 UTC What happens when your vulnerability is weaponized for botnet proliferation This post will focus on the weaponization of a few of the exploits only, as Sarit and Ofir documented everything else. https://www.akamai.com/blog/security/what-happens-when-your-vulnerability-is-weaponized-for-botnet-proliferation Larry Cashdollar https://www.akamai.com/blog/security/what-happens-when-your-vulnerability-is-weaponized-for-botnet-proliferation Tue, 26 Jan 2021 05:00:00 UTC Sustainability at Akamai: An Efficient Platform Powered by Energy Aggregation If I had a dollar for every time I heard “unprecedented” in 2020, I could fund a clean energy project myself. And while we're tired of hearing this term, it's true amid the pandemic, U.S. presidential election, social justice movements, finalization of Brexit, and many other new and life-changing events that took place this past year. https://www.akamai.com/blog/culture/sustainability-at-akamai-an-efficient-platform-powered-by-energy-aggregation Mike Mattera https://www.akamai.com/blog/culture/sustainability-at-akamai-an-efficient-platform-powered-by-energy-aggregation Mon, 25 Jan 2021 05:00:00 UTC Congratulations to 2020 Akamai Partners of the Year Last year proved to be a year like no other. We faced unforeseen challenges, including adjusting to a new way of working, collaborating, and conducting business. It is an honor for me to announce the Akamai Partners of the Year for 2020 who went above and beyond in this tumultuous year. These awards recognize Akamai Partner Program (APP) partners that consistently delivered significant sales successes, innovative solution partnerships, and unequaled service levels as they adapted to the new norm of digital transformation. https://www.akamai.com/blog/partners/2021/jan/congratulations-to-2020-akamai-partners-of-the-year Micheal McCollough https://www.akamai.com/blog/partners/2021/jan/congratulations-to-2020-akamai-partners-of-the-year Mon, 25 Jan 2021 05:00:00 UTC Streaming Traffic Peaks During Biden Inauguration Live news streaming traffic during the Biden inauguration ceremony on January 20 peaked at 12 Tbps on the Akamai Intelligent Edge Platform. The peak, which occurred as now-President Biden was taking the oath of office just before 12 PM ET, is roughly 8x higher than what we typically see for mid-day traffic on a weekday. However, it's still less than the 18 Tbps we observed during 2020 election night on November 3. https://www.akamai.com/blog/performance/streaming-traffic-peaks-during-biden-inauguration Harish Menon https://www.akamai.com/blog/performance/streaming-traffic-peaks-during-biden-inauguration Fri, 22 Jan 2021 05:00:00 UTC A Place To Belong While I've worked for Silicon Valley-based startups and even spent time in the travel tech industry, I'd sometimes feel I was just part of the system. Working each day to earn my keep, and with no bigger purpose than that. https://www.akamai.com/blog/culture/a-place-to-belong-by-sheng-thong-hsin Thong Hsin Sheng https://www.akamai.com/blog/culture/a-place-to-belong-by-sheng-thong-hsin Wed, 20 Jan 2021 05:00:00 UTC Games Drive Christmas Web Traffic If you turned on a new game console and/or downloaded video games over the holidays, you certainly weren't alone. New data from Akamai shows that game-related traffic delivered across our network was more than double the Q4 average on December 25, and up nearly 50% on December 26. During the same period, traffic for all other industries combined was relatively even compared to the rest of the quarter. https://www.akamai.com/blog/performance/games-drive-christmas-web-traffic Jonathan Singer https://www.akamai.com/blog/performance/games-drive-christmas-web-traffic Wed, 20 Jan 2021 05:00:00 UTC 5 Surprising Cybersecurity Features of Guardicore Centra Check out these features around segmentation and visibility that can help working with Guardicore Centra even simpler. https://www.akamai.com/blog/security/5-things-you-didnt-know-you-could-do-with-guardicore-centra Guardicore Labs Team https://www.akamai.com/blog/security/5-things-you-didnt-know-you-could-do-with-guardicore-centra Tue, 19 Jan 2021 21:15:00 UTC Guardicore Insight: Adding Best-in-Class Osquery Visibility to Secure Your Workloads What if you had a single solution that was able to detect non-compliant and high-risk endpoints and servers, assess their level of exposure, and then immediately secure these servers and endpoints with laser-sharp segmentation policies? https://www.akamai.com/blog/security/guardicore-insight-adding-best-in-class-osquery-visibility-to-secure-your-workloads Guardicore Labs Team https://www.akamai.com/blog/security/guardicore-insight-adding-best-in-class-osquery-visibility-to-secure-your-workloads Tue, 19 Jan 2021 15:59:00 UTC Internalship Program In today's workplace, the landscape is a fast-paced, competitive environment, and today's employees are frequently on the hunt for growth opportunities. https://www.akamai.com/blog/culture/internalship-program-by-kurian-thomas Kurian Thomas https://www.akamai.com/blog/culture/internalship-program-by-kurian-thomas Wed, 13 Jan 2021 05:00:00 UTC Emotet: A Year in the Life of a Malware Emotet malware has been around since 2014, but 2020 saw a resurgence of attacks. In September 2020, Emotet affected 14% of organizations worldwide. So, what is Emotet? And why is it so dangerous? https://www.akamai.com/blog/security/emotet-a-year-in-the-life-of-a-malware Jim Black https://www.akamai.com/blog/security/emotet-a-year-in-the-life-of-a-malware Tue, 12 Jan 2021 05:00:00 UTC Building a Cross Team Culture At Akamai, we all contribute to our diverse, inclusive, and engaged culture. One in which we each have a voice and are empowered to have a meaningful impact on our business and its direction. It's by fostering this culture across teams that we're able to achieve the company's guiding principles. For all of us, it means putting our clients, employees and communities front and center in our daily work. https://www.akamai.com/blog/culture/building-a-cross-team-culture-by-rick-mcconnell Rick McConnell https://www.akamai.com/blog/culture/building-a-cross-team-culture-by-rick-mcconnell Fri, 08 Jan 2021 05:00:00 UTC Tree-Tracker: Auditing a Log Harvest Using IoT Edge Connect and Node-Red At long last, Blue Water Farm is generating revenue! Around 20 acres of our land consists of dense, mature hardwood of oak, maple, and beech, and we were able to contract to sell 65 maple and 25 oak trees to a logging company. I won't be retiring from Akamai any time soon from our logging windfall, but it's nice to see some revenue from our land, and clearing mature trees is a part of good responsible forest management. https://www.akamai.com/blog/edge/tree-tracker-auditing-a-log-harvest-using-iot-edge-connect-and-node-red Brian Apley https://www.akamai.com/blog/edge/tree-tracker-auditing-a-log-harvest-using-iot-edge-connect-and-node-red Tue, 05 Jan 2021 05:00:00 UTC Keeping Emissions in Check During Unprecedented Internet Use As I reflect on 2020 and the way in which the pandemic affected the business world, what stands out to me is the incredible increase in streaming content consumed on the internet. We've seen launches of some of the highest-profile streaming services to date between late 2019 and 2020. People are continuously streaming content and we need to consider the impact that increased viewership is having on the world. When you sit down to catch a movie or binge watch that latest series, do you consider the effect that streamed content has on the rest of the world? We will continue to see an uptick in carbon emissions from the power required to serve online content: servers, network hardware, and the energy needed to keep it all cool. https://www.akamai.com/blog/news/keeping-emissions-in-check-during-unprecedented-internet-use Mike Mattera https://www.akamai.com/blog/news/keeping-emissions-in-check-during-unprecedented-internet-use Tue, 05 Jan 2021 05:00:00 UTC Akamai's Technical Enablement and Education Team, Part of the Global Services and Support Organization, Wins 2020 Chief Learning Officer Magazine Gold Award On October 2020, the Akamai Technical Enablement and Education (TE&E) Team -- responsible for creating product-training certifications for employees (Global Services and Support [GSS]), customers (Akamai University), and channel partners (Advanced Partner Enablement) -- won its second industry award for program design, functionality, and impact. https://www.akamai.com/blog/news/akamais-technical-enablement-and-education-team-part-of-the-global-services-and-support-organization-1 Andrew Heifetz https://www.akamai.com/blog/news/akamais-technical-enablement-and-education-team-part-of-the-global-services-and-support-organization-1 Wed, 30 Dec 2020 05:00:00 UTC Akamai Prolexic and Equinix Cloud Exchange Bring DDoS Defense Closer to the Origin In terms of cyberthreats and digital risk, 2020 has been all about distributed denial-of-service (DDoS) attacks. https://www.akamai.com/blog/security/akamai-prolexic-and-equinix-cloud-exchange-unite-bringing-ddos-defense-closer-to-the-customer-origin Greg Burns https://www.akamai.com/blog/security/akamai-prolexic-and-equinix-cloud-exchange-unite-bringing-ddos-defense-closer-to-the-customer-origin Tue, 29 Dec 2020 05:00:00 UTC Smart DNS: Emerging Requirements for DNS Encryption This blog post -- the fourth in a series -- will discuss how smart DNS resolvers can enhance ongoing ISP and MNO network transformation efforts, such as the transition to 5G, better integration of Wi-Fi, and new network designs that optimize the edge to improve service delivery and network efficiency. https://www.akamai.com/blog/edge/smart-dns-for-the-new-network-edge-emerging-requirements-for-dns-encryption Bruce Van Nice https://www.akamai.com/blog/edge/smart-dns-for-the-new-network-edge-emerging-requirements-for-dns-encryption Mon, 28 Dec 2020 05:00:00 UTC Research & Academic We introduce a novel machine learning approach that uses network flows to generate application-level representation of public and private cloud networks. This will greatly simplify the journey to a micro-segmented network. https://www.akamai.com/blog/security/research-academic Akamai https://www.akamai.com/blog/security/research-academic Wed, 23 Dec 2020 14:00:00 UTC Launching a New Game Studio and Planning for Growth So, you're starting your own game studio. This is an incredible opportunity! You and your team get to start fresh and build the game of your dreams! But, let's be honest, if you have just founded your own game studio, odds are that you're not a technical architect. You may have some technical know-how, but studio founders typically come from the creative side. https://www.akamai.com/blog/performance/launching-a-new-game-studio-and-planning-for-growth Jonathan Singer https://www.akamai.com/blog/performance/launching-a-new-game-studio-and-planning-for-growth Wed, 23 Dec 2020 05:00:00 UTC How the Edge Improves Microservices Microservice architecture has transformed the way we develop and operate our applications. Microservices aren't a technology or a programming language. Instead, they create a structure for designing and building applications based on the idea that the individual functions of a website should operate independently. From this simple concept comes a multitude of benefits including: https://www.akamai.com/blog/edge/how-the-edge-improves-microservices Pavel Despot https://www.akamai.com/blog/edge/how-the-edge-improves-microservices Tue, 22 Dec 2020 05:00:00 UTC Smart DNS for the New Network: Optimizing Content Delivery The presence of public "over the top" DNS resolution alternatives is a strong motivator for ISPs to invest in making their DNS resolution infrastructure the best that it can be. Resolvers are the glue that binds subscribers to their fixed and mobile broadband services. Operators of public DNS services will play a significant role in controlling the user experience and gain goodwill if they succeed in persuading subscribers to use their resolvers. Worse, when public DNS services fail, it's probable that subscribers will blame their service provider because they may not understand the critical role DNS plays, or may not even remember they switched their DNS settings! https://www.akamai.com/blog/security/smart-dns-for-the-new-network-optimizing-content-delivery Bruce Van Nice https://www.akamai.com/blog/security/smart-dns-for-the-new-network-optimizing-content-delivery Thu, 17 Dec 2020 05:00:00 UTC Stopping Active Attacks with Penalty Box Unfortunately, today's sophisticated web application threats have gained some advantages over typical WAFs: Favorable odds -- WAFs must correctly identify attacks 100% of the time, whereas attackers have the luxury of only needing to find a single bypass or evasion Temporary fixes -- Many WAFs use a "whack-a-mole" response tactic by only denying the individual attack request, allowing the attacker to make repeated attempts Persistence -- If left unimpeded, attackers may eventually find some type of payload obfuscation that minimizes detection effectiveness The confluence of these advantages should concern WAF customers. Let's take a closer look at the typical web attacker methodology to see why. https://www.akamai.com/blog/security/penalty-box Ryan Barnett https://www.akamai.com/blog/security/penalty-box Tue, 15 Dec 2020 19:26:00 UTC Smart DNS: Delivering the Best Subscriber Experience The presence of public "over-the-top" DNS resolution alternatives is a strong motivator for internet service providers (ISPs) to invest in making their DNS resolution infrastructure the best that it can be. Resolvers are the glue that binds subscribers to their fixed and mobile broadband services. https://www.akamai.com/blog/performance/smart-dns-delivering-the-best-subscriber-experience Bruce Van Nice https://www.akamai.com/blog/performance/smart-dns-delivering-the-best-subscriber-experience Thu, 10 Dec 2020 05:00:00 UTC Cyberweek 2020 Attracted Both Online Shoppers and DDoS Attackers 2020 has shown both record-busting bps and pps attacks and the most prolific DDoS extortion campaign recorded by Akamai. https://www.akamai.com/blog/security/cyberweek-2020-attracted-both-online-shoppers-and-ddos-attackers Tom Emmons https://www.akamai.com/blog/security/cyberweek-2020-attracted-both-online-shoppers-and-ddos-attackers Wed, 09 Dec 2020 16:03:00 UTC Evading Link Scanning Security Services with Passive Fingerprinting By Gal Bitensky, Executive Summary Link scanners are a critical component in multiple classes of security products including email security suites, websites that suggest direct inspection of a suspicious link, and others. Behind the scenes, these services use web clients... https://www.akamai.com/blog/security/evading-link-scanning-security-services-with-passive-fingerprinting Gal Bitensky https://www.akamai.com/blog/security/evading-link-scanning-security-services-with-passive-fingerprinting Wed, 09 Dec 2020 05:00:00 UTC Can Edge Computing Exist Without the Edge? Part 2: Edge Computing In part 1 of this series, I drew the architectural distinction between a centralized cloud platform and a distributed edge network. This is an important foundation upon which to explain the difference between cloud computing and edge computing. The two serve very different and complementary purposes. However, in my experience, business leaders, product owners, and application developers often mistake them as competitive. https://www.akamai.com/blog/edge/can-edge-computing-exist-without-the-edge-part-2-edge-computing Ari Weil https://www.akamai.com/blog/edge/can-edge-computing-exist-without-the-edge-part-2-edge-computing Tue, 08 Dec 2020 05:00:00 UTC Phishing Summary 2020—Trends and Highlights 2020 was a challenging year for many of us, as the COVID-19 pandemic disrupted life and introduced challenges in almost all elements of living. 2020 was also challenging from a cybersecurity point of view, as nearly the entire workforce moved... https://www.akamai.com/blog/security/phishing-summary-2020-trends-and-highlights Or Katz https://www.akamai.com/blog/security/phishing-summary-2020-trends-and-highlights Tue, 08 Dec 2020 05:00:00 UTC Distinguishing Among DNS Services Part 2: The Economics This is Part 2 of a three-part blog series highlighting some of the distinguishing aspects of Akamai's Domain Name System (DNS) services, Edge DNS and Global Traffic Management. https://www.akamai.com/blog/trends/distinguishing-among-dns-services-part-2-the-economics Jonathan Zarkower https://www.akamai.com/blog/trends/distinguishing-among-dns-services-part-2-the-economics Mon, 07 Dec 2020 05:00:00 UTC Distinguishing Among DNS Services Part 2: The Economics This is Part 2 of a 3-part blog series highlighting some of the distinguishing aspects of Akamai's DNS services, Edge DNS and Global Traffic Management. https://www.akamai.com/blog/trends/digital-transformation-distinguishing-among-dns-services-part-2 Jonathan Zarkower https://www.akamai.com/blog/trends/digital-transformation-distinguishing-among-dns-services-part-2 Mon, 07 Dec 2020 05:00:00 UTC Distinguishing Among DNS Services Part 1: The Platform This is Part 1 of a 3-part blog series highlighting some of the distinguishing aspects of Akamai's DNS services, Edge DNS and Global Traffic Management. https://www.akamai.com/blog/trends/distinguishing-among-dns-services-part-1-the-platform Jonathan Zarkower https://www.akamai.com/blog/trends/distinguishing-among-dns-services-part-1-the-platform Mon, 30 Nov 2020 05:00:00 UTC Using LL-HLS with Byte-Range Addressing to Achieve Interoperability in Low Latency Streaming HTTP Adaptive Segmented (HAS) streaming began to be used at scale from 2008 to 2012, with the advent of Move Networks, Microsoft Smooth Streaming, Apple HLS, Adobe HDS, and MPEG DASH. With the typical 10s segment durations of the day, livestream latencies (measuring latency as the time from an action being filmed to that same action being displayed on a device's screen) remained in the 30s to 60s range, trailing broadcast by a significant degree. https://www.akamai.com/blog/performance/-using-ll-hls-with-byte-range-addressing-to-achieve-interoperabi Will Law https://www.akamai.com/blog/performance/-using-ll-hls-with-byte-range-addressing-to-achieve-interoperabi Mon, 23 Nov 2020 08:00:00 UTC Don't Let DDoS Extortionists Deliver a KO Punch Since mid-August, a variety of threat actors (and copycats alike) have been targeting organizations across all industries globally, threatening impending DDoS attacks unless Bitcoin is paid out. It's apparent, as the campaign rages on, that some businesses must be paying the extortion demands, -- incentivizing the criminal activity. Others are procuring emergency DDoS defenses in order to withstand bandwidth-busting attacks and keep internet-facing infrastructure protected. As highlighted in our last blog, we've been busy ramping customers on to our DDoS mitigation platforms for rapid protection before the threat actors strike again. And based on recent activity, they desire a rematch. https://www.akamai.com/blog/security/don-t-let-ddos-extortionists-deliver-a-ko-punch Susan McReynolds https://www.akamai.com/blog/security/don-t-let-ddos-extortionists-deliver-a-ko-punch Fri, 20 Nov 2020 19:14:00 UTC WordPress Malware Setting Up SEO Shops While recently looking over my honeypots, I discovered an infection where a malicious actor added a storefront on top of my existing WordPress installation. For background, this particular honeypot is a full instance of WordPress running on a Docker image.... https://www.akamai.com/blog/security/wordpress-malware-setting-up-seo-shops Larry Cashdollar https://www.akamai.com/blog/security/wordpress-malware-setting-up-seo-shops Fri, 20 Nov 2020 05:00:00 UTC Toward Inclusive Language in Software https://www.akamai.com/blog/culture/toward-inclusive-language-in-software Erik Nygren https://www.akamai.com/blog/culture/toward-inclusive-language-in-software Wed, 18 Nov 2020 17:30:00 UTC The dangers of firewall misconfigurations https://www.akamai.com/blog/security/the-dangers-of-firewall-misconfigurations-and-how-to-avoid-them Dave Burton https://www.akamai.com/blog/security/the-dangers-of-firewall-misconfigurations-and-how-to-avoid-them Mon, 16 Nov 2020 20:27:00 UTC Safeguard Identity Data at the Source When your customers create an account on your website or application, they are entrusting their valuable information with you in order to establish a relationship. To maintain that relationship, they need to have faith that you will protect their information. https://www.akamai.com/blog/security/safeguard-identity-data-at-the-source Megan Freshley https://www.akamai.com/blog/security/safeguard-identity-data-at-the-source Mon, 16 Nov 2020 14:00:00 UTC Akamai Wellness in APJ Creating the world's best and most secure digital experience demands the very best industry talent. But as a responsible employer, we also understand how important it is to play our part in looking after those brilliant minds. https://www.akamai.com/blog/culture/akamai-wellness-in-apj Lily Nguyen https://www.akamai.com/blog/culture/akamai-wellness-in-apj Fri, 13 Nov 2020 05:00:00 UTC Redundant, Secure, and Open Short Domains: A Vision for Multi-Provider Apex Domain Aliases to Enable DNS Diversity Human nature is to seek simpler and convenient ways to do things. One example is the sometimes onerous task of typing a URL into a web browser's address bar. Since users prefer short, easy-to-remember URLs, an internet trend is to use short domains for websites (e.g., edgedns.zone). With short website names, users benefit from the convenience of fewer characters to remember and type. https://www.akamai.com/blog/security/redundant--secure--and-open-short-domains--a-vision-for-multi-pr Jim Gilbert https://www.akamai.com/blog/security/redundant--secure--and-open-short-domains--a-vision-for-multi-pr Wed, 11 Nov 2020 16:44:00 UTC A New Skimmer Uses WebSockets and a Fake Credit Card Form to Steal Sensitive Data A new skimmer attack was discovered this week, targeting various online e-commerce sites built with different frameworks. As I write this blog post, the attack is still active and exfiltrating data. https://www.akamai.com/blog/security/a-new-skimmer-uses-websockets-and-a-fake-credit-card-form-to-steal-sensitive-data Gal Meiri https://www.akamai.com/blog/security/a-new-skimmer-uses-websockets-and-a-fake-credit-card-form-to-steal-sensitive-data Tue, 10 Nov 2020 05:00:00 UTC My Path to Akamai Three years ago, I graduated with a bachelor's degree in Electronic Engineering (Mechatronic) from University Tun Hussein Onn Malaysia. I was to be an engineer in the oil and gas industry - but the universe had a better plan for me. Instead, I stepped into IT, providing Technical Support despite my lack of knowledge. I was struggling! But it was there that I found my passion. https://www.akamai.com/blog/culture/my-path-to-akamai-by-amirah-zahidah-binti-onn Amirah Zahidah binti Onn https://www.akamai.com/blog/culture/my-path-to-akamai-by-amirah-zahidah-binti-onn Thu, 05 Nov 2020 08:00:00 UTC Phishing JavaScript Obfuscation Techniques Soars In our previous blogs, first where we explained JavaScript Obfuscation techniques and introduced a detailed overview on how JavaScript is being used to obfuscate page content to make phishing attacks and other web scams as evasive as possible; followed by one where we took a deep dive to examine double JavaScript obfuscation techniques, presenting a tale of an obfuscated scam seen in the wild and showing how the same phishing campaign is using numerous obfuscation techniques in an attempt to remain hidden. https://www.akamai.com/blog/security/phishing-javascript-obfuscation-techniques-soars Or Katz https://www.akamai.com/blog/security/phishing-javascript-obfuscation-techniques-soars Fri, 30 Oct 2020 07:00:00 UTC Onboarding During A Pandemic: Can It Really Work? New Joiner, Lily Nguyen, Shares Her Experience. I recently joined the Sales Development APAC team, looking after the Vietnam, Thailand and Hong Kong markets. I'd already had a great impression of Akamai's culture from my interview rounds. But how would the onboarding work? I'd been looking forward to meeting new colleagues in an office environment. I wanted to feel part of a new team; that sense of collaboration you get from personal interaction. Instead, I only got to meet our IT guy outside the office who presented me with my MacBook Pro. https://www.akamai.com/blog/culture/onboarding-during-a-pandemic-can-it-really-work-new-joiner-lily-nguyen Akamai https://www.akamai.com/blog/culture/onboarding-during-a-pandemic-can-it-really-work-new-joiner-lily-nguyen Fri, 30 Oct 2020 04:00:00 UTC The Tale of Double JavaScript Obfuscated Scam The phishing landscape is constantly evolving. Over the years, it has evolved into a more scalable threat, with an overwhelming amount of campaigns being launched daily. Phishing also changed when criminals started adding more capabilities and features to their toolkits, which make the phishing websites long lived and difficult to detect. https://www.akamai.com/blog/security/the-tale-of-double-javascript-obfuscated-scam Or Katz https://www.akamai.com/blog/security/the-tale-of-double-javascript-obfuscated-scam Thu, 29 Oct 2020 01:02:00 UTC Akamai Edge Cloud: Scaling IoT, Part 2 IoT has tremendous possibilities to transform our world but will fall short of expectations if the underlying infrastructure cannot support the rapid exchange of massive amounts of information from billions of simultaneous and intermittent connections. Akamai Edge Cloud is designed to enable the potential of IoT by utilizing the deep knowledge we've gained operating one of the world's largest edge networks. https://www.akamai.com/blog/developers/akamai-edge-cloud--scaling-iot--part-2 Michael Archer https://www.akamai.com/blog/developers/akamai-edge-cloud--scaling-iot--part-2 Tue, 27 Oct 2020 15:00:00 UTC ATA 8.0 Graduation Ceremony Akamai Technical Academy is a training program designed for people who have an interest and aptitude for technology but may not come from a traditional technical background. Up until now, we have successfully onboarded over 140 incredible people in three Akamai locations: Cambridge (MA, US), San Jose (Costa Rica) and Krakow (Poland). https://www.akamai.com/blog/culture/ata-8-0-graduation-ceremony-by-magda-bukala Magda Bukala https://www.akamai.com/blog/culture/ata-8-0-graduation-ceremony-by-magda-bukala Tue, 27 Oct 2020 07:00:00 UTC 5G, Security, IoT, Asavie, and Akamai Malicious actors never rest and have always worked remotely. That simple realization hit home during recent global events. Specifically, Akamai saw an increase in malware traffic of over 400% between March 9 and May 11, 2020 from corporate devices, most of which were being used outside of a traditional office environment. https://www.akamai.com/blog/news/5g-security-iot-asavie-and-akamai Adam Karon https://www.akamai.com/blog/news/5g-security-iot-asavie-and-akamai Tue, 27 Oct 2020 04:00:00 UTC Catch Me if You Can—JavaScript Obfuscation While conducting threat research on phishing evasion techniques, Akamai came across threat actors using obfuscation and encryption, making the malicious page harder to detect. The criminals were using JavaScript to pull this off.... https://www.akamai.com/blog/security/catch-me-if-you-can-javascript-obfuscation Or Katz https://www.akamai.com/blog/security/catch-me-if-you-can-javascript-obfuscation Mon, 26 Oct 2020 04:00:00 UTC 2020 DDoS Extortion Campaign -- A Sequel More Thrilling Than the Original As the go-to enterprise distributed denial-of-service (DDoS) mitigation experts, our phones have been "ringing off the hook" since the release of the global extortion DDoS campaign sequel. This latest installment of the cybersecurity saga is bigger, badder, and features a broader cast of criminal characters than seen previously with last year's extortion-related activity. https://www.akamai.com/blog/security/2020-ddos-extortion-campaign-a-sequel-more-thrilling-than-the-original Susan McReynolds https://www.akamai.com/blog/security/2020-ddos-extortion-campaign-a-sequel-more-thrilling-than-the-original Tue, 20 Oct 2020 04:00:00 UTC Can Edge Computing Exist Without the Edge? Part 1: The Edge If the title sounds like a trick question, it really depends on who you ask. Semantically, it seems clear that if you take the "edge" and combine it with "computing" you get edge computing. But if you have been reading headlines, you would be justified in having doubts that the answer is that simple. https://www.akamai.com/blog/edge/can-edge-computing-exist-without-the-edge-part-1-the-edge Ari Weil https://www.akamai.com/blog/edge/can-edge-computing-exist-without-the-edge-part-1-the-edge Mon, 19 Oct 2020 04:00:00 UTC DDoS Extortion Examination In terms of the Distributed Denial of Service (DDoS) landscape, 2020 was almost boring prior to the beginning of August. The excitement from the record peak Gbps and Mpps seen in early summer had worn off, and we weren't seeing... https://www.akamai.com/blog/security/ddos-extortion-examination Tom Emmons https://www.akamai.com/blog/security/ddos-extortion-examination Fri, 16 Oct 2020 04:00:00 UTC Why Take It to the Edge Edge computing is the next natural paradigm shift in IT, bringing a new wave of decentralization. Over the past decade, IT has embraced two seemingly juxtaposed trends: the consolidation of infrastructure and data in private, public, or hybrid clouds, and the growing distribution and diversity of devices that access them. How can these trends continue to coexist? The answer is at the edge. https://www.akamai.com/blog/news/why-take-it-to-the-edge Lelah Manz https://www.akamai.com/blog/news/why-take-it-to-the-edge Thu, 15 Oct 2020 04:00:00 UTC What's New in Security (Part 2) Welcome to the Akamai Platform Update! We're presenting an entire week of learning about Akamai's recent product updates. Each day, we'll highlight our latest innovations in each area of the Akamai Intelligent Platform. https://www.akamai.com/blog/security/whats-new-in-security-part-2 Lorenz Jakober https://www.akamai.com/blog/security/whats-new-in-security-part-2 Wed, 14 Oct 2020 04:00:00 UTC Latinex Month and Our Culture Eleven months ago, I joined Akamai as a result of the acquisition of a company I was partner of. The former company was small compared to Akamai, but had operations in several countries in the region, from Argentina to Mexico. In this company, we had been working with Akamai for 17 years, but on November 1, 2019, we officially became a part of the family. https://www.akamai.com/blog/culture/latinex-month-and-our-culture-by-claudio-baumann Akamai https://www.akamai.com/blog/culture/latinex-month-and-our-culture-by-claudio-baumann Tue, 13 Oct 2020 04:00:00 UTC API Discovery and Profiling -- Visibility to Protection APIs have become a dominant mechanism in the modern web, allowing organizations to create powerful web and mobile experiences, while exposing back-end data and logic to create new and innovative offerings. https://www.akamai.com/blog/security/api-discovery-and-profiling-visibility-to-protection Amol Mathur https://www.akamai.com/blog/security/api-discovery-and-profiling-visibility-to-protection Tue, 13 Oct 2020 04:00:00 UTC What's New in Web Security With Akamai's web security portfolio, the top focus this October is on the web application firewall (WAF), with exciting new capabilities: API Discovery and Adaptive Security Profiles. https://www.akamai.com/blog/security/whats-new-in-web-security Renny Shen https://www.akamai.com/blog/security/whats-new-in-web-security Tue, 13 Oct 2020 04:00:00 UTC How to Be Resilient to Data Theft Page Integrity Manager is now PCI compliant -- a strong starting point to harden your web applications https://www.akamai.com/blog/trends/how-to-be-resilient-to-data-theft Gerhard Giese https://www.akamai.com/blog/trends/how-to-be-resilient-to-data-theft Tue, 13 Oct 2020 04:00:00 UTC Visualize Visitor Prioritization in Real Time with mPulse The internet has become one of the most important access points in our daily lives. Unexpected surges in demand can slow web pages and create service outages for unprepared websites. A poor user experience leads to dissatisfied customers, making it more critical than ever to visualize and control online performance. https://www.akamai.com/blog/security/visualize-visitor-prioritization-in-real-time-with-mpulse Hitoshi Kaneko https://www.akamai.com/blog/security/visualize-visitor-prioritization-in-real-time-with-mpulse Mon, 12 Oct 2020 13:00:00 UTC Preparing the Edge for a Big Year in Live Streaming Next year is shaping up to be a big one for live streaming. Typically characteristic of even years, when many major international sporting events take place, 2021 looks like it could defy the trend. Akamai is predicting an unprecedented surge in live streaming that will start in late 2020 and continue throughout 2021. During this stretch, we could realistically see 50 million people concurrently streaming a single live event. That's roughly double the largest number of viewers we've seen during a single event in the past. With this in mind, Akamai has used much of 2020 to prepare new capabilities included in the Akamai Platform Update that will help customers prepare for this surge in live streaming. https://www.akamai.com/blog/edge/preparing-the-edge-for-a-big-year-in-live-streaming Alex Balford https://www.akamai.com/blog/edge/preparing-the-edge-for-a-big-year-in-live-streaming Mon, 12 Oct 2020 04:00:00 UTC Three Cloud-First Akamai Initiatives for Your Cloud Journey According to a 2020 State of the Cloud Report, 61% of organizations plan to focus on cloud migration this year and 93% have a multi-cloud strategy. This means that on average your organization is using 2.2 public clouds, multiplying your complexity and costs. https://www.akamai.com/blog/news/three-cloud-first-akamai-initiatives-to-support-your-cloud-journey CJ Arnesen https://www.akamai.com/blog/news/three-cloud-first-akamai-initiatives-to-support-your-cloud-journey Mon, 12 Oct 2020 04:00:00 UTC Timers, Metrics, and Dimensions: What's New for mPulse in 2020 The October 2020 release marks the culmination of a large number of updates to mPulse, Akamai's real user monitoring (RUM) solution: https://www.akamai.com/blog/performance/timers-metrics-and-dimensions-whats-new-in-mpulse-in-2020 Simon Hearne https://www.akamai.com/blog/performance/timers-metrics-and-dimensions-whats-new-in-mpulse-in-2020 Mon, 12 Oct 2020 04:00:00 UTC What's New in Edge Delivery Welcome to day two of the Akamai Platform Update! Today, we're focusing on Akamai's edge delivery products as well as other complimentary products that help drive great digital experiences. The last several months have been nothing short of unprecedented as lockdowns, quarantines, and other protective measures enacted by governments and organizations drove a sudden and dramatic shift in user behavior, which in turn has driven enormous traffic levels. Akamai's importance has never been more evident as companies continue to rely on the intelligent edge platform to maintain business continuity and support the unprecedented traffic demand from online audiences. Regardless of the type of content, be it websites, apps, APIs, video, software, or smaller objects, Akamai's comprehensive set of content delivery products -- including Ion, Adaptive Media Delivery, and Download Delivery -- are designed to deliver great digital experiences for every user, regardless of location, device, or network. https://www.akamai.com/blog/performance/whats-new-in-delivery Alex Balford https://www.akamai.com/blog/performance/whats-new-in-delivery Mon, 12 Oct 2020 04:00:00 UTC Measuring and Improving Core Web Vitals Google recently announced a proposed update to its search ranking algorithm: the Page Experience Update. This change, which launches in 2021, includes more performance signals in the ranking algorithm. A subtle but important feature of the update is that AMP will no longer be a requirement for promotion to Top Stories -- fast pages are all you need! https://www.akamai.com/blog/performance/measuring-improving-core-web-vitals Simon Hearne https://www.akamai.com/blog/performance/measuring-improving-core-web-vitals Mon, 12 Oct 2020 04:00:00 UTC Edgeworkers Use Story: Creating High-Performing, Individualized Campaign Responses in Online Retail As campaigns and digital experiences become more individualized, they can create a challenge for delivering content to consumers at the highest velocity. Having each paid search, social media, and email marketing campaign add unique query string parameters to requests is critical for tracking the ROI of a company's marketing spend. This pursuit of granular user data can place a stubborn limit on the ability of B2C companies to maximize the benefits of cached content -- particularly in terms of maximizing offload of content delivery. https://www.akamai.com/blog/developers/edgeworkers-use-story-creating-high-performing-individualized-campaign-responses Gregory Griffiths https://www.akamai.com/blog/developers/edgeworkers-use-story-creating-high-performing-individualized-campaign-responses Sun, 11 Oct 2020 21:00:00 UTC Computing at the Edge Welcome to the Akamai October 2020 Update - a week of product updates, new features, and innovations. We'll be highlighting a different area of our portfolio each day this week. In today's post, we look at our enhanced edge computing capabilities and how they help developers more effectively and rapidly improve customer experiences on the Akamai platform. https://www.akamai.com/blog/edge/computing-at-the-edge Gregory Griffiths https://www.akamai.com/blog/edge/computing-at-the-edge Sun, 11 Oct 2020 04:00:00 UTC WarezTheRemote: Turning Remotes into Listening Devices Television remotes have gotten little attention as a potential attack vector – despite being one of the most common household devices you can find. https://www.akamai.com/blog/security/wareztheremote-turning-remotes-into-listening-devices JJ Lehmann https://www.akamai.com/blog/security/wareztheremote-turning-remotes-into-listening-devices Wed, 07 Oct 2020 13:00:00 UTC Death by a Thousand Cuts: Nuisance DDoS Attacks in the Games Industry At Akamai, we talk a lot about DDoS attacks. It's because we're pretty good at handling them. We've stopped many of the world's biggest attacks. And, while less common, they get a lot of attention. But we can also stop the world's smallest attacks. And we stop lots of them. It's these smaller attacks that we're talking about today. https://www.akamai.com/blog/security/death-by-a-thousand-cuts-nuisance-ddos-attacks-in-the-games-industry Jonathan Singer https://www.akamai.com/blog/security/death-by-a-thousand-cuts-nuisance-ddos-attacks-in-the-games-industry Wed, 07 Oct 2020 04:00:00 UTC My Journey to Akamai and Back As a region, it's very diverse and dynamic, with a lot to experience. Although I'm based in the Beijing office, I have opportunities to collaborate closely with my colleagues in Japan, India, Singapore and Australia. We find synergies and uniqueness in each market, and constantly share ideas and best practices. It's fun, but it's also an enriching learning experience to live and work in such an exciting region. https://www.akamai.com/blog/culture/my-journey-to-akamai-and-back-wentao-li-senior-technical Akamai https://www.akamai.com/blog/culture/my-journey-to-akamai-and-back-wentao-li-senior-technical Thu, 24 Sep 2020 04:00:00 UTC Smart DNS for the New Network Edge People depend on the internet for just about everything: interacting, learning, transacting, traveling, working, and more. At the same time, the wireless evolution to 4G -- and soon 5G and Wi-Fi everywhere -- has given birth to an era of connected cars, smart sensors, and a multitude of other "things" that are growing rapidly and expanding in utility and scope. Leading network providers see new market opportunities with new business models to monetize new services that combine networks and commerce, including: https://www.akamai.com/blog/performance/smart-dns-for-the-new-network-edge Bruce Van Nice https://www.akamai.com/blog/performance/smart-dns-for-the-new-network-edge Tue, 22 Sep 2020 04:00:00 UTC How to Start Growing and Never Stop My heritage is Sri Lankan. But, at the age of 15 I moved to France as a refugee, fleeing a civil war. Starting a new life from scratch in France, without speaking French, was certainly an interesting journey. But I was lucky enough to have support from my parents. They lived by the mantra of "when there's a will, there's a way". And that helped get me into the French education system, where I completed high school and University, before moving to the UK to start my professional career in IT. https://www.akamai.com/blog/culture/how-to-start-growing-and-never-stop-gobi-tarmat-director Akamai https://www.akamai.com/blog/culture/how-to-start-growing-and-never-stop-gobi-tarmat-director Mon, 21 Sep 2020 04:00:00 UTC Headwinds and Tailwinds - Cycling For Climate Awareness in a Global Pandemic If you told me at the beginning of 2020 that I'd be cycling 250 miles in the remote Upper Peninsula of Michigan, fundraising for an organization called "Climate Ride", and wearing a face mask to go grocery shopping - I would not have believed you. Yet, since March 2020, we've all been living the reality of the Covid-19 pandemic. Social distancing, total lock-down for some, living and working from home, and dealing with a narrowed life experience. https://www.akamai.com/blog/culture/headwinds-and-tailwinds-cycling-for-climate-awareness-in-a-global-pandemic Akamai https://www.akamai.com/blog/culture/headwinds-and-tailwinds-cycling-for-climate-awareness-in-a-global-pandemic Tue, 15 Sep 2020 04:00:00 UTC When Hackers Take Advantage of Your Trusted Vendors As JavaScript-based client-side attacks continue to evolve, we see how attackers are getting more sophisticated and employing more advanced techniques. Unfortunately, it has been proven many times that any website partner can be exploited to carry out an attack. In the past month, we witnessed one of the most popular and trusted vendors being used as a credit card data exfiltration vector -- Google Analytics. https://www.akamai.com/blog/security/when-hackers-take-advantage-of-your-trusted-vendors Ziv Eli https://www.akamai.com/blog/security/when-hackers-take-advantage-of-your-trusted-vendors Fri, 11 Sep 2020 04:00:00 UTC Unprecedented Levels of Ransom DDoS Extortion Attacks The FBI has released a flash warning that thousands of organizations around the world, and across multiple industries, have been threatened with DDoS attacks unless they pay a bitcoin ransom. This ransom DDoS, or RDoS, threat was covered by Akamai's Security Intelligence Response Team (SIRT) in a Security Alert released on August 17, 2020. https://www.akamai.com/blog/trends/unprecedented-levels-of-ransom-ddos-extortion-attacks Ari Weil https://www.akamai.com/blog/trends/unprecedented-levels-of-ransom-ddos-extortion-attacks Fri, 11 Sep 2020 04:00:00 UTC Web Application and API Protection: From SQL Injection to Magecart SQL injections were first discovered in 1998, and over 20 years later, they remain an unsolved challenge and an ongoing threat for every web application and API. The Open Web Application Security Project (OWASP) highlighted injection flaws in its Top 10 lists for both web application security risks and API security threats. https://www.akamai.com/blog/security/web-application-and-api-protection-from-sql-injection-to-magecart Renny Shen https://www.akamai.com/blog/security/web-application-and-api-protection-from-sql-injection-to-magecart Wed, 09 Sep 2020 04:00:00 UTC Every Application Should Be Behind a WAF It's no secret that security threats continue to expand in volume and variety, making headlines on virtually a daily basis. From nation-state attacks, corporate espionage, and data exfiltration campaigns to all-in-one and sneaker bot campaigns, businesses across the globe find themselves dealing with a deluge of inbound threats. The increased amount and variation of threats, and the proliferation of apps being deployed and managed by teams and individuals across the enterprise, can make securing apps and data feel like trying to keep water out of a submerged sieve. https://www.akamai.com/blog/security/every-application-should-be-behind-a-waf Ari Weil https://www.akamai.com/blog/security/every-application-should-be-behind-a-waf Tue, 08 Sep 2020 04:00:00 UTC Metrics That Matter: Continuous Performance Optimization To attract and retain customers, you must offer an exceptional digital experience. In an increasingly competitive business climate, organizations are fighting to maintain loyalty and keep users engaged online. The cost of switching is low, consumers are transient, and user expectations for how digital experiences should perform have never been higher. https://www.akamai.com/blog/performance/metrics-that-matter-continuous-performance-optimization Stephen Stierer https://www.akamai.com/blog/performance/metrics-that-matter-continuous-performance-optimization Wed, 02 Sep 2020 07:00:00 UTC Women's Foundation of Boston Empowerment Webinar for Girls and Young Women Akamai is thrilled to have been the lead sponsor for the recent Women's Foundation of Boston Empowerment Webinar for Girls and Young Women: Girl Decoded: An Intimate Conversation with Author Rana el Kaliouby about finding your voice, pursuing education and excelling as a woman in STEM. https://www.akamai.com/blog/culture/womens-foundation-of-boston-empowerment-webinar-for-girls-and-young-women Tiffany Hogan https://www.akamai.com/blog/culture/womens-foundation-of-boston-empowerment-webinar-for-girls-and-young-women Tue, 01 Sep 2020 04:00:00 UTC Becoming a Comms and Analyst Relations Leader, Rita Aspen - Head, Communications & Analyst Relations, APJ My parents were first-generation immigrants from India. They worked hard, made Singapore their home and took all and any challenges head on. They have always lived by the simple philosophy, 'to be the change'. It's a philosophy that I try to live too, and in many ways it's what attracted me to Akamai not too long ago. https://www.akamai.com/blog/culture/becoming-a-comms-and-analyst-relations-leader-rita-aspen-head-communications Rita Aspen https://www.akamai.com/blog/culture/becoming-a-comms-and-analyst-relations-leader-rita-aspen-head-communications Wed, 26 Aug 2020 04:00:00 UTC How Criminals Attack the Games Industry If you work in the video games industry, it's already obvious that security is a challenge, and criminals are a threat. But how much do you know about how the criminal economy works? What actually motivates them? What specific methods do they use? And how do they interact with one another? https://www.akamai.com/blog/security/how-criminals-attack-the-games-industry Jonathan Singer https://www.akamai.com/blog/security/how-criminals-attack-the-games-industry Wed, 19 Aug 2020 07:00:00 UTC Ransom Demands Return: New DDoS Extortion Threats From Old Actors Targeting Finance and Retail Update 08/24/2020 As mentioned below, the Akamai SIRT has been tracking attacks from the so-called Armada Collective and Fancy Bear actors, who are sending ransom letters to various industry verticals such as finance, travel, and e-commerce. In addition to the... https://www.akamai.com/blog/security/ransom-demands-return-new-ddos-extortion-threats-from-old-actors-targeting-finance-and-retail Akamai SIRT https://www.akamai.com/blog/security/ransom-demands-return-new-ddos-extortion-threats-from-old-actors-targeting-finance-and-retail Mon, 17 Aug 2020 04:00:00 UTC Ruchita Biradar - My Virtual Internship at Akamai The year is 2020, and the Coronavirus has affected life around the world in so many ways. For me, a third-year engineering student at R.V. Bangalore , I was looking forward to starting my internship at Akamai when the pandemic took hold, and suddenly everything seemed so uncertain. https://www.akamai.com/blog/culture/ruchita-biradar-my-virtual-internship-at-akamai Akamai https://www.akamai.com/blog/culture/ruchita-biradar-my-virtual-internship-at-akamai Mon, 10 Aug 2020 04:00:00 UTC 20 Years of Edge Computing How long will you wait for something? That depends on what you're waiting for, of course. But in your daily interactions, think about how many "things" you interact with where you expect the response to be instantaneous -- tapping on mobile apps; logging in and transacting with a retailer or a bank; selecting and viewing content on a streaming media device; interacting with a connected device like a light, doorbell, or even a car; or checking in for a train or flight. https://www.akamai.com/blog/news/20-years-of-edge-computing Ari Weil https://www.akamai.com/blog/news/20-years-of-edge-computing Wed, 05 Aug 2020 04:00:00 UTC Question Quiz—The Forgotten Scam Over a year ago, Akamai’s threat research team published research regarding a widely-used phishing toolkit we referred to as the “Three Question Quiz”. It’s now time to review the evolution of the toolkit, the associated campaigns that we tracked in the wild, and the potential damage caused by those campaigns in the past year. https://www.akamai.com/blog/security/question-quiz-the-forgotten-scam Or Katz https://www.akamai.com/blog/security/question-quiz-the-forgotten-scam Fri, 31 Jul 2020 01:48:00 UTC Large, Complex DDoS Attacks on the Rise in 2020 While we've highlighted both record PPS and BPS attacks mitigated on the Akamai Prolexic Platform over the past few weeks, these attacks are part of a broader trend of increasingly large and complex DDoS activity. We have seen clear indications across the industry of high-water mark DDoS attacks being publicized by multiple vendors. The sheer number of large attacks has been unprecedented. The attacks are also noteworthy for their increasing complexity, illustrated in the number and combinations of different attack vectors. The tenacity of attackers is also increasing -- one Akamai customer experienced 14 separate 100+ Gbps attacks in just the first half of 2020. "What's new is the concept of campaigns. We go back a couple of years, and 'attack' was the right word to use. There were many attacks every single day, but they weren't, in my opinion, campaign-oriented. Some of our more recent ones are campaign-oriented, where the attacker is working in a coordinated way over an extended period of time." -- Roger Barranco, Vice President, Global Security Operations, Akamai Some likely reasons for the rise in attacks are a combination of: The proliferation of DDoS-for-hire tools Emerging botnets (enterprise DVRs, IoT, etc.) entering the scene Plenty of motivating factors across social, geopolitical, and online unrest Quarantine and boredom -- what's a malicious actor supposed to do? Whatever the unique reason of each attack, the result is the same: a security and IT team needs an effective defense. https://www.akamai.com/blog/security/large--complex-ddos-attacks-on-the-rise-in-2020 Tom Emmons https://www.akamai.com/blog/security/large--complex-ddos-attacks-on-the-rise-in-2020 Tue, 28 Jul 2020 20:04:00 UTC The Importance of Culture and Collaboration I joined Akamai Japan in June 2020. Of course, having worked in technology for my whole career, I already knew of Akamai and our strong reputation. I knew it was an intelligent company, with impressive technology, and - above all - a great story that really inspired me. https://www.akamai.com/blog/culture/the-importance-of-culture-and-collaboration-mayuko-kiguchi-director Mayuko Kiguchi https://www.akamai.com/blog/culture/the-importance-of-culture-and-collaboration-mayuko-kiguchi-director Thu, 09 Jul 2020 04:00:00 UTC Taking a Human Approach to a Global Crisis Since March, the COVID crisis has caused massive disruption to every area of life and work. It has tested us, as individuals and as a business. Akamai has taken a very human-centric approach during the pandemic. Our guiding principle has been to do what is right for the health and safety of employees, customers and partners. I feel proud of this, because when I think about what I'm grateful for, it really does come down to people. I'm grateful to be working for a company that is keeping people connected to the world through technology. I'm grateful to be among smart, immensely resilient colleagues. And I'm grateful to have friends and family who are sticking together. Ultimately, it's the humanity that matters. https://www.akamai.com/blog/culture/taking-a-human-approach-to-a-global-crisis-by-prasad-mandava Prasad Mandava https://www.akamai.com/blog/culture/taking-a-human-approach-to-a-global-crisis-by-prasad-mandava Thu, 02 Jul 2020 04:00:00 UTC Largest Ever Recorded Packet Per Second-Based DDoS Attack Mitigated by Akamai On June 21, 2020, Akamai mitigated the largest packet per second (PPS) distributed denial-of-service (DDoS) attack ever recorded on the Akamai platform. The attack generated 809 million packets per second (Mpps), targeting a large European bank. https://www.akamai.com/blog/news/largest-ever-recorded-packet-per-secondbased-ddos-attack-mitigated-by-akamai Tom Emmons https://www.akamai.com/blog/news/largest-ever-recorded-packet-per-secondbased-ddos-attack-mitigated-by-akamai Thu, 25 Jun 2020 04:00:00 UTC How to Do Micro-Segmentation the Right Way Micro-segmentation is the central IT security best practice response to overly-permissive policies. Learn how to do it right. https://www.akamai.com/blog/security/microsegmentation-done-right Dave Klein https://www.akamai.com/blog/security/microsegmentation-done-right Wed, 24 Jun 2020 13:24:00 UTC Akamai Mitigates Sophisticated 1.44 Tbps and 385 Mpps DDoS Attack always surprises me how easily a community can adapt to a new situation or reality. What was once considered an outlier or even an unimaginable situation can quickly become our new normal. For those of us focused on protecting enterprises from threats, that also couldn't be more accurate. Specifically for the Akamai team working on our Prolexic platform in our Security Operations Command Center (SOCC), mitigating many distributed denial-of-service (DDoS) attacks a day has resulted in increasingly sophisticated automated tooling and expert-level know-how through mitigating these constant attacks. https://www.akamai.com/blog/akamai-mitigates-sophisticated-1-44-tbps-and-385-mpps-ddos-attac Lorenz Jakober https://www.akamai.com/blog/akamai-mitigates-sophisticated-1-44-tbps-and-385-mpps-ddos-attac Mon, 22 Jun 2020 20:37:00 UTC Akamai Mitigates Sophisticated 1.44 Tbps and 385 Mpps DDoS Attack always surprises me how easily a community can adapt to a new situation or reality. What was once considered an outlier or even an unimaginable situation can quickly become our new normal. For those of us focused on protecting enterprises from threats, that also couldn't be more accurate. Specifically for the Akamai team working on our Prolexic platform in our Security Operations Command Center (SOCC), mitigating many distributed denial-of-service (DDoS) attacks a day has resulted in increasingly sophisticated automated tooling and expert-level know-how through mitigating these constant attacks. https://www.akamai.com/blog/security/akamai-mitigates-sophisticated-1-44-tbps-and-385-mpps-ddos-attack Lorenz Jakober https://www.akamai.com/blog/security/akamai-mitigates-sophisticated-1-44-tbps-and-385-mpps-ddos-attack Mon, 22 Jun 2020 20:37:00 UTC DNS as Code Infrastructure as Code (IaC) and Continuous Delivery methods have become increasingly popular amongst development and operations teams as a means of maintaining high-performing websites. https://www.akamai.com/blog/security/dns-as-code- Sam Preston https://www.akamai.com/blog/security/dns-as-code- Sat, 20 Jun 2020 04:21:00 UTC The Bondnet Army Guardicore Labs has recently picked up Bondnet, a botnet of thousands of compromised servers of varying power. Managed and controlled remotely, the Bondnet is currently used to mine different cryptocurrencies and is ready to be weaponized immediately for other purposes such as mounting DDoS attacks as shown by the Mirai Botnet. Among the botnet’s victims are high profile global companies, universities, city councils and other public institutions. https://www.akamai.com/blog/security/the-bondnet-army Daniel Goldberg https://www.akamai.com/blog/security/the-bondnet-army Mon, 08 Jun 2020 21:19:00 UTC Stealthworker: Golang-based Brute Force Malware Still an Active Threat By: Larry Cashdollar Malware that can target Windows and Linux systems was recently installed on my honeypot. After some investigation, I determined it to be similar to the malware discovered in February of 2019 by Malwarebytes, and later examined by... https://www.akamai.com/blog/security/stealthworker-golang-based-brute-force-malware-still-an-active-threat Larry Cashdollar https://www.akamai.com/blog/security/stealthworker-golang-based-brute-force-malware-still-an-active-threat Wed, 03 Jun 2020 04:00:00 UTC My Advice For Candidates During the COVID-19 Environment Kerry Condon is Global Head of Talent Acquisition at Akamai Technologies. With more than 20 years' experience as a strategic human resources leader across emerging and developed markets, she shares her take on how candidates can put their best foot forward during these unusual times. https://www.akamai.com/blog/culture/my-advice-for-candidates-during-the-covid-19-environment Akamai https://www.akamai.com/blog/culture/my-advice-for-candidates-during-the-covid-19-environment Fri, 29 May 2020 04:00:00 UTC Banks Prioritizing Microsegmentation Learn how microsegmentation allows financial institutions to achieve goals, from automation to streamlining firewall compliance, while protected. https://www.akamai.com/blog/security/why-banks-should-prioritize-microsegmentation Ola Sergatchov https://www.akamai.com/blog/security/why-banks-should-prioritize-microsegmentation Wed, 27 May 2020 13:00:00 UTC Watch Your Step: The Prevalence of IDN Homograph Attacks The internationalized domain name (IDN) homograph attack is used to form domain names that visually resemble legitimate domain names, albeit, using a different set of characters [1]. For example, the IDN https://www.akamai.com/blog/security/watch-your-step-the-prevalence-of-idn-homograph-attacks Asaf Nadler https://www.akamai.com/blog/security/watch-your-step-the-prevalence-of-idn-homograph-attacks Wed, 27 May 2020 04:00:00 UTC Record 0-Second SLA PPS Mitigation On May 2, 2020, Akamai blocked a large PPS-focused attack against one of our financial services customers in 0 seconds, utilizing a proactive mitigation posture. This was one of the largest PPS levels we have on record, and the biggest mitigated to date in 0 seconds. The attacker launched a bevy of minimally sized UDP packets in an attempt to overwhelm network gear in the customer's data center. https://www.akamai.com/blog/security/record-0-second-sla-pps-mitigation Tom Emmons https://www.akamai.com/blog/security/record-0-second-sla-pps-mitigation Tue, 26 May 2020 21:14:00 UTC Working From Home. So Far, So Much Learned. Hello all! I'm Nicole Fitzpatrick, Deputy General Counsel at Akamai. I also sit on the D&I Executive Steering Committee. Normally I'd be in our Cambridge office about now, but like so many of us I am working from home and writing this surrounded by four kids, the dog and my husband (not written in particular order of importance, by the way). https://www.akamai.com/blog/culture/working-from-home-so-far-so-much-learned1 Nicole Fitzpatrick https://www.akamai.com/blog/culture/working-from-home-so-far-so-much-learned1 Wed, 13 May 2020 04:00:00 UTC Parts of a Whole: Effect of COVID-19 on US Internet Traffic Introduction In our previous post, The Building Wave of Internet Traffic, we looked at the traffic patterns across Europe and the effect the COVID-19 pandemic has had. We examined traffic in Italy, Poland, and Spain, and demonstrated how we observed... https://www.akamai.com/blog/security/parts-of-a-whole-effect-of-covid-19-on-us-internet-traffic Martin McKeay https://www.akamai.com/blog/security/parts-of-a-whole-effect-of-covid-19-on-us-internet-traffic Wed, 29 Apr 2020 04:00:00 UTC Brazil Targeted by Phishing Scam Harnessing COVID-19 Fears Researchers at Akamai have identified a new phishing campaign targeting users in Brazil who are worried about their finances during the COVID-19 epidemic. Over two weeks, we identified that the three-question quiz campaign successfully targeted more than 850,000 victims, scamming them out of personal information, and in some cases, convincing them to install Adware on their computer. https://www.akamai.com/blog/security/brazil-targeted-by-phishing-scam-harnessing-covid-19-fears Or Katz https://www.akamai.com/blog/security/brazil-targeted-by-phishing-scam-harnessing-covid-19-fears Tue, 28 Apr 2020 07:00:00 UTC Staying Healthy, Focused, and Above All Grateful During the COVID-19 Crisis By now, we are all subject in one way or another to the far-reaching impact of COVID-19. As we see on the news each day, the numbers of those infected by this deadly coronavirus continue to grow in terrifying increments. And even for those of us without family members or friends directly impacted by the virus, life has profoundly changed. https://www.akamai.com/blog/culture/staying-healthy-focused-and-above-all-grateful-during-the-covid-crisis Akamai https://www.akamai.com/blog/culture/staying-healthy-focused-and-above-all-grateful-during-the-covid-crisis Fri, 17 Apr 2020 04:00:00 UTC What’s a 10? Pwning vCenter with CVE-2020-3952 https://www.akamai.com/blog/security/pwning-vmware-vcenter-cve-2020-3952 JJ Lehmann https://www.akamai.com/blog/security/pwning-vmware-vcenter-cve-2020-3952 Wed, 15 Apr 2020 18:47:00 UTC A QUICk Introduction to HTTP/3 HTTP/3 is the newest iteration of the HTTP protocol that improves web security and performance. https://www.akamai.com/blog/developers/a-quick-introduction-http3 Javier Garza https://www.akamai.com/blog/developers/a-quick-introduction-http3 Tue, 14 Apr 2020 04:00:00 UTC The Building Wave of Internet Traffic The Novel Coronavirus, and the resulting viral respiratory illness caused by it, COVID-19, is changing our world. As much as possible, people around the world are practicing social distancing. This means working remotely for a large number of people, possibly... https://www.akamai.com/blog/security/the-building-wave-of-internet-traffic Martin McKeay https://www.akamai.com/blog/security/the-building-wave-of-internet-traffic Mon, 13 Apr 2020 04:00:00 UTC Threat Actors Recycling Phishing Kits in New Coronavirus (COVID-19) Campaigns Recently, researchers at Akamai observed phishing attacks leveraging recycled kits in a series of campaigns taking advantage of the Coronavirus (COVID-19) health crisis. Phishing kits that have been previously deployed over the last several months are now being used again in order to reach a new pool of potential victims: those working from home due to self-isolation, mandated quarantine, or corporate policy during the pandemic. https://www.akamai.com/blog/security/threat-actors-recycling-phishing-kits-in-new-coronavirus--covid- Or Katz https://www.akamai.com/blog/security/threat-actors-recycling-phishing-kits-in-new-coronavirus--covid- Fri, 03 Apr 2020 05:19:00 UTC The Vollgar Campaign: MS-SQL Servers Under Attack Guardicore Labs uncovers an attack campaign that’s been under the radar for almost two years, breaching MS-SQL servers and infecting them with remote-access tools and cryptominers. https://www.akamai.com/blog/security/vollgar-ms-sql-servers-under-attack Ophir Harpaz https://www.akamai.com/blog/security/vollgar-ms-sql-servers-under-attack Wed, 01 Apr 2020 14:56:00 UTC Working Together to Manage Global Internet Traffic Increases As businesses and consumers around the world adjust their routines amid the various COVID-19 restrictions, the internet is being used at a scale that the world has never experienced. In addition to millions of people who are now working from... https://www.akamai.com/blog/news/working-together-to-manage-global-internet-traffic-increases Tom Leighton https://www.akamai.com/blog/news/working-together-to-manage-global-internet-traffic-increases Tue, 24 Mar 2020 04:00:00 UTC An Accelerator Program for Early Stage Innovations in Water Continuing in our commitment to sustainability, Akamai is excited to announce the launch of our accelerator program supporting innovators and building solutions to address India's water challenges. https://www.akamai.com/blog/culture/an-accelerator-program-for-early-stage-innovations-in-water Akamai https://www.akamai.com/blog/culture/an-accelerator-program-for-early-stage-innovations-in-water Fri, 20 Mar 2020 04:00:00 UTC How To Protect Your Systems Against Critical SMB Vulnerabilities (CVE-2020-0796) Discover how to protect your systems against SMB vulnerabilities and the latest critical Microsoft vulnerabilities released. https://www.akamai.com/blog/security/how-to-protect-your-systems-against-critical-smb-vulnerabilities-cve-2020-0796 Igor Livshitz https://www.akamai.com/blog/security/how-to-protect-your-systems-against-critical-smb-vulnerabilities-cve-2020-0796 Tue, 17 Mar 2020 20:12:00 UTC Change the Rules Speaker Event Akamai's Women's Forum Americas, OHANA and In Reach Employee Resource Groups recently hosted Cross ERG 'Change the Rules' Keynote - Celebration of Black History Month in our Chicago office. We were excited to have notable Michelle Silverthorn, CEO of Inclusion Nation, a company that focuses on improving recruitment, retention, and the promotion of diverse professionals, as the keynote speaker. It is not often that we have an external speaker join us and have the impact Michelle had with her talk on Changing the Rules. Her stories resonated with the audience and her actionable approach was most appreciated. https://www.akamai.com/blog/culture/change-the-rules-speaker-event Akamai https://www.akamai.com/blog/culture/change-the-rules-speaker-event Tue, 17 Mar 2020 04:00:00 UTC Phishing Victims From a CDN's Point of View Overview Being a Content Delivery Network (CDN) platform, sometimes you can see fractions of attacks on the wire. In this blog, we will focus on phishing websites that, while not being delivered by the Akamai platform, are referring to or... https://www.akamai.com/blog/security/phishing-victims-from-a-cdns-point-of-view Or Katz https://www.akamai.com/blog/security/phishing-victims-from-a-cdns-point-of-view Tue, 10 Mar 2020 04:00:00 UTC Growing, Exploring and My First Conference By now, we are all subject in one way or another to the far-reaching impact of COVID-19. As we see on the news each day, the numbers of those infected by this deadly coronavirus continue to grow in terrifying increments. And even for those of us without family members or friends directly impacted by the virus, life has profoundly changed. https://www.akamai.com/blog/culture/bridget-meuse-growing-exploring-and-my-first-conference Bridget Meuse https://www.akamai.com/blog/culture/bridget-meuse-growing-exploring-and-my-first-conference Mon, 02 Mar 2020 05:00:00 UTC Guardicore at RSA: AI-Powered Segmentation, Cloud Native Security This week we’re announcing two new capabilities in our Centra Security Platform that further deliver on that mission: Support for cloud-native resources and AI-powered segmentation. https://www.akamai.com/blog/security/ai-powered-segmentation-cloud-native-security Guardicore Labs Team https://www.akamai.com/blog/security/ai-powered-segmentation-cloud-native-security Thu, 27 Feb 2020 20:38:00 UTC How I Avoided a Recruiter Scam Recruitment scams are a serious, but often overlooked risk to job seekers. Those responsible for these schemes often play on the victim's stress levels or professional ego, by using authority to offer something that could be life changing, often with large salaries. I've personally experienced a recruitment scam. In this post, we'll explore the scam that targeted me, and the steps I took that prevented me from becoming a victim. https://www.akamai.com/blog/trends/how-i-avoided-a-recruiter-scam Danny Stern https://www.akamai.com/blog/trends/how-i-avoided-a-recruiter-scam Tue, 25 Feb 2020 16:30:00 UTC Introducing Guardicore Threat Intelligence Firewall Guardicore’s Threat Intelligence Firewall blocks connections to malicious IPs, limiting security attack surface before reaching critical assets. https://www.akamai.com/blog/security/introducing-guardicore-threat-intelligence-firewall Mor Matalon https://www.akamai.com/blog/security/introducing-guardicore-threat-intelligence-firewall Wed, 19 Feb 2020 12:09:00 UTC Tackling DGA Based Malware Detection in DNS Traffic Earlier this year, Akamai's Enterprise team tackled the problem of DGA detection in the wild by using Neural Networks, essentially creating a state-of-the-art solution for near online detection of DGA communication.... https://www.akamai.com/blog/security/tackling-dga-based-malware-detection-in-dns-traffic Yael Daihes https://www.akamai.com/blog/security/tackling-dga-based-malware-detection-in-dns-traffic Tue, 18 Feb 2020 05:00:00 UTC At 21 Tbps, Reaching New Levels of IPv6 Traffic The global adoption of IPv6 is important to the future of the internet and Akamai has been committed to helping move IPv6 deployment forward ever since we launched production IPv6 support in 2012. https://www.akamai.com/blog/performance/at-21-tbps-reaching-new-levels-ipv6-traffic Erik Nygren https://www.akamai.com/blog/performance/at-21-tbps-reaching-new-levels-ipv6-traffic Thu, 13 Feb 2020 16:46:00 UTC Supporting COVID-19 Vaccine Rollouts with Vaccine Edge Global efforts to produce and distribute the COVID-19 vaccine continue to race ahead. But in many cases, that race is an uphill climb. Beyond the challenges in making enough of the vaccine, educating the public, and the logistics of distributing the doses, there is a new challenge. Bots. https://www.akamai.com/blog/security/supporting-covid-19-vaccine-rollouts-with-vaccine-edge Ari Weil https://www.akamai.com/blog/security/supporting-covid-19-vaccine-rollouts-with-vaccine-edge Mon, 10 Feb 2020 05:00:00 UTC Women in Security: Security Technical Project Manager We continue to see large-scale online security attacks affecting corporations and public institutions. These attacks are becoming more and more sophisticated, making it harder to protect yourself. The constant evolution of attacks requires innovative solutions that only Akamai can provide.... https://www.akamai.com/blog/culture/women-in-security-security-technical-project-manager Akamai https://www.akamai.com/blog/culture/women-in-security-security-technical-project-manager Wed, 05 Feb 2020 05:00:00 UTC Abusing the Service Workers API The Service Worker web API is a powerful new API for web browsers. During our research, we have found several ways attackers can leverage this API to enhance their low-to-medium risk findings into a powerful and meaningful attack. By... https://www.akamai.com/blog/security/abusing-the-service-workers-api Daniel Abeles https://www.akamai.com/blog/security/abusing-the-service-workers-api Mon, 20 Jan 2020 05:00:00 UTC Guardicore Centra Release v 31 Guardicore Centra v 31 includes such features as user-based rules and a threat intelligence firewall. Read more about the updates and improvements. https://www.akamai.com/blog/security/whats-new-in-guardicore-centra-release-31 Ravit Greitser https://www.akamai.com/blog/security/whats-new-in-guardicore-centra-release-31 Sun, 19 Jan 2020 14:00:00 UTC Virtual Desktop Infrastructure (VDI) – Risks and Solutions Leverage the benefits of VDI without opening yourself to security risk. Guardicore provides user access management and microsegmentation for Citrix. https://www.akamai.com/blog/security/virtual-desktop-infrastructure-vdi-risks-and-solutions Sharon Besser https://www.akamai.com/blog/security/virtual-desktop-infrastructure-vdi-risks-and-solutions Wed, 15 Jan 2020 17:52:00 UTC HTTP Cache Poisoning Advisory Summary On January 14, 2020, CERT CC published an advisory warning of the potential use of Content Delivery Networks (CDNs) to cache malicious traffic. Akamai acknowledges this issue and has been aware of similar research in the past. This advisory... https://www.akamai.com/blog/security/http-cache-poisoning-advisory Akamai https://www.akamai.com/blog/security/http-cache-poisoning-advisory Mon, 13 Jan 2020 05:00:00 UTC Streaming and Security: In Conversation With Smita Aeron People from around the globe are looking for instant and uninterrupted access to streaming services, on any device and in any location. But delivering high-quality streams that can easily scale to meet audience demand is no easy task. To better... https://www.akamai.com/blog/culture/streaming-and-security-in-conversation-with-smita-aeron Akamai https://www.akamai.com/blog/culture/streaming-and-security-in-conversation-with-smita-aeron Sat, 11 Jan 2020 05:00:00 UTC Guardicore Centra Integration now available on CyberArk Marketplace Privileged Access Management is part of a zero-trust model. Guardicore strengthens its offering by integrating with CyberArk. https://www.akamai.com/blog/security/guardicore-integrates-with-cyberark-for-privileged-access-management Sharon Besser https://www.akamai.com/blog/security/guardicore-integrates-with-cyberark-for-privileged-access-management Sun, 08 Dec 2019 14:24:00 UTC Managing Traffic From the Outset: How GTM Can Make Your Deployments Easier Global Traffic Management, or GTM, is a DNS-based load balancing service that offers application owners a level of flexibility and insight that is unmatched by traditional on-prem solutions. https://www.akamai.com/blog/performance/managing-traffic-from-the-outset-how-gtm-can-make-your-deploymets Sam Preston https://www.akamai.com/blog/performance/managing-traffic-from-the-outset-how-gtm-can-make-your-deploymets Thu, 05 Dec 2019 05:00:00 UTC Akamai Foundation and Social Responsibility Recently, at Akamai, we launched the Akamai Foundation, to continue to reach a broader, more diverse range of young people with quality Science, Technology, Engineering and Math (STEM) education. We believe that this work is a vital part of securing... https://www.akamai.com/blog/culture/akamai-foundation-and-social-responsibility Akamai https://www.akamai.com/blog/culture/akamai-foundation-and-social-responsibility Fri, 22 Nov 2019 05:00:00 UTC In Conversation: Successful Women Success is a tricky word to define. It means something different to everyone and can only be measured by an individual themselves. Often, success is seen as being about what an individual achieves, rather than about who they grow to... https://www.akamai.com/blog/culture/in-conversation-successful-women Akamai https://www.akamai.com/blog/culture/in-conversation-successful-women Fri, 15 Nov 2019 05:00:00 UTC Fake Cozy Bear Group Making DDoS Extortion Demands A group calling themselves "Cozy Bear" has been emailing various companies with an extortion letter, demanding payment and threatening targeted DDoS attacks if their demands are not met.... https://www.akamai.com/blog/security/fake-cozy-bear-group-making-ddos-extortion-demands Akamai SIRT https://www.akamai.com/blog/security/fake-cozy-bear-group-making-ddos-extortion-demands Fri, 15 Nov 2019 05:00:00 UTC Phishing Detection via Analytic Networks As mentioned in previous Akamai blogs, phishing is an ecosystem of mostly framework developers and buyers who purchase kits to harvest credentials and other sensitive information. Like many framework developers, those focusing on phishing kits want to create an efficient... https://www.akamai.com/blog/security/phishing-detection-via-analytic-networks Tomer Shlomo https://www.akamai.com/blog/security/phishing-detection-via-analytic-networks Wed, 06 Nov 2019 05:00:00 UTC My First Job—Being Inspired and Having an Impact Written by Bridget Meuse, Product Marketing Specialist - Corporate Sustainability I've recently hit my four-month mark here at Akamai and it's been a whirlwind, to say the least. Despite having had two previous summer internships at Akamai, stepping into my... https://www.akamai.com/blog/culture/my-first-job-being-inspired-and-having-an-impact Akamai https://www.akamai.com/blog/culture/my-first-job-being-inspired-and-having-an-impact Tue, 05 Nov 2019 05:00:00 UTC Volunteering with Girls Who Code Volunteering with Girls Who Code has been one of the most enriching and edifying experiences of my time here at Akamai. I was chosen to serve as a mentor to one of the high school students, gave the NOCC tour... https://www.akamai.com/blog/culture/volunteering-with-girls-who-code Akamai https://www.akamai.com/blog/culture/volunteering-with-girls-who-code Fri, 25 Oct 2019 04:00:00 UTC Tech That Makes a Difference: Sustainability As the Internet grows, so does energy usage. As a result, all large tech organizations have a responsibility to monitor and improve their impact on the environment. At Akamai, we are well aware of the impact we can have, both... https://www.akamai.com/blog/culture/tech-that-makes-a-difference-sustainability Akamai https://www.akamai.com/blog/culture/tech-that-makes-a-difference-sustainability Wed, 23 Oct 2019 04:00:00 UTC Enhancing Video Streaming Quality for Exoplayer -- Part 2: Buffering Strategy to Lower Startup Time and Video On-Demand Rebuffering The first part of this blog series discussed about the quality of user experience (QoE) metrics and two strategies that heavily influence the QoE: the bitrate selection... https://www.akamai.com/blog/performance/enhancing-video-streaming-quality-for-exoplayer-part-2-exoplayers-buffering-strategy-how-to-lower Domitian Tamas-Selicean https://www.akamai.com/blog/performance/enhancing-video-streaming-quality-for-exoplayer-part-2-exoplayers-buffering-strategy-how-to-lower Wed, 23 Oct 2019 04:00:00 UTC Data in the dark: Data protection Hyperconnectivity is on the rise and, as a result, corporations' capacity to protect their own and their customers' data becomes more and more limited. Connection takes place over a network, so, as connection increases, that network increases in size https://www.akamai.com/blog/culture/data-in-the-dark-data-protection Akamai https://www.akamai.com/blog/culture/data-in-the-dark-data-protection Fri, 11 Oct 2019 04:00:00 UTC Faster JWT Key Rotation in API Gateway JSON Web Tokens (JWT) use digital signatures to establish the authenticity of the data they contain, as well as authenticating the identity of the signer. A valid signature check ensures that any party can rely on the contents and the... https://www.akamai.com/blog/news/verify-jwt-with-json-web-key-set-jwks-in-api-gateway Jeffrey Costa https://www.akamai.com/blog/news/verify-jwt-with-json-web-key-set-jwks-in-api-gateway Fri, 11 Oct 2019 04:00:00 UTC Maximizing Onboarding: Giving managers the skills for success Managing teams come with challenges as well as rewards. Managers drive individual and team performance, and the best managers drive employee connection and engagement. Akamai believes that employees are our biggest asset; by effectively and efficiently integrating them into the... https://www.akamai.com/blog/culture/maximizing-onboarding-giving-managers-the-skills-for-success Andrew Heifetz https://www.akamai.com/blog/culture/maximizing-onboarding-giving-managers-the-skills-for-success Mon, 30 Sep 2019 04:00:00 UTC From the Beginning: Internships With Akamai At Akamai, our internships are both unique and meaningful. What do we mean by this? Well, we believe an internship should add real, significant value to an intern's skill-set. So, not only do they get to learn on the job... https://www.akamai.com/blog/culture/from-the-beginning-internships-with-akamai Akamai https://www.akamai.com/blog/culture/from-the-beginning-internships-with-akamai Fri, 27 Sep 2019 04:00:00 UTC The Massive Propagation Of The Smominru Botnet In this post, Guardicore Labs provides an in-depth analysis of the attack campaign, focusing on victim analysis and attack infrastructure. https://www.akamai.com/blog/security/the-massive-propagation-of-the-smominru-botnet Ophir Harpaz https://www.akamai.com/blog/security/the-massive-propagation-of-the-smominru-botnet Wed, 18 Sep 2019 13:00:00 UTC New DDoS Vector Observed in the Wild: WSD Attacks Hitting 35/Gbps Additional research and support provided by Chad Seaman. Introduction Members of Akamai's Security Intelligence Response Team have been investigating a new DDoS vector that leverages a UDP Amplification technique known as WS-Discovery (WSD). The situation surrounding WSD was recently made... https://www.akamai.com/blog/security/new-ddos-vector-observed-in-the-wild-wsd-attacks-hitting-35gbps Jonathan Respeto https://www.akamai.com/blog/security/new-ddos-vector-observed-in-the-wild-wsd-attacks-hitting-35gbps Wed, 18 Sep 2019 04:00:00 UTC XMR Cryptomining Targeting x86/i686 Systems I have been playing close attention to Internet of Things (IoT) malware targeting systems with Telnet enabled, while also collecting samples targeting systems with SSH enabled on port 22. I've collected over 650 samples landing in my honeypot within the... https://www.akamai.com/blog/security/xmr-cryptomining-targeting-x86i686-systems Larry Cashdollar https://www.akamai.com/blog/security/xmr-cryptomining-targeting-x86i686-systems Fri, 30 Aug 2019 04:00:00 UTC In Conversation: The Women in Network Security Why does network security matter? On average, there is a hacker attack every 39 seconds. If any of these attacks result in a data breach, they could cost over $150 million, with research suggesting that cyber-attacks could cost businesses over... https://www.akamai.com/blog/culture/in-conversation-the-women-in-network-security Akamai https://www.akamai.com/blog/culture/in-conversation-the-women-in-network-security Thu, 22 Aug 2019 04:00:00 UTC Edge DNS: Zone Apex Mapping & DNSSEC Along with its DDoS resilience and impressive global footprint, Akamai Edge DNS offers zone administrators additional technical flexibility and implementation options to improve performance and simplify DNS operations. One example is zone apex mapping (ZAM), a feature that enables top level hostnames (e.g., akamai.com) to resolve directly to an Akamai edge IP. The popularity and appeal of ZAM do, however, prompt a number of questions about the technical specifics, such as: Is ZAM interoperable with DNSSEC? https://www.akamai.com/blog/security/edge-dns--zone-apex-mapping---dnssec Sam Preston https://www.akamai.com/blog/security/edge-dns--zone-apex-mapping---dnssec Mon, 19 Aug 2019 07:00:00 UTC HTTP2 Vulnerabilities On Tuesday, August 13th at 10 AM Pacific Time (1700UTC), Netflix publicly disclosed a series of vulnerabilities found by Jonathan Looney that impact many implementations of the HTTP2 protocol. A vulnerability found by Piotr Sikora of Google was also released... https://www.akamai.com/blog/security/http2-vulnerabilities Akamai https://www.akamai.com/blog/security/http2-vulnerabilities Tue, 13 Aug 2019 04:00:00 UTC From On-Prem to Cloud: The Complete AWS Security Checklist This complete AWS cloud auditing security checklist outlines what it takes to protect sensitive data center security & intellectual property when securing an organization’s cloud deployment. https://www.akamai.com/blog/security/complete-cloud-migration-aws-security-checklist Igor Livshitz https://www.akamai.com/blog/security/complete-cloud-migration-aws-security-checklist Thu, 08 Aug 2019 18:27:00 UTC Diversity of Thought in Tech At Akamai, we believe innovation is only possible when the various viewpoints and experiences of a collective, culminate to make a great idea. It is the variety of these ideas which is important. Why does diversity of thought matter? When... https://www.akamai.com/blog/culture/diversity-of-thought-in-tech Akamai https://www.akamai.com/blog/culture/diversity-of-thought-in-tech Tue, 30 Jul 2019 04:00:00 UTC Criminals Using Targeted Remote File Inclusion Attacks in Phishing Campaigns In June 2019, logs on my personal website recorded markers that were clearly Remote File Inclusion (RFI) vulnerability attempts. The investigation into the attempts uncovered a campaign of targeted RFI attacks that currently are being leveraged to deploy phishing kits.... https://www.akamai.com/blog/security/criminals-using-targeted-remote-file-inclusion-attacks-in-phishing-campaigns Larry Cashdollar https://www.akamai.com/blog/security/criminals-using-targeted-remote-file-inclusion-attacks-in-phishing-campaigns Mon, 29 Jul 2019 04:00:00 UTC In Conversation: It's Never Too Late There can be barriers to pursuing a career in tech. For many people, the journey isn't straightforward. Many of our Akamai employees have diverse backgrounds and have overcome obstacles to pursue their dream career. Often, the way forward into a... https://www.akamai.com/blog/culture/in-conversation-its-never-too-late Akamai https://www.akamai.com/blog/culture/in-conversation-its-never-too-late Sat, 20 Jul 2019 04:00:00 UTC Pykspa v2 DGA updated to become selective Additional research and information provided by Asaf Nadler Recent changes to the Pykspa v2 domain generation algorithm (DGA) have made it more selective. Akamai researchers have tracked these changes and believe that part of the reason for selective domain generation... https://www.akamai.com/blog/security/pykspa-v2-dga-updated-to-become-selective Lior Lahav https://www.akamai.com/blog/security/pykspa-v2-dga-updated-to-become-selective Thu, 11 Jul 2019 04:00:00 UTC NSX-T vs. NSX-V – Key Differences and Pitfalls to Avoid Learn the difference between VMware’s segmentation offerings, NSX-T vs NSX-V, and understand the several potential pitfalls that are important to consider before deployment. https://www.akamai.com/blog/security/nsx-t-vs-nsx-v-key-differences-and-pitfalls-to-avoid Dave Burton https://www.akamai.com/blog/security/nsx-t-vs-nsx-v-key-differences-and-pitfalls-to-avoid Sun, 07 Jul 2019 15:57:00 UTC SIRT Advisory: Silexbot Bricking Systems With Known Default Login Credentials On June 25th, I discovered a new bot named Silexbot on my honeypot. The bot itself is a blunt tool used to destroy IoT devices. Its author, someone who claims to be a 14-year-old boy from Europe, has made his... https://www.akamai.com/blog/security/sirt-advisory-silexbot-bricking-systems-with-known-default-login-credentials Larry Cashdollar https://www.akamai.com/blog/security/sirt-advisory-silexbot-bricking-systems-with-known-default-login-credentials Wed, 26 Jun 2019 04:00:00 UTC In Conversation: Career Development as a Parent Technology can only continue to thrive with the direct influence of those involved in its evolution. When the experiences of those people are broad, the tech industry benefits from the diversity of what they bring to the table. At Akamai,... https://www.akamai.com/blog/culture/in-conversation-career-development-as-a-parent Akamai https://www.akamai.com/blog/culture/in-conversation-career-development-as-a-parent Sun, 23 Jun 2019 04:00:00 UTC Enhancing video streaming quality for ExoPlayer - Part 1: Quality of User Experience Metrics The online video player landscape is fragmented with a wide variety of players across a mix of popular platforms. In the world of HTML5-video players in browsers, there are a number of open-source solutions (e.g., hls.js, dash.js, Shaka Player), as well as commercial offerings which include Akamai's AMP. https://www.akamai.com/blog/performance/enhancing-video-streaming-quality-for-exoplayer-part-1-quality-of-user-experience-metrics Akamai https://www.akamai.com/blog/performance/enhancing-video-streaming-quality-for-exoplayer-part-1-quality-of-user-experience-metrics Wed, 19 Jun 2019 04:00:00 UTC CloudTest Vulnerability (CVE-2019-11011) https://www.akamai.com/blog/security/cloudtest-vulnerability-cve-2019-11011 Akamai InfoSec https://www.akamai.com/blog/security/cloudtest-vulnerability-cve-2019-11011 Sun, 16 Jun 2019 04:00:00 UTC Latest ECHOBOT: 26 Infection Vectors Introduction Since the release of the Mirai source code in October of 2016, there have been hundreds of variants. While publishing my own research, I noticed that Palo Alto Networks was also examining similar samples, and published their findings. Earlier... https://www.akamai.com/blog/security/latest-echobot-26-infection-vectors Larry Cashdollar https://www.akamai.com/blog/security/latest-echobot-26-infection-vectors Thu, 13 Jun 2019 04:00:00 UTC In Conversation: New Starters The world is changing. At Akamai, we're proud to be part of the shift towards a more inclusive future. Where digital systems may replace human processes, we are determined to keep people at the center of our focus. After all,... https://www.akamai.com/blog/culture/in-conversation-new-starters Akamai https://www.akamai.com/blog/culture/in-conversation-new-starters Wed, 12 Jun 2019 04:00:00 UTC Catch Me If You Can: Evasive and Defensive Techniques in Phishing Phishing is a multifaceted type of attack, aimed at collecting usernames and passwords, personal information, or sometimes both. Yet, these attacks only work so long as the phishing kit itself remains hidden. Phishing is a numbers game and time is... https://www.akamai.com/blog/security/catch-me-if-you-can-evasive-and-defensive-techniques-in-phishing Or Katz https://www.akamai.com/blog/security/catch-me-if-you-can-evasive-and-defensive-techniques-in-phishing Wed, 12 Jun 2019 04:00:00 UTC Identifying Vulnerabilities in Phishing Kits While recently examining hundreds of phishing kits for ongoing research, Akamai discovered something interesting - several of the kits included basic vulnerabilities due to flimsy construction or reliance on outdated open source code. Considering the impact phishing kits have on... https://www.akamai.com/blog/security/identifying-vulnerabilities-in-phishing-kits Larry Cashdollar https://www.akamai.com/blog/security/identifying-vulnerabilities-in-phishing-kits Wed, 05 Jun 2019 04:00:00 UTC Our Ceiling, Their Floor, Educating the Future Throughout this blog series, we've been discussing the future of tech in relation to our young people. At Akamai, our outreach programs and forward-thinking culture have positioned us as part of the movement determined to make the world better for... https://www.akamai.com/blog/culture/our-ceiling-their-floor-educating-the-future Akamai https://www.akamai.com/blog/culture/our-ceiling-their-floor-educating-the-future Wed, 29 May 2019 04:00:00 UTC 16Shop: Commercial Phishing Kit Has A Hidden Backdoor Additional research by Or Katz When it comes to targeting Apple users and their personal and financial data, 16Shop has emerged as a go to kit for those who can afford it. While 16Shop is sold to criminals looking to... https://www.akamai.com/blog/security/16shop-commercial-phishing-kit-has-a-hidden-backdoor Amiram Cohen https://www.akamai.com/blog/security/16shop-commercial-phishing-kit-has-a-hidden-backdoor Tue, 21 May 2019 04:00:00 UTC Preventing the Top Data Center Breaches Data center breaches can seem impossible to avoid, but good data center security can seriously reduce your risk. We look at famous breaches Equifax, Yahoo, & more. https://www.akamai.com/blog/security/recent-data-center-breaches-and-prevention Dave Klein https://www.akamai.com/blog/security/recent-data-center-breaches-and-prevention Mon, 20 May 2019 11:26:00 UTC Bots Tampering with TLS to Avoid Detection Researchers at Akamai observed attackers using a novel approach for evading detection. This new technique - which we call Cipher Stunting - has become a growing threat, with its roots tracing back to early-2018. By using advanced methods, attackers are... https://www.akamai.com/blog/security/bots-tampering-with-tls-to-avoid-detection Security Intelligence Response Team https://www.akamai.com/blog/security/bots-tampering-with-tls-to-avoid-detection Wed, 15 May 2019 04:00:00 UTC Containers vs Virtual Machines – Your Cheat Sheet to Know the Differences Containers vs virtual machines is an ongoing debate in many IT shops around the world. Learn what makes each unique, their common use cases, and how to keep both secure. https://www.akamai.com/blog/security/containers-vs-virtual-machines-cheat-sheet Igor Livshitz https://www.akamai.com/blog/security/containers-vs-virtual-machines-cheat-sheet Tue, 14 May 2019 18:56:00 UTC Words of Wisdom: Advice for Pursuing a Career in Tech The introduction of AI into the workplace is creating uncertainty over the future of employment. However, research shows that tech will create "133 million" more jobs before 2022 than it will dissolve, as "new entities in the economy replace obsolete... https://www.akamai.com/blog/culture/words-of-wisdom-advice-for-pursuing-a-career-in-tech Akamai https://www.akamai.com/blog/culture/words-of-wisdom-advice-for-pursuing-a-career-in-tech Mon, 13 May 2019 04:00:00 UTC Deployment Diversity for DNS Resiliency Similar to diverse workforces performing at a higher level, diverse network service deployments perform at a higher level that is increasingly important as the Internet continues to augment our reality. Akamai has 20 years of edge service deployment experience. Akamai's Intelligent Edge has proven that the "edge" requires more than "servers" on the edge. Fast, intelligent, and secure edge services require a mix of approaches, principles, and designs that start with DNS in mind. https://www.akamai.com/blog/security/deployment-diversity-for-dns-resiliency Jim Gilbert https://www.akamai.com/blog/security/deployment-diversity-for-dns-resiliency Wed, 08 May 2019 04:00:00 UTC The Problem with Perfection: Tech Confidence in Young Girls At Akamai, we believe the future of tech is full of amazing opportunities. However, to ensure these opportunities are fulfilled, some things in the industry need to change. To enable these changes, we are committed to providing opportunities to anyone... https://www.akamai.com/blog/culture/the-problem-with-perfection-tech-confidence-in-young-girls Akamai https://www.akamai.com/blog/culture/the-problem-with-perfection-tech-confidence-in-young-girls Wed, 24 Apr 2019 04:00:00 UTC The Leaders of the Future: Tech for Growing Minds Jobs in the STEM and Tech fields are growing at "three times the pace of non-STEM jobs." The rise of technological advances means the tech industry is not slowing down anytime soon. In the next decade, there will be 1... https://www.akamai.com/blog/culture/the-leaders-of-the-future-tech-for-growing-minds Akamai https://www.akamai.com/blog/culture/the-leaders-of-the-future-tech-for-growing-minds Mon, 08 Apr 2019 04:00:00 UTC The AWS Cloud Security Issues You Don’t Want to Ignore AWS is the biggest name in IaaS, but the shared responsibility model leaves you open to risk. A full approach to AWS cloud security can fill the gap. https://www.akamai.com/blog/security/aws-cloud-security-concerns Avishag Daniely https://www.akamai.com/blog/security/aws-cloud-security-concerns Thu, 28 Mar 2019 12:55:00 UTC Introducing Guardicore Cyber Threat Intelligence Introducing Cyber Threat Intelligence (CTI), a freely available resource to assist in identifying and investigating malicious IP addresses and domains. https://www.akamai.com/blog/security/introducing-guardicore-cyber-threat-intelligence Daniel Goldberg & Ravit Greitser https://www.akamai.com/blog/security/introducing-guardicore-cyber-threat-intelligence Tue, 26 Mar 2019 13:00:00 UTC Guardicore Threat Intelligence Helps Cybersecurity Community Research Attacks and Mitigate Risks This post discusses how Guardicore Labs helps Guardicore customers and the security community enhance their security posture. https://www.akamai.com/blog/security/guardicore-threat-intelligence-helps-cybersecurity-community-res Akamai https://www.akamai.com/blog/security/guardicore-threat-intelligence-helps-cybersecurity-community-res Mon, 25 Mar 2019 15:48:00 UTC Introducing Ability Purge Cache Tag The new purge by cache tag functionality in Akamai’s Fast Purge is now available to all Akamai content delivery product customers. To get to this point, we went through an exciting, year-long beta with more than 200 participants purging ~200,000,000 tags. During this time, we noted some fascinating (and surprising) ways that customers leveraged tags in their caching strategy -- we’ll share our six favorite here. https://www.akamai.com/blog/developers/introducing-ability-purge-cache-tag Sid Phadkar https://www.akamai.com/blog/developers/introducing-ability-purge-cache-tag Sun, 24 Mar 2019 04:00:00 UTC 5 Docker Security Best Practices to Avoid Breaches Like with any technology, Docker too has its security concerns. Learn the Docker security best practices that will help keep your infrastructure and applications secure. https://www.akamai.com/blog/security/docker-security-best-practices Igor Livshitz https://www.akamai.com/blog/security/docker-security-best-practices Wed, 20 Mar 2019 18:42:00 UTC Akamai in the Community: Making Tech Accessible Here at Akamai, we believe every person is important, and that no one should be left out. Our internal culture is cultivated by looking outwards, into the community, to make the life of our society better. Not only do we... https://www.akamai.com/blog/culture/akamai-in-the-community-making-tech-accessible Akamai https://www.akamai.com/blog/culture/akamai-in-the-community-making-tech-accessible Mon, 18 Mar 2019 04:00:00 UTC The Voice of Tech: Who We Are, What We Want to Say Have you ever wondered what it might be like to see inside one of the biggest tech companies in the world? Well, we're starting a new series of blogs to give you the insight you've never had before. Akamai's innovations... https://www.akamai.com/blog/culture/the-voice-of-tech-who-we-are-what-we-want-to-say Akamai https://www.akamai.com/blog/culture/the-voice-of-tech-who-we-are-what-we-want-to-say Fri, 08 Mar 2019 05:00:00 UTC Avoiding Security Misconfiguration Security Misconfiguration exposes networks to risk on premises and the cloud. What do you need to know to limit firewall security misconfiguration? https://www.akamai.com/blog/security/understanding-and-avoiding-security-misconfiguration Ron Shahnovsky https://www.akamai.com/blog/security/understanding-and-avoiding-security-misconfiguration Thu, 07 Mar 2019 14:14:00 UTC Global Traffic Management for Cloud, Data Centers, and CDNs Twenty years ago it would be common to have multiple data centers load balanced with specialized devices. The applications in multiple data centers would use the Domain Name System (DNS) to look up the application destination. The DNS system would be set up to with multiple data center locations. This would "round robin" the results between the data centers. If you have four data centers, the customers would get "round-robined" between each data center. https://www.akamai.com/blog/security/global-traffic-management-for-cloud-data-centers-and-cdns Barry Greene https://www.akamai.com/blog/security/global-traffic-management-for-cloud-data-centers-and-cdns Wed, 06 Mar 2019 05:00:00 UTC Protecting your Domain Names: Taking the First Steps Everyone and everything on the Internet depends on the Domain Name System (DNS) being functional. The DNS has been a common vector for attacks in recent years, and 2019 seems to be no different. Many of these attacks have goals far more sinister than simply taking a company offline or defacing a website; reported attacks include redirecting some or all of an organization's domain to gain access to protected resources, intercept traffic, and even obtain TLS certificates for that domain. Organizations should perform regular DNS reviews and audits. The following guidelines provide a starting point for your review. https://www.akamai.com/blog/security/protecting-your-domain-names-taking-the-first-steps Akamai https://www.akamai.com/blog/security/protecting-your-domain-names-taking-the-first-steps Thu, 07 Feb 2019 05:00:00 UTC Phishing Attacks Against Facebook / Google via Google Translate When it comes to phishing, criminals put a lot of effort into making their attacks look legitimate, while putting pressure on their victims to take action. In today's post, we're going to examine a recent phishing attempt against me personally.... https://www.akamai.com/blog/security/phishing-attacks-against-facebook-google-via-google-translate Larry Cashdollar https://www.akamai.com/blog/security/phishing-attacks-against-facebook-google-via-google-translate Tue, 05 Feb 2019 05:00:00 UTC A Vulnerability in Debian’s Apt Allows for Easy Lateral Movement in Data Centers Learn about the new vulnerability that was found in Debian’s Advanced Package Tool that allows for easy lateral movement in data center. https://www.akamai.com/blog/security/vulnerability-in-debians-advanced-package-tool Daniel Goldberg https://www.akamai.com/blog/security/vulnerability-in-debians-advanced-package-tool Wed, 23 Jan 2019 14:00:00 UTC A Deep Dive into Point of Sale Security For many, Point of Sale systems are the weakest link in the IT security chain. Learn the microsegmentation policies that can make a difference. https://www.akamai.com/blog/security/understanding-point-of-sale-security Ron Shahnovsky https://www.akamai.com/blog/security/understanding-point-of-sale-security Thu, 17 Jan 2019 16:42:00 UTC Preparing for Y2038 (Already?!) It is possible that the need to upgrade and replace systems in the lead-up to 2038 will force the retirement of some remaining IPv4-only systems and networks. https://www.akamai.com/blog/performance/preparing-for-y2038-already Erik Nygren https://www.akamai.com/blog/performance/preparing-for-y2038-already Thu, 10 Jan 2019 06:32:00 UTC From the Core to the Edge: 3 Security Imperatives and the Evolving Digital Topology The breathtaking pace at which everyone and everything is becoming connected is having a profound effect on digital business, from delivering exceptional experiences, to ensuring the security of your customers, applications, and workforce.... https://www.akamai.com/blog/security/from-the-core-to-the-edge-3-security-imperatives-and-the-evolving-digital-topology Ari Weil https://www.akamai.com/blog/security/from-the-core-to-the-edge-3-security-imperatives-and-the-evolving-digital-topology Sun, 06 Jan 2019 05:00:00 UTC Life at Akamai: Making Connections By the numbers, Akamai's scale, reach and ability to help brands connect users to immersive and immediate online experiences while protecting their businesses from threats, is quite impressive. While I'm proud that Akamai connects with billions of devices daily and... https://www.akamai.com/blog/culture/life-at-akamai-making-connections Julie Carey https://www.akamai.com/blog/culture/life-at-akamai-making-connections Fri, 04 Jan 2019 05:00:00 UTC Low, Medium and High Interaction Honeypot Security Honeypots are a popular way to protect data centers and learn about attackers. Learn the difference between high and low interaction honeypot security. https://www.akamai.com/blog/security/high-interaction-honeypot-versus-low-interaction-honeypot-comparison Igor Livshitz https://www.akamai.com/blog/security/high-interaction-honeypot-versus-low-interaction-honeypot-comparison Thu, 03 Jan 2019 19:10:00 UTC Quiz Phishing: One Scam, 78 Variations Over the past year, Akamai Enterprise Threat Research team monitored the usage of one particular phishing toolkit in the wild. We previously wrote about this phishing toolkit as "Three Questions Quiz". The "Quiz" toolkit is not new to the threat landscape, as its been used in many phishing campaigns in recent years. Our goal here is to present new insights on the evolution and scale of usage of the toolkit in the wild. The most surprising insight was the variety of commercial brands being abused as part of these phishing scams that were all using the same toolkit, but wearing a different face. https://www.akamai.com/blog/security/quiz-phishing--one-scam--78-variations Or Katz https://www.akamai.com/blog/security/quiz-phishing--one-scam--78-variations Sat, 15 Dec 2018 07:00:00 UTC Bread And Butter Attacks We continuously find that the most basic attack methods that worked ten years ago still work and will probably continue to be effective in the future. https://www.akamai.com/blog/security/bread-and-butter-attacks Daniel Goldberg & Ofri Ziv https://www.akamai.com/blog/security/bread-and-butter-attacks Thu, 29 Nov 2018 14:00:00 UTC An Experiment With Reverse Mentoring at Akamai India: Women Mentoring Senior Leaders on Gender Inclusion! Rumi said, "Clean out your ears, don't listen for what you already know." And that's exactly what leaders at Akamai India did during the pilot event of Flip, a reverse mentoring event, held earlier this month. High potential women from... https://www.akamai.com/blog/culture/an-experiment-with-reverse-mentoring-at-akamai-india-women-mentoring-senior-leaders-on-gender-inclusion Akamai https://www.akamai.com/blog/culture/an-experiment-with-reverse-mentoring-at-akamai-india-women-mentoring-senior-leaders-on-gender-inclusion Wed, 28 Nov 2018 05:00:00 UTC Scanning Akamai’s Edge Servers for Vulnerabilities, Correctly Continuous monitoring of the Akamai Edge Platform for security vulnerabilities is an integral part of all engineering efforts at Akamai. In addition to our internal vulnerability management program, we engage with third-party assessors to periodically perform external scans of our systems since this is required for compliance with security standards such as PCI DSS and FedRAMP. https://www.akamai.com/blog/security/scanning-akamai-s-edge-servers-for-vulnerabilities--correctly Kaan Onarlioglu https://www.akamai.com/blog/security/scanning-akamai-s-edge-servers-for-vulnerabilities--correctly Fri, 16 Nov 2018 14:44:00 UTC Protecting Your Website Visitors from Magecart Learn mitigation options that prevent your site from JavaScript skimmer code threats and protects your customers. https://www.akamai.com/blog/security/protect-website-visitors-from-megacart Ryan Barnett https://www.akamai.com/blog/security/protect-website-visitors-from-megacart Thu, 15 Nov 2018 14:00:00 UTC How CDN Can Make Your APIs More Powerful Companies of all sizes and in every industry use APIs for a staggering range of activities. Just a few examples: APIs make it easy to include weather forecasts in apps, recommend driving routes where you are least likely to have an accident, and allow banks to comply with open banking regulations. https://www.akamai.com/blog/developers/how-cdn-can-make-your-apis-more-powerful Shantanu Kedar https://www.akamai.com/blog/developers/how-cdn-can-make-your-apis-more-powerful Mon, 12 Nov 2018 05:00:00 UTC Security Response Headers Security response headers are a critical security capability that all organizations should consider. This blog post is the first in a series that will discuss different security headers and go in-depth with how to configure them for maximum benefit. https://www.akamai.com/blog/security/security-response-headers Ryan Barnett https://www.akamai.com/blog/security/security-response-headers Wed, 17 Oct 2018 13:00:00 UTC Domain Name Consolidation: Observations From the Field The market and marketing of Web property domain names is changing. Companies prefer to promote top level domains (TLDs), have the option of selecting brand-relevant domain extensions (e.g. SaaS.com), and no longer need country-relevant domains to optimize search engine result rankings. https://www.akamai.com/blog/trends/domain-name-consolidation-observations Danny Stern https://www.akamai.com/blog/trends/domain-name-consolidation-observations Thu, 06 Sep 2018 20:04:00 UTC Akamai India's StandTall Program Diversity and Inclusion is a mission-critical goal at Akamai. In support of this goal, the India Learning and Development team in collaboration with the Women's Forum India (employee resource group), launched an initiative that aims to foster a culture of... https://www.akamai.com/blog/culture/standtall-program-at-akamai Akamai https://www.akamai.com/blog/culture/standtall-program-at-akamai Thu, 06 Sep 2018 04:00:00 UTC Giving Back through Danny Lewin Community Care Days Akamai was fortunate to have Danny Lewin as a co-founder and role model for our business, our culture, and our sense of adventure and accomplishment. It was Danny who helped to instill the Big Idea that we would change the... https://www.akamai.com/blog/culture/danny-lewin-community-care-days Akamai https://www.akamai.com/blog/culture/danny-lewin-community-care-days Wed, 22 Aug 2018 04:00:00 UTC Datacenter Traces In our research we use actual traces, collected from different production datacenters. https://www.akamai.com/blog/security/datacenter-traces Akamai https://www.akamai.com/blog/security/datacenter-traces Mon, 06 Aug 2018 13:00:00 UTC VLAN Network Segmentation – What are The Hidden Costs? https://www.akamai.com/blog/security/hidden-cost-vlan-segmentation Ariel Zeitlin https://www.akamai.com/blog/security/hidden-cost-vlan-segmentation Sun, 29 Jul 2018 04:00:00 UTC Experiment: Improving Page Load Times with Script Streaming https://www.akamai.com/blog/performance/2024/sep/experiment-improving-page-load-times-with-script-streaming ugoel@akamai.com (Utkarsh Goel) https://www.akamai.com/blog/performance/2024/sep/experiment-improving-page-load-times-with-script-streaming Tue, 17 Jul 2018 23:55:00 UTC HTTP+TLS and IPV6-Enablement Both in the Majority for World Cup Streaming The underlying protocols of the Internet continue to evolve, and massive events such as the World Cup are a great opportunity to see this in action. https://www.akamai.com/blog/performance/http-tls-ipv6-enablement-majority-for-world-cup-streaming Erik Nygren https://www.akamai.com/blog/performance/http-tls-ipv6-enablement-majority-for-world-cup-streaming Tue, 17 Jul 2018 13:00:00 UTC We Are Akamai: What Led Us Here About Akamai and the blog We are the people at the heart of the internet. Every day, we work together to protect our customers, deliver ultimate experiences in the digital world, and connect people from far corners of the planet.... https://www.akamai.com/blog/culture/we-are-akamai-what-led-us-here Hema Patel https://www.akamai.com/blog/culture/we-are-akamai-what-led-us-here Thu, 21 Jun 2018 04:00:00 UTC Six Years Since World IPv6 Launch: Entering the Majority Phases While we still have a ways to go before residual users of IPv4 are truly "laggards", we are at a stage where the use of IPv6 should be considered the norm. https://www.akamai.com/blog/performance/six-years-since-world-ipv6-launch Erik Nygren https://www.akamai.com/blog/performance/six-years-since-world-ipv6-launch Wed, 06 Jun 2018 19:00:00 UTC Operation Prowli: Monetizing 40,000 Victim Machines Operation Prowli: Monetizing 40,000 Victim Machines https://www.akamai.com/blog/security/operation-prowli-traffic-manipulation-cryptocurrency-mining Daniel Goldberg, Ofri Ziv & Mor Matalon https://www.akamai.com/blog/security/operation-prowli-traffic-manipulation-cryptocurrency-mining Wed, 06 Jun 2018 17:20:00 UTC Demystifying API Rate Limiting APIs are the “digital glue” that integrates and connects infrastructure, services, devices, and users. With the proliferation of APIs in almost every organization, it‘s essential to have a mechanism in place to manage and govern them. That’s why we introduced Akamai API Gateway, which makes it easier for you to add governance to your APIs. https://www.akamai.com/blog/developers/demystifying-api-rate-limiting Shantanu Kedar https://www.akamai.com/blog/developers/demystifying-api-rate-limiting Wed, 30 May 2018 04:00:00 UTC Introducing New WhoAmI Tool DNS Resolver Information The Domain Name System (DNS) tools “whoami.akamai.net” and its alias “whoami.akamai.com” have been used for many years, often as a step in the process for diagnosing how a content delivery network (CDN) is directing traffic, locality, and network reachability issues. Whoami was originally introduced as a quick solution that, as often happens, ended up sticking around for far longer than expected. https://www.akamai.com/blog/developers/introducing-new-whoami-tool-dns-resolver-information Mario Korf https://www.akamai.com/blog/developers/introducing-new-whoami-tool-dns-resolver-information Wed, 09 May 2018 04:00:00 UTC How-To: Add Timing-Allow-Origin Header to Improve Your Website Performance Measurements https://www.akamai.com/blog/performance/2024/sep/improve-your-website-performance-measurements ugoel@akamai.com (Utkarsh Goel) https://www.akamai.com/blog/performance/2024/sep/improve-your-website-performance-measurements Fri, 27 Apr 2018 13:00:00 UTC Introducing Web Security Analytics Every security team knows that the success of any security product relies heavily on the ability to maintain an optimal security configuration. Any misconfiguration can result in malicious or undesired traffic reaching the application, or worse - legitimate traffic being blocked. In addition, it can result in noisy false positive security events, which can eventually mask real attacks from being detected and blocked. What is Web Security Analytics? Akamai's new Web Security Analytics tool provides a single unified and efficient interface to assess a wide range of security events, perform analysis of events, and evaluate any needed changes in order to maintain an optimal security configuration. For example, customers can use this tool to better: https://www.akamai.com/blog/security/introducing-web-security-analytics Ori Kanfer https://www.akamai.com/blog/security/introducing-web-security-analytics Sat, 14 Apr 2018 13:00:00 UTC The Dark Side of APIs: Part 1, API Overview Application Programming Interfaces (API) are a software design approach which enables software and system developers to integrate with other systems based on a defined set of communication methods. APIs serve as software building blocks and allow for software reuse - essentially allowing fast development of new systems based on existing capabilities. https://www.akamai.com/blog/security/the-dark-side-of-apis--part-1--api-overview Ryan Barnett https://www.akamai.com/blog/security/the-dark-side-of-apis--part-1--api-overview Thu, 12 Apr 2018 13:00:00 UTC Illuminating the Path to Digital Maturity Research By Akamai and Forrester Sheds New Light on Digital Experience Challenges and Opportunities Nearly every business today is striving to create and deliver digital experiences that stand apart. But it's no small task turning those visions into reality. Moreover,... https://www.akamai.com/blog/news/illuminating-the-path-to-digital-maturity-research-by-akamai-and-forrester-sheds-new-light-on-digital Ari Weil https://www.akamai.com/blog/news/illuminating-the-path-to-digital-maturity-research-by-akamai-and-forrester-sheds-new-light-on-digital Wed, 28 Mar 2018 04:00:00 UTC Recovering Plaintext Passwords from Azure Virtual Machines Security design flaw in the VM Access plugin that may enable a cross platform attack impacting every machine type provided by Azure. Read More... https://www.akamai.com/blog/security/recovering-plaintext-passwords-azure Daniel Goldberg https://www.akamai.com/blog/security/recovering-plaintext-passwords-azure Mon, 19 Mar 2018 13:00:00 UTC Experiments with Browser Preconnects https://www.akamai.com/blog/performance/2024/sep/experiments-with-browser-preconnects ugoel@akamai.com (Utkarsh Goel) https://www.akamai.com/blog/performance/2024/sep/experiments-with-browser-preconnects Thu, 15 Mar 2018 13:00:00 UTC Your Cache is Exposed On February 28, Akamai recorded a 1.35 Tbps DDoS attack against one of our customers. The attack was driven by a relatively new vector, memcached reflection. Possibly the largest publicly disclosed DDoS attack to date, the memcached attack was more than twice the size of the largest DDoS attacks that were launched against an Akamai customer by the operators of the Mirai botnet in September of 2016. https://www.akamai.com/blog/security/your-cache-exposed Chad Seaman https://www.akamai.com/blog/security/your-cache-exposed Tue, 27 Feb 2018 07:52:00 UTC Beware of PerformanceTiming.domInteractive https://www.akamai.com/blog/performance/2024/aug/dominteractive-measurement ugoel@akamai.com (Utkarsh Goel) https://www.akamai.com/blog/performance/2024/aug/dominteractive-measurement Mon, 04 Dec 2017 14:00:00 UTC How-To: Replaying Cellular Network Characteristics on Cloud Infrastructure https://www.akamai.com/blog/cloud/2024/aug/replaying-cellular-network-characteristics-on-cloud-infrastructure ugoel@akamai.com (Utkarsh Goel) https://www.akamai.com/blog/cloud/2024/aug/replaying-cellular-network-characteristics-on-cloud-infrastructure Mon, 27 Nov 2017 14:00:00 UTC Introduction to DNS Data Exfiltration Written by Asaf Nadler and Avi Aminov Updated 2/14/19 After the initial publication of this blog post, Asaf Nadler and Avi Aminov wrote a paper on the detection of malicious and low throughput data exfiltration over the DNS protocol. The... https://www.akamai.com/blog/news/introduction-to-dns-data-exfiltration Asaf Nadler https://www.akamai.com/blog/news/introduction-to-dns-data-exfiltration Thu, 21 Sep 2017 04:00:00 UTC When Looking for SWIFT Audit Guidelines, Beware of the Customer Security Controls Framework https://www.akamai.com/blog/security/beware-swift-customer-security-controls-framework Ariel Zeitlin https://www.akamai.com/blog/security/beware-swift-customer-security-controls-framework Tue, 12 Sep 2017 18:37:00 UTC The WireX Botnet: An Example of Cross-Organizational Cooperation On August 17th, 2017, multiple Content Delivery Networks (CDNs) and content providers were subject to significant attacks from a botnet dubbed WireX. The botnet is named for an anagram for one of the delimiter strings in its command and control protocol. The WireX botnet comprises primarily Android devices running malicious applications and is designed to create DDoS traffic. The botnet is sometimes associated with ransom notes to targets. https://www.akamai.com/blog/security/example-of-cross-organizational-cooperation Akamai InfoSec https://www.akamai.com/blog/security/example-of-cross-organizational-cooperation Mon, 28 Aug 2017 12:05:00 UTC How to Build Virtual Python Environment In the DevOps world, getting a consistent development environment is crucial. In this post, I'll show you how to set up a virtual Python environment and install the correct libraries to achieve a consistent development environment. https://www.akamai.com/blog/developers/how-building-virtual-python-environment Akshay Ranganath https://www.akamai.com/blog/developers/how-building-virtual-python-environment Wed, 21 Jun 2017 04:00:00 UTC The Bondnet Army: Questions & Answers The following is a select list of questions and answers that we hope will shed more light on the botnet. https://www.akamai.com/blog/security/bondnet-army-qnda Ravit Greitser https://www.akamai.com/blog/security/bondnet-army-qnda Thu, 11 May 2017 13:00:00 UTC What You Need to Know About Caching Video Series In this "unofficial" video series, Akamai Solutions Engineers Tedd Smith and CJ Arnesen explain the basics of caching: what it is, why it's important, and how to get the most out of it. A great introduction to Akamai, caching, and content delivery network (CDN) basics, this series supplements Akamai Quick Starts and User Guides to help you level set new team members and other departments within your organization. https://www.akamai.com/blog/developers/what-you-need-know-about-caching-part-1 Mario Korf https://www.akamai.com/blog/developers/what-you-need-know-about-caching-part-1 Tue, 28 Mar 2017 04:00:00 UTC SambaCry, the Seven Year Old Samba Vulnerability, is the Next Big Threat (for now) As Samba is used as part of many organizations storage systems, we will discuss the impact of the vulnerability on organizations and home users. https://www.akamai.com/blog/security/sambacry-seven-year-old-samba Daniel Goldberg https://www.akamai.com/blog/security/sambacry-seven-year-old-samba Sat, 25 Mar 2017 13:00:00 UTC 0.2 BTC Strikes Back, Now Attacking MySQL Databases In this post we will describe how GGSN detected a wide ransomware attack targeting MySQL databases and provide recommendations on how to protect your database. https://www.akamai.com/blog/security/btc-strikes-back-now-attacking-mysql-databases Ofri Ziv https://www.akamai.com/blog/security/btc-strikes-back-now-attacking-mysql-databases Fri, 24 Feb 2017 14:00:00 UTC 17 Essential Skills for Performance Engineers Most people in the performance engineering field agree that our skillset is derived from an intersection of disciplines that include testing, optimization, and systems engineering. https://www.akamai.com/blog/developers/17-essential-skills-for-performance-engineers Eric Proegler https://www.akamai.com/blog/developers/17-essential-skills-for-performance-engineers Wed, 11 Jan 2017 05:00:00 UTC Convenient Mobile Commerce is the Key to Success this Holiday Season With the Black Friday, Cyber Monday holiday weekend upon us, retailers in the U.S. and abroad are preparing for another peak period for customer acquisition and commerce revenues. In 2016, the U.S. eCommerce market is the second largest globally and... https://www.akamai.com/blog/news/convenient-mobile-commerce-is-the-key-to-success-this-holiday-season Ari Weil https://www.akamai.com/blog/news/convenient-mobile-commerce-is-the-key-to-success-this-holiday-season Wed, 23 Nov 2016 05:00:00 UTC Yes, My Name is || Different cultures and nationalities have different naming conventions; I came from a one that led me to face the universe with a personal name "Or". I fact, my name has different meanings in different languages. In English the meaning of "Or" is function word that indicate alternatives and in computer coding languages the name "Or" is being used as Boolean operator that enable us to write conditions in our code. https://www.akamai.com/blog/security/yes--my-name-is--- Or Katz https://www.akamai.com/blog/security/yes--my-name-is--- Thu, 03 Nov 2016 07:00:00 UTC Planning for the End of 2016: A Leap Second and the End-of-Support for SHA-1 TLS Certificates A leap second and the final end of browser support for SHA-1 TLS certificates will happen and can potentially break software systems and applications. https://www.akamai.com/blog/security/the-end-of-support-for-sha-tls-certificates Erik Nygren https://www.akamai.com/blog/security/the-end-of-support-for-sha-tls-certificates Wed, 02 Nov 2016 13:00:00 UTC The PhotoMiner Campaign In this report we will share our research on the PhotoMiner’s timelines, infection strategies, C&C servers and provide tools to help detect the malware. https://www.akamai.com/blog/security/the-photominer-campaign Daniel Goldberg https://www.akamai.com/blog/security/the-photominer-campaign Tue, 14 Jun 2016 13:00:00 UTC How to Report Your Performance Test Results Like a Pro Performance tests try to reduce the risks of downtime or outages on multi-user systems by conducting experiments that use load to reveal limitations and errors in the system. Testing usually involves assessing the performance and capacity of systems that were expensive and time-consuming to build. https://www.akamai.com/blog/developers/how-to-report-your-performance-test-results-like-a-pro Eric Proegler https://www.akamai.com/blog/developers/how-to-report-your-performance-test-results-like-a-pro Wed, 20 Apr 2016 04:00:00 UTC Revealing Guardicore Reveal™ https://www.akamai.com/blog/security/revealing-guardicore-reveal Lior Neudorfer https://www.akamai.com/blog/security/revealing-guardicore-reveal Fri, 04 Mar 2016 10:46:00 UTC Redirecting On the Edge On the web, every second counts. Service engineers and operations teams are looking for ways to save milliseconds from web pages' load times. One of the simpler ways to squeeze better performance from web pages already using a Content Delivery Network (CDN) is to move the redirection responses from origin to the edge. https://www.akamai.com/blog/developers/redirecting-on-the-edge Danny Stern https://www.akamai.com/blog/developers/redirecting-on-the-edge Fri, 12 Feb 2016 21:08:00 UTC Data Center Ransomware https://www.akamai.com/blog/security/data-center-ransomware Misha Yaverbaum https://www.akamai.com/blog/security/data-center-ransomware Mon, 20 Jul 2015 11:20:00 UTC Launching Forward with IPv6 With the era of freely available IPv4 addresses nearing its end, I'm pleased to see that 2012 appears to be the year when the IPv6 Internet will finally reach maturity and launch into wide-scale commercial use. For over a decade, the groundwork for the migration to version 6 of the Internet Protocol (IPv6) has been built, with changes to operating systems, client and server software, routers, and Internet backbone networks. To-date, however, the availability of IPv6 content and end-users has remained slim with few Web sites being available over IPv6 and with just over 0.5% of global Internet users having IPv6 connectivity that their machines will elect to use. https://www.akamai.com/blog/performance/launching-forward-with-ipv6 Erik Nygren https://www.akamai.com/blog/performance/launching-forward-with-ipv6 Fri, 01 Jun 2012 01:52:00 UTC Keep Your Tech Flame Alive: Trailblazer Rachel Bayley In this Akamai FLAME Trailblazer blog post, Rachel Bayley encourages women to step into the unknown and to be their authentic selves. https://www.akamai.com/blog/culture/2024/may/keep-your-tech-flame-alive-trailblazer-rachel-bayley Akamai FLAME Team https://www.akamai.com/blog/culture/2024/may/keep-your-tech-flame-alive-trailblazer-rachel-bayley Threats Making WAVs - Incident Response to a Cryptomining Attack Guardicore security researchers describe and uncover a full analysis of a cryptomining attack, which hid a cryptominer inside WAV files. The report includes the full attack vectors, from detection, infection, network propagation and malware analysis and recommendations for optimizing incident response processes in data centers. https://www.akamai.com/blog/security/threats-making-wavs-incident-reponse-cryptomining-attack Guardicore Labs Team https://www.akamai.com/blog/security/threats-making-wavs-incident-reponse-cryptomining-attack The Oracle of Delphi Will Steal Your Credentials Our deception technology is able to reroute attackers into honeypots, where they believe that they found their real target. The attacks brute forced passwords for RDP credentials to connect to the victim download and execute a previously undetected malware, which we named Trojan.sysscan. https://www.akamai.com/blog/security/the-oracle-of-delphi-steal-your-credentials Daniel Goldberg https://www.akamai.com/blog/security/the-oracle-of-delphi-steal-your-credentials The Nansh0u Campaign – Hackers Arsenal Grows Stronger In the beginning of April, three attacks detected in the Guardicore Global Sensor Network (GGSN) caught our attention. All three had source IP addresses originating in South-Africa and hosted by VolumeDrive ISP (see IoCs). https://www.akamai.com/blog/security/the-nansh0u-campaign-hackers-arsenal-grows-stronger Ophir Harpaz & Daniel Goldberg https://www.akamai.com/blog/security/the-nansh0u-campaign-hackers-arsenal-grows-stronger PLEASE_READ_ME: The Opportunistic Ransomware Devastating MySQL Servers Guardicore Labs uncovers a Ransomware detection campaign targeting MySQL servers. Attackers use Double Extortion and publish data to pressure victims. https://www.akamai.com/blog/security/please-read-me-opportunistic-ransomware-devastating-mysql-servers Ophir Harpaz https://www.akamai.com/blog/security/please-read-me-opportunistic-ransomware-devastating-mysql-servers