In the shared security responsibility model, Amazon Web Services (AWS) is responsible for the security of the cloud infrastructure that includes the physical facilities, servers, networking gears, and hypervisors. The customer, on the other hand, is responsible for the security of everything running in the cloud, such as the operating systems, applications/workloads, network configurations, data, and connections to the cloud. Scalable and cost-effective cloud security has become a top priority for enterprises as they are moving workloads to AWS in droves. With the Barracuda Web Application Firewall already in the AWS Security Competency program and the Barracuda NextGen Firewall joining soon, Barracuda is effectively one of a handful of security vendors that demonstrates deep … [Read More...]
Latest Posts
#AppSec News Roundup: DevSecOps, Medium, HackerOne, and more
It's time for another #AppSec News Roundup, and start with a topic close to our hearts! DevOps & Security: Butting Heads for Years but Integration is Happening Before I get into the survey results, le me get on my soapbox regarding the need to bring infrastructure, particularly security, and DevOps together. Digital transformation requires businesses to move with speed. Speed requires IT agility. IT agility requires app development and infrastructure to be agile and, in most organizations, security is anything but agile. In fact, security is often left to the very end so companies can build a new app and then have to wait months until the security teams have made their changes and are ready. A better approach is to build security into the application development … [Read More...]
Cybersecurity Professionals Need to Adjust to a New Reality
While most cybersecurity professionals continue to profess they are moderately to highly confident in the overall security posture of their organization growing concerns about phishing and ransomware attacks appears to be taking its toll. A new survey of 400 cybersecurity professionals participating in the Information Security Community on LinkedIn published this week by Crowd Research Partners finds that 79 percent of the respondents are either moderately to highly confident in their organization's security posture. But the majority of the respondents (42%) identified themselves as only being moderately confident. Sapping that confidence appears to be growing concerns about threats such as ransomware (48%), phishing attacks (48%) and data exfiltration/data loss (47%). The survey finds … [Read More...]
Meet Rackmount.IT and their custom mounting kit for Barracuda NextGen Firewall F18 and F80
Note: Here we have a guest post from our friends at Rackmount.IT. They announced their new rack mount kit on twitter a couple of weeks ago, and we thought it would be fun to have them introduce themselves to you. BREAKING: The prototype of our rack mount kit for #Barracuda F18 and F80. Bluemazing! Expecting stock end of August. #rackmount @barracuda pic.twitter.com/xsSsNKxyve — Rackmount.IT (@RackmountIT) July 27, 2017 Barracuda offers mounting hardware with our rack mount form factor appliances, but we do not include mounting kits for our smaller desktop appliances such as the NextGen Firewall F80. We also do not sell or endorse any particular rack mount provider, but we are excited to show you how this company has responded to customer … [Read More...]
Barracuda adds AWS replication to Barracuda Backup
Since launching Barracuda Backup many years ago, we've added several capabilities that give customers the option to deploy the data protection strategy that best fits their own unique business environments. Barracuda LiveBoot, Cloud-to-Cloud backup, and SharePoint Online Backup are just some of the exciting and innovative technologies we've introduced over the years. Now we're taking another step forward by adding support for replication to Amazon Web Services (AWS). Take a look at our press release here and our corporate site here for details. Barracuda Backup has supported secure and efficient offsite data replication for several years. Customers could configure replication to the Barracuda Cloud or to an offsite Barracuda Backup physical or virtual … [Read More...]
NIST Report Helps Explain Why Most Cybersecurity Professionals Are So Insecure
According to the report issued this week by the National Institute of Standards and Technology (NIST), the average IT security professional is doing the work of roughly seven people, which may account for why so many of them generally feel overwhelmed. While most organizations don’t really appreciate the challenges IT security professionals face every day there is some cold comfort in the cybersecurity professional in The National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework report published this week by NIST, an arm of the U.S. Department of Commerce tasked with among other things defining best practices for government agencies. … [Read More...]
Introducing Barracuda Sentinel – AI for Real-Time Spear Phishing Defense
Click here to register for our free webinar: Introducing Barracuda Sentinel – AI for Real-Time Spear Phishing Defense Free Webinar Sep 7th @ 10am PST / 1pm EST Register here Spear phishing is rapidly becoming the most significant security threat today. Everyone is a target: individuals, companies, governments. The attacks work because they are highly personalized and traditional security solutions fail to detect them—costing billions in financial, reputation, and brand damage. Join us for this exclusive look at Barracuda Sentinel – AI for real-time spear phishing and cyber fraud defense. In this webinar, we’ll provide a product overview, share use cases and common attacks, and give a brief demo – including live simulated spear phishing attacks. We’ll conclude … [Read More...]
Podcast: Ransomware – The Best Defense with Darius Goodall and ISMG
Recently our very own Darius Goodall sat down with Information Security Media Group (ISMG) to discuss the true impact of ransomware attacks and how to respond. It’s a great, lively discussion on this growing threat and includes best practices that any organization should be implementing today. Darius is our Director of Product Marketing for Security, and he's a regular contributor to our blog. You can read his articles here and connect with him on LinkedIn here. ISMG is a media organization that focuses entirely on information security and risk management. They have several brands in their network. Darius was featured on Data Breach Today, in the ransomware resource center. You can listen to the podcast from the ISMG site here. Here’s an excerpt from the ISMG site: … [Read More...]
Ransomware and K-12 – Threats and Solutions: Securing Your Network
*Note: This is the second post in a multi-part blog series that addresses ransomware threats and solutions in K-12 environments. Last month, we discussed Horry County School District’s experience with a crippling ransomware attack, having no choice but to pay a $10,000 ransom to unlock critical data and systems. We highlighted the first step in strengthening an organization’s security posture against such attacks: user training and awareness. Educating users to be aware of spoofed emails, misleading links, or suspicious attachments is an integral part of network security that can stop a ransomware attack before it even starts. While effective user training and awareness can significantly reduce the number of successful attacks, keeping your network free of malware also requires a … [Read More...]
IoT Cybersecurity Improvement Act Shows Promise
Most IT security professionals have come to expect that when it comes to new technologies any concerns about cybersecurity will be more or less an afterthought. And yet hope does somehow manage to spring eternal. A bipartisan bill has been introduced in the U.S. Senate this week that would require the Federal government to ensure that specific security measures are taken in any Internet of Things (IoT) project implemented by the U.S. government. The Internet of Things (IoT) Cybersecurity Improvement Act of 2017 sponsored by U.S. Senators Cory Gardner (R-CO) and Mark R. Warner (D-VA), co-chairs of the Senate Cybersecurity Caucus, and Sens. Ron Wyden (D-WA) and Steve Daines (R-MT) would require government agencies deploying an IoT solution to ensure devices are patchable, make use of … [Read More...]