Barracuda Network and Application Security

Security, Access, and Reliability for Cloud-Connected Networks and Applications

Traditional security strategies and firewalls were never intended for today’s cloud-integrated infrastructures and workloads. They can’t give branch offices direct access to your cloud applications. They often don’t support cloud-friendly consumption models, and they don’t have the scalability and flexibility that cloud-hosted applications demand.

Barracuda CloudGen Firewalls and Web Application Firewalls are the industry’s first solutions purpose-built for securing cloud-connected networks. They protect all your users, applications, and data – regardless of what your infrastructure looks like. They ensure secure and reliable connections among multiple sites on premises and the cloud with consumption-based pricing, saving you money on infrastructure costs.

Learn more and request a free trial.

The third pillar to actionable cloud security – Network Security (NetSec)

February 20, 2019 by Rich Turner

This post is the fifth in a series of eight on the five pillars to actionable cloud security. For the rest of the series, visit the Five Pillars blog page here

Many organizations make the mistake of beginning their cloud security framework discussions around NetSec, as this was traditionally how they secured on-premises infrastructure, since all elements of the network were in-house and under direct IT control. Companies erroneously assume that because they are leveraging a cloud infrastructure, either they will be less secure than when they “owned” all those resources, or that they can simply mirror their on-premises network security controls in the cloud.

Companies err in assuming that a public cloud infrastructure will either be less secure than the on-premises version, or that they can simply mirror their on-premises security controls in the cloud. ~ @rkturner1 Click To Tweet

Again, the cloud is different. The Shared Security model under which all cloud ecosystems operate inherently guarantees security of the network – but can’t guarantee the security of the companies who are accessing it. Or put another way, organizations using the cloud need to put security measures in place that will ensure they are not the source of threats and compromises.

Rich Turner

Rich is the Product Marketing Manager, Information Management. He's been with Barracuda since the acquisition of C2C Systems in 2014. Rich specializes in cloud-deployed solutions, information management, and archiving systems. His experience includes extensive work on OEM opportunities and the legal community.

If you'd like to get in touch with Rich, you can connect with him on LinkedIn and follow him on Twitter.

You can email Rich at rturner@barracuda.com.

Cyber-criminals versus white hats: The battle continues in 2019

February 18, 2019 by Phil Muncaster

It’s an epic confrontation seemingly without end. On the dark side: a sophisticated global underground economy worth potentially trillions of dollars. On the other: a balkanised group of law enforcement organisations, security researchers, vendors, academics, and national governments. Already this year, we’ve seen both sides make their first moves. The only thing that’s certain is that the CISOs stuck in the middle will continue to lose sleep over mounting threats.

As we move through 2019, IT security must become more proactive and business-aligned, because as good as law enforcement can be the underground economy will continue to undermine digital growth and corporate reputations.

It’s an epic confrontation seemingly without end. The only thing that’s certain is that the CISOs stuck in the middle will continue to lose sleep over mounting threats. ~Phil MuncasterClick To Tweet

Phil Muncaster

Phil Muncaster is a technology writer and editor with over 12 years’ experience working on some of the biggest technology titles around, including Computing, The Register, V3 and MIT Technology Review. He spent over two years in Hong Kong immersed in the Asian tech scene and is now back in London where information security has become a major focus for his work.

Follow Phil on Twitter and connect with him on LinkedIn.

http://www.barracuda.com

Digital business transformation requires zero-trust

February 15, 2019 by Mike Vizard

When it comes to cybersecurity the primary enemy is integration. Without integration, all our applications and systems would be inherently secure. Alas, most applications only provide business value when they are connected to another application. The inherent problem that creates from a cybersecurity perspective is any IT environment is only as robust as its weakest application link.

An Accenture Technology Vision 2019 report published this month highlights how problematic this integration has become. The report finds that only 29 percent of the 6,672 business and IT executives surveyed know whether partners are working as diligently on security and compliance as they are. Cybercriminals are constantly scanning for vulnerabilities within organizations that can treat as a gateway to penetrate a larger ecosystem. Even ecosystems manage by industry behemoths such as Apple and Google are vulnerable. It was revealed this week that more digital pirates are creating clones of applications that wind up being deployed on the Apple Store because the credentials of developers have been compromised. Google and Microsoft are dealing with a similar issue. Cryptominers have embedded their malware in applications being downloaded via Google Play and the Microsoft Store.

'Without integration, all our applications and systems would be inherently secure. Alas, most applications only provide business value when they are connected to another application.' ~ Mike VizardClick To Tweet

Mike Vizard

Mike Vizard has covered IT for more than 25 years, and has edited or contributed to a number of tech publications including InfoWorld, eWeek, CRN, Baseline, ComputerWorld, TMCNet and Digital Review. He currently blogs for IT Business Edge and contributes to CIOinsight, The Channel Insider, Programmableweb and Slashdot. Mike also blogs about emerging cloud technology for SmarterMSP.

Connect with Mike on LinkedIn, Twitter, and Google+.

https://www.linkedin.com/in/michaelvizard

AppSec News Roundup for January 2019: WebStresser, Mirai, reCAPTCHA, and more

February 14, 2019 by Tushar Richabadas

Application security news never stops, and it can be hard to follow all of the incidents that are #AppSec related. In this roundup, I've picked a handful of the most significant news items from January 2019.

Credential Stuffing Attacks are increasing, and free raw material is abundant

Credential stuffing attacks are becoming increasingly common and visible. Two especially visible examples occurred in the last couple of months – Warby Parker and DailyMotion. For more information on credential stuffing attacks, including anatomy of an attack and a diagram, visit the OWASP site here.

A “megabreach” was also discovered this month. As with most such “megabreach” credential dumps, this one seems to be a merged list of multiple older breaches, with a few million newer credentials in the mix.

Troy Hunt’s HaveIBeenPwned has integrated this list, in case you want to check on your credentials.

Our latest #AppSec blog discusses credential stuffing, megabreaches, and includes resources to help you find out if you are a victim. Click To Tweet

Tushar Richabadas

Tushar Richabadas is a Product Manager for the Barracuda Web Application Firewall and Barracuda Load Balancer ADC. His current areas of focus are Cloud and automation. His prior roles ranged from leading networking product testing teams and technical marketing for HCL-Cisco. Tushar closely tracks the rapidly increasing impact of digital security and is passionate about simplifying digital security for everyone.

Connect with him on LinkedIn here.

http://www.barracuda.com

The second pillar to actionable cloud security – Detection Controls

February 13, 2019 by Rich Turner

This post is the fourth in a series of eight on five pillars to actionable cloud security. For the rest of the series, visit the Five Pillars blog page here.

This next step or pillar relies on first being able to determine who is allowed access and to what – and then detecting anomalies. Typically, Detection Controls focus on intrusion, more commonly known as Intrusion Detection Systems (IDS). These are automated, and are designed to monitor and analyze network traffic, and to generate an alert in response to activity that either matches known malicious patterns or is anomalous. Some IDS controls go further: they will trigger automated processes that can include recording suspicious activity or scanning the computers involved to try to find signs of compromise.

An IDS differs from a firewall in that the IDS looks for intrusions that 1) have already occurred 2) are currently underway, or 3) originate from within the network. ~ @rkturner1Click To Tweet

Rich Turner

If you'd like to get in touch with Rich, you can connect with him on LinkedIn and follow him on Twitter.

You can email Rich at rturner@barracuda.com.

Cybersecurity spending on the rise is both good and bad news

February 8, 2019 by Mike Vizard

A survey of subscribers to the eSecurity Planet web site published this week confirms that it’s the best and worst of times for cybersecurity.

The survey finds more than half of respondents (54%) plan to increase their IT security spending this year, with 30 percent aiming to increase their spending by 10 to 20 percent or more. The survey also notes that 57 percent of respondents report their organizations plan to hire additional security staff in the next 12 months. That signals there is some welcome relief on the way for hard-pressed cybersecurity professionals. It also indicates clearly that organizations are planning to throw a lot more money at a cybersecurity problem that continues to frustrate all concerned.

Recent survey: most organizations plan to increase their IT security spending this year, with 30% planning to increase by 10-20% or more. Click To Tweet

Mike Vizard

Connect with Mike on LinkedIn, Twitter, and Google+.

https://www.linkedin.com/in/michaelvizard

The first pillar to actionable cloud security – Identity and Access

February 6, 2019 by Rich Turner

This is the third post in a series of eight on the five pillars to actionable cloud security. For the rest of the series, visit the Five Pillars blog page here.

Since the cloud isn’t an on-premises solution, securing access is a natural starting point. Traditionally, customers look at identity management and access management from the standpoint of users. Users, which can be further categorized into groups, will also have associated roles, and permissions associated with these roles.

Even within similar organizations – example, a company may have multiple groups within a larger development organization, with different permissions associated both to the roles those users have and the groups to which they belong. It is not necessarily a linear relationship.

'As organizations look to leverage cloud services for transformation, they must be sure to understand those services in terms of how they are accessed and managed.' ~@rkturner1Click To Tweet

Rich Turner

If you'd like to get in touch with Rich, you can connect with him on LinkedIn and follow him on Twitter.

You can email Rich at rturner@barracuda.com.

Come to terms with the real enemies of cloud security

February 2, 2019 by Mike Vizard

One of the biggest issues with cloud security arguably has very little to do with technology. Most breaches involving the cloud are generally the result of one misconfiguration or another. In theory, that should not be a big deal if the files being purloined are encrypted. But new research from Vera Security, a provider of information rights management tools, confirms what most cybersecurity professionals already know all too well. Only four percent of breached files were encrypted.

Most end users can’t seem to be bothered with encryption. Despite all warnings to the contrary, unencrypted data is strewn across the extended enterprise. In fact, only 35 percent of respondents to the Vera Security build encryption into security processes and procedures across the board, and only 26 percent employ digital rights management that could be employed to revoke access rights to a file.

Recent survey: only 35% of cybersecurity professionals build encryption into security processes and procedures across the company. ~ @MVizard Click To Tweet

Mike Vizard

Connect with Mike on LinkedIn, Twitter, and Google+.

https://www.linkedin.com/in/michaelvizard

Time to end spurious debates over cybersecurity budget allocations

January 25, 2019 by Mike Vizard

A recent global survey of 450 security professionals conducted by ResearchScope finds organizations are increasingly augmenting their next-generation firewall (NGF)/intrusion detection systems (IDS) with investments in deception technologies that rely on traps and decoys to discover how malware is proliferating across their internal systems.

Main goals of cybersecurity pros: Stop threats from getting into the environment, and aggressively hunt anything that makes it past the perimeter. Click To Tweet

Mike Vizard

Connect with Mike on LinkedIn, Twitter, and Google+.

https://www.linkedin.com/in/michaelvizard

Threat Spotlight: IoT application vulnerabilities leave IOT devices open to attack

January 24, 2019 by Erez Turjeman

IoT devices were popular gifts again this holiday season. An acronym for Internet of Things, IoT is more than a buzzword. The trend represents a huge shift in how products are made and used, as network connectivity is added to products that were not previously intended to have this functionality. So, your refrigerator that sends you a text message when you're out of milk: IoT. Your thermostat that provides usage graphs on your phone: yep, IoT. Basically, any consumer device capable of connecting to a network other than a computer, phone, tablet, or router is considered an IoT device.

Security has been a big concern with IoT devices, though. Although improvements have been made, new types of vulnerabilities remain. For example, the Barracuda Labs teams recently used an IoT security camera to help illustrate a new threat: IoT credential compromise, which uses web and mobile application vulnerabilities to compromise IoT devices. [Read more…] about Threat Spotlight: IoT application vulnerabilities leave IOT devices open to attack

Erez Turjeman

Erez Turjeman is senior software engineer and a security researcher for Barracuda Labs.

http://www.barracuda.com