In October 2021, YourLocalSecurity set out to find one brave soul to face their biggest fear head-on. After reading through all the applications, one person with a fear of gnomes caught our eye. “I have been absolutely terrified of garden gnomes since …
Discover and Announce: A Serverless Location Application Built on Akamai IoT Edge Connect
Learn about Discover and Announce, a 100% serverless application built on Akamai IoT Edge Connect, which can run entirely on the Akamai edge.
A Log4j Retrospective Part 2: Data Exfiltration and Remote Code Execution Exploits
Akamai CTO Charlie Gero shows how the Log4j threat surface could extend to unpatchable embedded and IoT devices.
Installing Rogue-jndi on Kali Linux
Following the previous tutorial in which we looked at the log4j vulnerability in VMWare vSphere server, I got some questions about how to set up a malicious LDAP server on Linux. The attacker controlled LDAP server is required to provide the malicious …
A Log4j Retrospective Part 1: Vulnerability Background
Learn about the widely used Java-based logging library Log4j and how its vulnerability and other capabilities presented a major opportunity to attackers.
Abuse and Fraud Prevention’s Co-Created Future ? Predictions for 2022 and Beyond
Explore some of the Akamai Abuse and Fraud Prevention team?s predictions for the future of abuse and fraud protection in 2022 and beyond.
The Great Christmas Download
Video game downloads and console updates helped game industry traffic peak at 125% above average on Christmas day according to Akamai, which supports more than 225 game publishers globally.
Defensive Security Podcast Episode 259
Defensive Security Podcast Defensive Security Podcast https://defensivesecurity.org GlobalDefenseBot GlobalDefenseBot
Keeping Up with the Botnets
It?s no secret that the global pandemic increased opportunities for threat actors and cybercriminals to target financial services. Throughout 2020, scammers used the economic tension caused by COVID-19 ? the promise of financial assistance, the stress …
Our Journey to Detect Log4j-Vulnerable Machines
Log4Shell (CVE-2021-44228) is a remote code execution (RCE) vulnerability in the Apache-foundation open-source logging library Log4j. It was published on December 9, 2021, and then all hell broke loose. As Log4j is a common logging library for Java app…