[SingCERT] Unsecured Virtual Network Computing (VNC) Configurations

Virtual Network Computing (VNC) is an open-source desktop sharing technology that enables users to access and control their home computers remotely over the Internet. Examples include enabling remote technical support to critical systems, allowing users to work from home, accessing home surveillance systems remotely from workplace, etc. An unsecured VNC Continue Reading

[SingCERT] Software Vulnerability in Symantec's Antivirus Engine

Symantec’s Antivirus Engine (AVE) has been reported as vulnerable to memory corruption due to a flaw when parsing a specially crafted Portable Executable (PE) file. On computers that are running Windows operating system, a successful exploitation of the vulnerability will result in a system crash – displaying a blue screen Continue Reading

Network Security for the Software-Defined Data Center

Scott Berger has his pulse on the IT security industry, and he talked with us at HIMSS 2016 to share some insights on the value of Fortinet’s Next-Generation Firewall into a VMware NSX Environment, the rise of internal segmentation firewalls an…

Webuzo 2.4.3 Released

Hi, The Webuzo Team has released Webuzo 2.4.3. This version introduces some major improvements and fixes. The following is a list of all changes : 1) [Feature] We have revamped Admin panel UI. The new UI is based on Bootstrap and is responsive. 2) [Feature] You will now be able Continue Reading

Using HTTP/2 Server Push with PHP

Two weeks ago CloudFlare announced that it was supporting HTTP/2 Server Push for all our customers. By simply adding a Link header to an HTTP response specifying preload CloudFlare would automatically push items to web browsers that support Server Push. To illustrate how easy this is I create a small Continue Reading

GitLab 8.7.5 Released

Today we are releasing version 8.7.5 for GitLab Community Edition (CE) and Enterprise Edition (EE). It includes the following fixes: CE/EE: Fix relative links in wiki pages. (!4050) CE/EE: Fix always showing build notification message when switching between merge requests (!4086) CE/EE: Fix an issue when filtering merge requests with Continue Reading

Cut your network port count per server by 50% with Windows Server 2016

This post was authored by Don Stanwyck, Senior Program Manager, Windows Server. Network complexity is largely driven by the number of nodes connected to it and the number of paths between them. The situation is compounded when multiple protocols operate over the shared resource. Windows Server 2016 simplifies the network Continue Reading

Open sourcing our NGINX HTTP/2 + SPDY code

In December, we released HTTP/2 support for all customers and on April 28 we released HTTP/2 Server Push support as well. The release of HTTP/2 by CloudFlare had a huge impact on the number of sites supporting and using the protocol. Today, 50% of sites that use HTTP/2 are served Continue Reading

Deeper Integration of Search Console in Google Analytics

(Cross-posted from the Google Analytics Blog.) Google Analytics helps brands optimize their websites and marketing efforts for all sources of traffic, and Search Console is where website owners manage how they appear in Google organic search results. Today, we are introducing the ability to display Search Console metrics alongside Google Continue Reading

GitLab 8.7.3 Released

Today we are releasing version 8.7.3 for GitLab Community Edition (CE) and Enterprise Edition (EE). It includes the following fixes: CE/EE: OpenSSL upgraded to 1.0.1h to fix CVE-2016-2107 CE/EE: Emails, Gitlab::Email::Message, Gitlab::Diff, and Premailer::Adapter::Nokogiri are now instrumented (!4038) CE/EE: Merge request widget displays TeamCity build state and code coverage correctly Continue Reading

WordPress 4.5.2 Security Release

WordPress 4.5.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.5.1 and earlier are affected by a SOME vulnerability through Plupload, the third-party library WordPress uses for uploading files. WordPress versions 4.2 through 4.5.1 Continue Reading

Red Hat Launches Independent Sales Representative (ISR) program in Canada

Red Hat today announced an Independent Sales Representative (ISR) program in Canada to offer its full suite of open source solutions for cloud, Linux, middleware, storage, and virtualization technologies in collaboration with channel leaders Keating Technologies and Tech Data.

A New Variant of Locky Leaking Out

Locky, the professional grade ransomware has been causing headaches and damages to victim’s wallet for quite sometime. It uses the document-based macros for ransomware distribution, encrypts files on the victims’ computers with an additio…

New Fareit Variant Analysis

Fareit is a family of malware designed to steal confidential information. It has been around for several years, and typically steals system information and application credentials stored on infected systems. Recently, our FortiGuard Lab captured a n…

[SingCERT] Ransomware

Ransomware is a type of malware that holds a victim’s files, computer system or mobile device ransom, restricting access until a ransom is paid. Operating systems that can be infected include Windows, Mac OS X and Linux. Some ransomware variants are also known to traverse across the network and encrypt Continue Reading

CMIO Perspectives on Network Security

Guest post by Brian Yeaman, Yeaman + Associates 2016 will be a lot like 2015 – a steadily escalating number of data breaches across healthcare requiring new solutions. We’re seeing now that many of the good things about medical-record po…