software

Brought to you by ITPro
Accenture left four Amazon Web Services (AWS) S3 buckets open and downloadable to the public, containing software for its Accenture Cloud Platform enterprise cloud offering and other sensitive internal data, security researchers said today.
The unsecured AWS S3 buckets were discovered by UpGuard security researcher Chris Vickery on Sept. 17, 2017, and revealed "significant internal Accenture data, including cloud platform credentials and configurations." Credentials for Accenture's Google and Azure accounts also appeared to be stored in one of the buckets, which could have far-reaching consequences in the hands of a malicious actor.
The servers were secured the next day after UpGuard Director of Cyber Risk Research Vickery notified Accenture.
The company, which provides consulting and professional services, is not the first to have had unsecured AWS S3 buckets discovered by UpGuard. Earlier this year, Vickery notified Verizon, and election data firm Deep Root Analytics about AWS S3 buckets open to the public, exposing tens of millions of customer and voter records, respectively.
In a blog post on Tuesday, Vickery said that this exposure could have been prevented with a simple password requirement added to each bucket. His recommendation comes as a new survey by OneLogin finds that IT pros are failing to enforce password policies.
Accenture's AWS S3 buckets contained internal access keys and credentials for use by the Identity API, plaintext
Read more

Filed under Web Hosting News by on #

HOUSTON, TX – RoboCyberWall, Inc., a provider of a proprietary precision firewall solution that protects HTTP and HTTPS (SSL) ports on Linux-based Apache2 and NGINX web servers, today unveiled its flagship product under the same name. The RoboCyberWallTM patent-pending firewall blocks all known exploits and “Zero Day” attacks on Apache2 and NGINX web servers that, according to W3Techs Web Technology Surveys, comprise more than 83 percent of all web servers worldwide. It is a simple-to-download and easy-to-install module for use with on-premise servers, cloud servers or shared hosting accounts and requires exceptionally low RAM and processor resources. It’s available for license for less than $9/month.

In securing the non-application portion of the stack, RoboCyberWall provides pinpoint protection for Linux Apache2 or NGINX web server’s HTTP and HTTPS ports. Typically these are ports 80 and 443, which are two of the top three most targeted ports for attack worldwide, according to Akamai’s State of the Internet report.


RoboCyberWall is also proud to announce it has Partnered with Astra Security which offers a highly specialized web application firewall designed to protect WordPress, Magento, OpenCart, Drupal, Joomla, Woocommerce.

“Firewalls today remain the critical first line of defense from ever-growing and increasingly sophisticated threats,” said John R. Martinson Jr., CTO and Founder of RoboCyberWall. “Stopping a malicious program, or attacker, from gaining access to your network and information before any potential damage is done is key, and RoboCyberWall prevents breaches from happening in the first place.”

RoboCyberWall, Inc. contracted with SecureWorks to perform security assessment during the period from September 5, 2017 to September 8, 2017. The objective of this engagement was to identify vulnerabilities in RoboCyberWall’s systems and network security that external adversaries could exploit. During the course of the assessment, SecureWorks launched 6,593 probes and manual hack attempts on the RoboCyberWall protected server without accomplishing any breaches. The Full Report is available for review at: https://robocyberwall.com/files/RoboCyberWall_EPT_09132017.pdf

“RoboCyberWall is a particularly attractive option for small and mid-size businesses (SMBs), which are targeted much more frequently than large enterprises,” said John Martinson, Sr., CEO and President of RoboCyberWall. The Verizon Data Breach Investigation Report found that 81 percent of all data breaches happen to small businesses which often lack the resources to protect business-critical data. “RoboCyberWall is a step in the direction of democratizing firewalls for all web servers and making true cyber security possible at an affordable price,” said Martinson, Sr. “Enterprise firewalls are very expensive and require significant investments and IT staff to install, configure and maintain, which often puts them out of reach for most SMBs.

“‘Zero Day’ attacks have been impossible to protect against because older technology has to guess which packets are good and which are bad. However, RoboCyberWall has a real-time whitelisting feature that allows good packets to be immediately validated while blocking all other unknown packets. Moreover, if new content is added to a server, that information is instantly added to the whitelist,” said Martinson Jr.

“RoboCyberWall’s white listing feature means zero false positives and zero bad packets make it into your Linux server, which shields your website with comprehensive protection,” said Martinson Jr. “With Google blacklisting an estimated 10,000 compromised websites every day, RoboCyberWall protects your website and keeps it up and running.”

RoboCyberwall is already receiving industry recognition with these recent awards:

CyberSecurity Breakthrough Awards 2017 – http://cybersecuritybreakthrough.com/
Unified Threat Management – Next Generation Firewall Solution of the Year.
Golden Bridge Awards 2017 – http://www.goldenbridgeawards.com
New Products and Services – Security Software – RoboCyberWall™ Version 1.0 Bronze Winner.

RoboCyberWall is being offered as a $8.95/month subscription, licensed to users on a monthly or yearly basis. For more information about RoboCyberWall or to download please go to https://robocyberwall.com.

About RoboCyberWall, Inc.
RoboCyberWall, Inc. is a provider of the proprietary, precision, perimeter firewall solution for businesses of all sizes that achieves the ultimate in protection for the highly targeted HTTP and HTTPS ports on Linux-based Apache2 and NGINX web servers. RoboCyberWall is easy-to-download and simple-to-install. It blocks both known exploits and “Zero Day” attacks. For more information, visit https://robocyberwall.com and follow us on Twitter @robocyberwall.

About Astra Security
Astra is a plug-n-play website security suite that takes 2-minutes to setup and provides rock solid security against hackers, bots and 100+ internet threats. Astra is a completely managed firewall not requiring any manual intervention, giving business owners all the time to focus on business while Astra takes care of security. It works seamlessly with WordPress, OpenCart, Magento, Drupal, Joomla, Woocommerce. More information at www.getAstra.com

Read more

Filed under Web Hosting News by on #

BURLINGTON, MA – Acronis, a global leader in hybrid cloud IT data protection, today announced the availability of Acronis Data Cloud — a unified platform for all current and future cloud-based services that Acronis is bringing to the market for service providers.

Integrating Acronis Data Cloud, service providers receive immediate access to all the available solutions, without the complexity of integrating each service separately:


Acronis Backup Cloud — the world’s number one backup-as-a-service solution for service providers. Acronis Backup Cloud supports more than 20 data sources, has the capacity to block ransomware with Acronis Active Protection, allows for backup from anywhere and recovery however required and is capable of certifying data with blockchain-based Acronis Notary. Popularity of this service drove the 100% YoY sales growth and 400% YoY increase in the amount of the protected data stored in the Acronis Cloud (September 2017).

Acronis Disaster Recovery Cloud (Partner Preview) — a turnkey, self-service solution, built upon Acronis Backup Cloud, that lets service providers instantly recover their customers’ critical IT systems, applications, and data, utilizing the Acronis’ cloud infrastructure.

Acronis Files Cloud — enterprise file sync and share solution that simplifies the management of the shared data while meeting the strictest security requirements of a modern business. It removes the risks associated with using public file sync and share services by allowing service providers to control data storage location. It addresses the need of modern businesses for secure file access, sync and share — something that has been validated by a 200% YoY growth in sales.

Easy way to retain customers and increase Average Revenue per User (ARPU)

Acronis Data Cloud brings shared management and easy integration into major business automation systems such as Odin Automation, Hostbill, ConnectWise Automate, Autotask, and WHMCS (full list can be found at https://www.acronis.com/en-us/cloud/service-provider/platform/integrations). Unified usage reporting, shared policy engine and common API allow service providers to offer more products without modifying their existing processes.

Availability of multiple services within the same platform allows partners to monetize their relationships with customers, making it easy to sell more, cross-sell, and bundle. Acronis Data Cloud helps service providers to increase ARPU and reduce churn. Acronis Data Cloud can also be branded with a logo and corporate colors, further establishing service provider’s position in the market.

Acronis Data Cloud is great value. Not only it’s easy to deploy, it also requires no initial investment and can be operated with zero CAPEX, based on a transparent pay-as-you-go licensing. Whatever the business model, Acronis Data Cloud can fit the bill. It supports any offer packaging, any type of deployment, including on-premise, cloud or hybrid, and almost any pricing model.

“Since deploying Acronis Backup Cloud a year ago, our deployment of the software has decreased our support costs significantly by consolidating multiple products into one. The enhanced platform provides even more functionality and control over customer data with disaster recovery and file sync & share solutions. Acronis is not only a great cloud operator but also a great business partner,” said JD Helms, President, CloudJumper.

Acronis Storage

Based on Acronis hybrid cloud architecture, Acronis Data Cloud is also closely integrated with Acronis Storage, giving service providers freedom to choose where to store the protected data. Installing Acronis Storage in their infrastructure, they bring the functionality of Acronis Cloud to their own datacenter, offering secure storage capacity closer to their customers.

Acronis Storage offers universal access over multiple protocols iSCSI, S3, Acronis Backup Gateway, NFS, and SMB/CIFS and VTL coming soon in 2018. Acronis CloudRAID technology provides seamless scalability for redundancy, Blockchain-based Acronis Notary allows data certification and validation. With new capabilities available to service providers every quarter, Acronis ensures that the constantly evolving customer needs are covered.

“Acronis is a cloud company with 100% partner focus. Whatever we do in the cloud space, we do it with partners. Acronis’ solutions help service providers to monetize their customer relationships by offering all the data protection services their customers need,” said John Zanni, President of Acronis.

To find out more how Acronis Data Cloud can help you grow your business, visit: https://www.acronis.com/en-us/cloud/service-provider/platform
To become Acronis partner, please visit: https://www.acronis.com/en-us/partners/

About Acronis
Acronis sets the standard for hybrid cloud IT data protection through its backup, ransomware Active Protection, disaster recovery, and secure file sync and share solutions. Powered by the Acronis AnyData Engine and set apart by its image technology, Acronis delivers easy, fast, complete and affordable data protection of all files, applications and operating systems across any environment—virtual, physical, cloud, mobile and applications. Founded in 2003 in Singapore, with global headquarters in Switzerland, Acronis protects the data of more than 5 million consumers and 500,000 businesses in over 150 countries and 20 languages. With more than 100 patents, Acronis products are consistently named best product of the year and cover a range of features, including migration, cloning, and replication. Today, Acronis solutions are available worldwide through a global network of service providers, distributors, and cloud resellers. Learn more at acronis.com.

Read more

Filed under Web Hosting News by on #

HOUSTON, TX – cPanel technology partner CloudLinux, the maker of the leading OS for hosting providers, today announced that they will be extending the KernelCare Symlink Protection Patchset for CentOS 6 & 7 to all server administrators for free, without requiring a KernelCare license.

“Symlink race attacks are one of the most costly and devastating attacks in web hosting, and protecting web hosting providers against them has been a goal of ours for many years,” said Ken Power, Vice President of Product Development at cPanel, Inc. “Helping CloudLinux provide this patch set to more servers brings us closer to a safer, more secure internet for all.”


“KernelCare was developed to protect against various types of security threats, without the need to reboot servers, and we’ve been discussing with the cPanel team ways to help with hardening of their customers’ kernels,” said Igor Seletskiy, CloudLinux chief executive officer. “We just released this patchset for CentOS 6 and 7 to protect users, including the cPanel customers, and help defend their shared hosting servers against symlink attacks.”

For more information and installation instructions, visit this page:

https://www.cloudlinux.com/kernelcare-blog/entry/symlink-protection-patchset-centos-6-7-kernelcare

For more information on KernelCare, visit https://www.kernelcare.com.

About cPanel
Since 1997, cPanel has been delivering the web hosting industry’s most reliable and intuitive web hosting automation software. The robust automation software helps businesses thrive and allows them to focus on more important things. Customers and partners receive first-class support and a rich feature set, making cPanel & WHM® the Hosting Platform of Choice. For more information about cPanel, visit https://cpanel.com.

Read more

Filed under Web Hosting News by on #

REYKJAVIK, ICELAND – Advania Data Centers has over the past years invested greatly in their Data Center and High Performance Computing capabilities. These investments have resulted in a compelling value proposition for HPC operators, where the company can offer modular offerings. These offerings cover anything from HPC cluster hosting to application support and licence management.

Advania’s latest service is dedicated to HPC, where companies can outsource their HPC cluster to Advania’s HPCaaS cloud, hosted in Advania Data Centers in Iceland. The HPCaaS cloud can accommodate hosted HPC clusters, as well as allowing users to scale up and down as needed, while only paying for what they use.


The scalability has been offered by others in the industry for some time now, but on demand resources have historically been expensive. Similarly, so has the cost of running HPC in a public cloud, whereas some HPC workloads are economical to run. Most, however, become way too expensive in the public cloud billing model, as well as some HPC jobs are not able to run in a public cloud because of technical or application licence issues.

Advania aims to address all these pain points with the new HPCaaS cloud, that has been developed in partnership with Hewlett Packard Enterprise.

“We have developed a service and capabilities to address the needs of even the most demanding HPC operators and it has proven to deliver great value for our customers.” Says Eyjolfur Magnus Kristinsson, Managing Director at Advania Data Centers. “This expansion of our HPC platform is our next step to offer the HPCaaS cloud at scale to customers that demand increased flexibility and want to be able to scale their environments as needed. While we are not disclosing how large this expansion is, I can say that this step of the expansion includes thousands of cores”.

This expansion includes the latest hardware from HPE, Intel and Panasas; purpose built for HPC workloads with high speed interconnect and flexible storage options suitable for most HPC operators.

“We are extremely happy to be able to expand our HPCaaS platform this quickly and have already signed the first customers on to the HPCaaS cloud.” Says Hans Rickardt, HPC Specialist at Advania. “The Cluster is built with HPE Apollo 6000 chassis and the servers are xl230a, configured with Broadwell E5-2683v4 2×16 core, 256 GByte memory, 1.92TB SSD, 10Gbit Ethernet and high-speed interconnect and 100Gbit Intel Omnipath. During cluster verification and burn-in test I ran Linpack on 3200 cores and was able to achieve over 100TFlops, with a fantastic efficiency of 96%. I can state that our HPCaaS cloud performance is outstanding”.

About Advania
Advania is a leading Nordic IT company offering diverse services and solutions that include software, ERP systems, consulting, hardware, IT operations, HPC, hosting and data center services. Built on a solid foundation spanning 70 years of technology services, Advania has over 5,300 clients in public and private sectors in the Nordics and Europe. Advania’s staff of over 1300 employees across 17 offices located in three countries is committed to providing customers with the best possible service. Operations are certified according to international quality and security standard ISO 27001.

Read more

Filed under Web Hosting News by on #

HOUSTON, TX – In a commitment to best protect the confidentiality and trust of customers and site owners around the globe, on Wednesday September 27, cPanel, Inc. released its first comprehensive law enforcement transparency report. This initial report covers all subpoenas, requests, and search warrants issued to cPanel by any government worldwide between the 18-month period of January 1, 2016, through June 1, 2017.

During this time period cPanel, Inc. received no subpoenas, search warrants or requests form any government agency and no information on customer or customer data was released. This report further goes into detail about government demands for customer data, content that has been permanently disabled under the Digital Millennium Copyright Act (DMCA), and customer accounts that have been disabled by due to Terms of Service violations.


Further demonstrating its commitment to transparency, cPanel also released a guide to the customer information it maintains, and the specific means by which government agencies may request access to it. This “Law Enforcement Guide” defines cPanel’s legal obligations when it is required to produce customer information, and allows customers to better understand the circumstances under which that information will be disclosed.

“cPanel is committed to our customers around the globe,” explains David Snead, cPanel’s General Counsel. “We are demonstrating that by being the first hosting automation company to disclose under what circumstances we are required to provide customer data to governments. Our transparency report demonstrates that, over the past 18 months, no information has been released to any government, anywhere. We’re the only company in our sector who can make this statement.”

https://cpanel.com/transparency-report.html

About cPanel, Inc.
Since 1997, cPanel, Inc. has been delivering the web hosting industry’s most reliable, intuitive hosting automation software. The robust automation software helps businesses thrive and allows them to focus on more important things. Customers and partners receive first-class support and a rich feature set, making cPanel & WHM the hosting platform of choice. For more information, visit http://cpanel.com.

Read more

Filed under Web Hosting News by on #