In November 2017 security researchers reported a new banking Trojan known as “IcedID”. At the time of discovery IcedID was being distributed by Emotet. In late February and throughout March 2018 Cisco noticed an increase in IcedID infections being detected throughout the AMP ecosystem. Like in November 2017, some of the infections could be traced to Emotet, but this time, many detections could instead be traced to emails with attached malicious Microsoft Word documents containing macros. When the malicious documents are opened and the macros are enabled, Rovnix would be downloaded and executed, which subsequently downloads IcedID. In addition to Rovnix, many of the samples downloaded a second payload, a Bytecoin miner (Bytecoin is a crypto currency similar to Bitcoin).
Friday, 6 April 2018
Thursday, 5 April 2018
How to Deploy a UCS Manager Environment with Far Less Python Code
A co-worker sent me some infrastructure code to check out and get my opinion. The code was fine, but it was a lot of code… I mean a lot of code. Looking at the thousands of lines of purpose written code I started thinking that there could be a better way. The code was Python and used the UCS Python SDK to deploy a UCS Manager environment and it worked, it did everything it was supposed to do, but it did only those things.
Friday, 30 March 2018
Artificial Intelligence
Cisco Hyperflex
Cisco Intersight
Cisco UCS
Digital Transformation
Machine Learning
Cisco UCS and HyperFlex for AI/ML Workloads in the Data Center
Data is the lifeblood of business. It helps drive deep insights and better decisions, improve processes, and offer a deeper understanding of customers, partners and business. Artificial intelligence and machine learning (AI/ML) enables us to learn from data, identify patterns and make better decisions that augment human capabilities. This provides businesses new ways to grow revenue, attract and retain customers and become more operationally efficient. Further, AI/ML can help automate tasks as well as accelerate untapped insight in previously unexplored areas. Almost all industries in every sector from banking to healthcare and manufacturing are trying to take advantage of these benefits.
Thursday, 29 March 2018
Cisco and Sentryo work together to help secure factory networks
Manufacturers, utilities, and oil & gas companies are using data and applications to improve business operations through smart manufacturing initiatives like Industrie 4.0. To accomplish these benefits these companies recognize the need to converge their enterprise network and their factory networks with industrial Ethernet to gain a 360-degree view of their operations across a single network infrastructure. They also gain real-time network diagnostics and troubleshooting.
Wednesday, 28 March 2018
Shaping a Diverse and Stronger Cybersecurity Industry
Aside from scuba diving and working with Cisco customers to improve cyber resiliency, cooking is one of my greatest passions. My favorite dishes are a fusion of the best ingredients, each complementing the other and accentuating the right flavors to achieve culinary heaven. You see, if you stick with one ingredient, you are stuck with one flavor profile and the dish is left bland and unmemorable. It’s a similar issue with diversity in the cyber profession.
Monday, 26 March 2018
Cisco Crosswork – Part 1: Change Automation
In this multi-part blog series, we will be describing in detail the five new pillars of the Cisco Crosswork automation solution – designed to help solve our customers’ challenges in planning, designing, implementing, operating, and optimizing their networks. Let’s start by taking a closer look at Cisco Crosswork Change Automation.
Friday, 23 March 2018
Serverless Security for Public Cloud Workloads with Stealthwatch Cloud
Each year goes by and we find more ways to own less and less of what it takes to operate our digital infrastructure. Information Technology began as a business having to build data centers owning everything starting with the real estate all the way to the applications, quickly it moved to public clouds whereby the infrastructure itself was a service managed by the provider and you only needed to manage the virtual servers up through your applications. The latest in this trend is serverless computing. As you would guess, this is the latest evolution where the service provider owns and operates everything up to the application and you don’t even manage the servers running your code (thus the name “serverless”).
Posts
