In a recent article published by IT Briefcase—zvelo Security Analyst, Louis Creager, outlined and describes one of the most prominent trends threatening router networks around the world.
Ubiquitous as they are in our households, relatively few consumers are conscious of the firmware running on their home router
DetailsOne of the largest security gaps in 2018—one that leaves devices open to malware, botnets, and use in DDoS attacks—is the lack of commitment from router and gateway manufacturers. But what is the incentive for OEMs to build the infrastructure and systems to maintain and update device firmware even after just a few years?
Details
I was recently debugging a nasty issue in one of our backend services and needed to view the exact HTTP request & response being sent to an authentication server. Fortunately, Go’s standard library provides http.RoundTripper, httputil.DumpRequestOut & httputil.DumpResponse, which are great for dumping the exact out-bound request & the response. But since an authentication request contains credentials and a response contains a security token, it would have been insecure to record credentials & tokens in our logging systems. How could I securely exfiltrate the information I needed, while maintaining security and not requiring a whole lot of changes to my codebase or deployment environment?
by Mathew Branyon, Data Operations Engineer at zvelo, Inc. In my last post, we explored reasons why we would want to use the container orchestration tool kubernetes to manage deployment of our applications. Of the numerous choices of tools available to deploy Kubernetes, we’ve chosen kops because it works really well with Amazon Web Service…
by Mathew Branyon, Data Operations Engineer at zvelo, Inc. For little over a year now, zvelo has been transitioning our infrastructure to the Kubernetes platform. Developed by Google, Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications. Using Kubernetes allows us extreme flexibility with our applications, both horizontally and vertically.…
zvelo On The Go: An Interview With Our Principal Engineer, Joshua Rubin We recently caught up with Joshua Rubin, our Principal Engineer, who provided some great insight into Go (Golang), one of the tools the engineers use here at zvelo. Why use Go instead of the the “older/mature” languages like C++ or even Java for…
Lions, Tigers and Bears Oh My – The Journey of Building a Next-generation SOA Data Services Platform In 2010, the 50 lane Beijing-Hong Kong-Macau Expressway experienced a massive traffic jam that lasted for ten days and stretched for over 100 kilometers. Some drivers were stuck on the expressway for 5 days. Even though this…
Building a Data as a Service Platform for AI – Q&A with a zvelo Engineer With the recent release of zveloDP™, zvelo’s Data as a Service platform, we thought it was an excellent opportunity to ask some questions about the platform and get some insight into the technology behind the curtain. Q: First things first,…
zvelo Unveils zveloAPI™ to Power High-speed Access to Datasets zvelo, the leading provider of website and device categorization, unveils zveloAPI™, an ultra-fast, secure API, for accessing the zveloDP datasets through cloud-based queries and streaming data feeds. zveloAPI was designed to support a broad range of integration and deployment requirements, including: Cloud-based queries of any of…
A renewed sense of urgency to secure information, networks and electronic devices in order to thwart advanced hacking techniques loomed over the 2013 RSA conference floor in San Francisco. The harsh realization that traditional security measures simply don’t cut it anymore was confirmed by various keynotes and casual hallway conversations between peers. The biggest takeaway, besides the toy katanas and light sabers that were handed out, was that 2013 may be the year that big data, security and analytics converge on a massive scale.