The Open Web Application Security Project (OWASP) is a free and open community with the aim of providing clarity and unbiased coverage of software security issues, and creating a common space for clear communication about them. To facilitate such discussion, OWASP’s Automated Threats to Web Applications Project has taken on the task of establishing a shared vocabulary of automated threats, which are threat events in which bots misuse web applications, occasionally leading to application denial of service. Its Automated Threat Handbook is a standard reference guide that classifies and lists the following top 20 automated threats, which have grouped into four major categories: Account Credentials, Payment Cardholder Data, Vulnerability Identification, and Other Automated threats.
Here’s something we don’t see very often – the making of a Super Giant, as in a small startup that is going to dramatically change the competitive landscape in a specific market. For the live-streaming market, the era of Red5 is among us. This is the biggest news coming from the video streaming market in the last several years. First, has anyone even heard of Red5’s open-source streaming software? Although few may have noticed, Red5 has been quietly making a lot of traction for years – and it’s about to gain a whole lot more. The team behind Red5 has just released their first-ever commercial product and it’s killer. [Read more…]
Demand for cutting-edge bot detection and DDoS mitigation services has been growing in leaps and bounds in recent years, as the relentless arms race between hackers and cybersecurity researchers has bred a new crop of advanced cyberthreats. Recent, highly publicized hacking incidents have put the looming threat of further intrusions firmly on everyone’s minds. And, with the holiday shopping season in full swing, enterprises have been clamoring for cloud-based, turnkey cybersecurity solutions to thwart everything from DDoS attacks to malicious SQL injections.
Wowza has rolled out an update to its Streaming Engine, which improves scalability for live low-latency streaming. The update incorporates new GPU scaling and provides more cloud deployment options. The enhanced player also makes it easier to deliver Flash-free videos across a range of devices, applications, and websites.
Modern conceptions of memory are a little more nuanced than those from the past, holding that memories are reconstructed and reprocessed based on the problem at hand, and that the questions that are posed influence how memories are recalled. To replicate this process in neural networks, they must be able to both store their memories and logically reason about this data in order to respond to specific queries. [Read more…]
Of the 4 million+ websites that use CloudFlare, nearly all (98.01%) use IPv6. This has been a long time coming, since IPv6 first debuted commercially a decade ago in 2006 as the 2.0 version of IPv4. In order to move this process along, CloudFlare began enabling IPv6 on around 100,000 sites a day, leading to noticeable growth in AAAA websites between the months of August and October. [Read more…]
You don’t have access to view this content
There are companies in the bot mitigation sector that have built platforms which can tell good bots from bad bots. Google bots are good bots, whereas bots that steal credit card data are bad bots. However, bots are getting more advanced all the time. To deal with bad bots, security startups have incorporated machine learning algorithms and advanced data gathering techniques that help them distinguish a human session from a bot session, something that is very hard to do. [Read more…]
Research into sequence predictions using neural networks holds the key to major advances in speech recognition, machine translation, and language modeling. However, building and training such models is computationally taxing and very expensive. For instance, recent advances in language modeling were only achieved with the use of massive models trained on large GPU clusters for weeks at a time. [Read more…]
The Do-it-Yourself CDN model and Multi-CDN strategy are the latest rage of the industry. Everyone is jumping on the bandwagon, from the behemoths like Apple, Facebook and Netflix to their smaller brethren such as Tesla. The primary reason why DIY CDN is taking off is cost savings. Some brave companies that deliver petabytes of content monthly have implemented a hybrid CDN strategy, which means they deliver content over their own DIY CDN and Multi-CDNs. Apple, Facebook and Netflix have taken this approach, as it makes a lot of sense. However, there is something on the horizon that is going to completely shatter the DIY model and it looks ugly. [Read more…]
The DDoS mitigation business has become a commodity. The CDN WAF business is the great product of yesterday. And the bot mitigation industry, which also includes the online fraud market, is the hottest segment in our ecosystem. There are winners and losers, with startups comprising most of the winners – we’ll keep their names confidential for the time being. Regardless of who’s leading the industry, every company in bot mitigation has developed technology to defend against bots. The strength of their business models is built on a single premise: bots do not behave like humans. [Read more…]
Varnish Software recently unveiled parallel ESI and Edgestash for Varnish Plus. These features promise to significantly speed up web performance, improve content delivery on mobile, and enhance end-user experience overall. The new solution leverages intelligent TCP acceleration in order to speed up mobile delivery by up to 40 percent, which is crucial as more and more users use their mobile devices to browse and access web content. [Read more…]
DeepMind, the Google-owned AI startup behind AlphaGo, is collaborating with Blizzard to open the popular Starcraft II game to AI and machine learning research. The goal is to foster advancements in artificial intelligence to the extent that it can solve complex problems without human guidance. [Read more…]
You don’t have access to view this content
BioCatch recently announced its next-gen behavioral biometrics platform, which has been developed for use with online and mobile applications for enterprises. Behavioral biometrics is a burgeoning field of study given the growing threat of online fraud and identity theft. Rather than relying on fingerprints and other physical attributes to confirm identity, behavioral biometric systems do so by measuring patterns of human-device interaction and behavior (e.g. gait, handwriting, typing style, etc.). [Read more…]
The New York Times is leveraging AWS, in-house CMS, and Aspera for its Media Factory encoding pipeline for video. Content providers have seen a massive shift toward video in recent years, and the NYT is no exception. Its in-house hardware solutions are no longer enough to handle the bandwidth-heavy video content it is publishing with increasing frequency, including 360-degree video and Virtual Reality. As such, the Grey Lady has opted to switch to a video publishing platform that provides capacity, flexibility, and scalability. [Read more…]
Is GTT likely to get into the CDN business now that Hibernia Networks is part of GTT? Supposedly, Hibernia Networks entered the CDN market a while back, touting their low-cost content delivery services. They built a website for Hibernia CDN and started targeting their customers with the new offering. However, they hit a brick called the “reality of the CDN market.” The reality is that the CDN market is a lot harder to penetrate than what most people think. We’ll go out on a limb and say that, as of today, Hibernia CDN likely has 0 to 5 CDN customers. [Read more…]
Distil Networks has unveiled the Hi-Def Fingerprint, an augmented device fingerprinting method that identifies unique devices more accurately than standard techniques. Finding a reliable and unique method of identification has historically been a tricky endeavor. As an analogy, Distil cites the evolution of identification methods in criminology, tracing them from their roots in the development of the mugshot and the now defunct Bertillon system, through the use of physical fingerprints, to contemporary DNA analysis. [Read more…]
Varnish has unveiled Edgestash, which is currently in beta on Varnish Plus only. It’s an ambitious solution to increase web speeds, both on mobile and in general. While most of a modern website’s content is assembled in the browser, Varnish takes that page assembly and performs its using the the bits and pieces already stored in the cache, for instance, cobbling together a web page using JSON and content from other sources. [Read more…]
Expedia uses NGINX Plus for cloud migration at scale and routing traffic through its front door. Over the years, Expedia has configured NGINX based on three pillars of cloud migration. According to Dave Drinkle, Senior Software Engineer at Expedia, the first of those pillars is multi-region resiliency, also known as cross-regional failover, which ensures that if one region goes down, the configuration auto-fails to another. [Read more…]