Saturday, January 31, 2015
WhatsApp Starts Rolling out Voice Calling Feature
from The Hacker News http://bit.ly/1ykOpdv
Friday, January 30, 2015
Il messaggio del nuovo Vice President of Channel and Alliances EMEA ai partner VMware
Il nuovo Vice President of Channel and Alliances in EMEA, …
Read More
from VMware Blogs http://bit.ly/1tFQTX9
Configuring ShareFile Enterprise to use a customer-managed Azure StorageZone
 | In this video we will configure our ShareFile Enterprise account to use the customer-managed Azure StorageZone configured in video 1 of this series. | Views:1 |
| Length:07:01 |
from CitrixTV RSS Feed http://bit.ly/1yLZ0wZ
Топ 5 причин, почему вам стоит посмотреть наш вебинар!
Ждать осталось недолго …
Как вы, наверное, уже знаете, Пэт Гелсингер …
Read More
from VMware Blogs http://bit.ly/1zn8JO8
Question of the Week (VSA)
This week’s question comes from the VMware View video series.
The Connection Server comes with:
A. a CA-signed certificate
B. a self-signed certificate
C. a gift certificate
D. no certificate
Click through to thecommentsfor the answer.
Follow@VMwareEducationon Instagram to see more #TechTrivia every Friday andvisual updates from the VMware Education and Certification community.
via VMware Blogs http://bit.ly/1yeZ3Ta
Question of the Week (VSA)
This week’s question comes from the VMware VSA video series.
With which of the following does the vSphere Storage Appliance work?
A. vSphere Fault Tolerance
B. Distributed Resource Scheduler (DRS)
C. Storage vMotion and Storage I/O Control (SIOC)
D. All of the above
Click through to thecommentsfor the answer.
Follow@VMwareEducationon Instagram to see more #TechTrivia every Friday andvisual updates from the VMware Education and Certification community.
from VMware Blogs http://bit.ly/1yeZ3Ta
Warum ich den großen Launch live verfolge – IT-Admin Christian Stankowic berichtet
Am 3. Februar um 10 Uhr deutscher Zeit wird VMware …
Read More
from VMware Blogs http://bit.ly/1Lr8WpN
Warum ich den großen Launch live verfolge – IT-Admin Christian Stankowic berichtet
Am 3. Februar um 10 Uhr deutscher Zeit wird VMware …
Read More
from VMware Blogs http://bit.ly/1Lr8W9c
Outlook for iOS app "breaks" corporate security, developer says
from Latest topics for ZDNet in Security http://zd.net/1Bzp9kA
Bugtraq: [SECURITY] [DSA 3145-1] privoxy security update
from SecurityFocus Vulnerabilities http://bit.ly/1yLlwGh
ST15-001: IRS and US-CERT Caution Users: Prepare for Heightened Phishing Risk This Tax Season
Overview
Throughout the year, scam artists pose as legitimate entities—such as the Internal Revenue Service (IRS), other government agencies, and financial institutions—in an attempt to defraud taxpayers. They employ sophisticated phishing campaigns to lure users to malicious sites or entice them to activate malware in infected email attachments. To protect sensitive data, credentials, and payment information, US-CERT and the IRS recommend taxpayers prepare for heightened risk this tax season and remain vigilant year-round.
Remain alert
Phishing attacks use email or malicious websites to solicit personal information by posing as a trustworthy organization. In many successful incidents, recipients are fooled into believing the phishing communication is from someone they trust. An actor may take advantage of knowledge gained from research and earlier attempts to masquerade as a legitimate source, including the look and feel of authentic communications. These targeted messages can trick any user into taking action that may compromise enterprise security.
Spot common elements of the phishing lifecycle
- A Lure: enticing email content.
- A Hook: an email-based exploit.
- Email with embedded malicious content that is executed as a side effect of opening the email
- Email with malicious attachments that are activated as a side effect of opening an attachment
- Email with “clickable” URLs: the body of the email includes a link, which displays as a recognized, legitimate website, though the actual URL redirects the user to malicious content.
- A Catch: a transaction conducted by an actor following a successful attempt.
- Unexplainable charges
- Unexplainable password changes
Understand how the IRS communicates electronically with taxpayers
- The IRS does not initiate contact with taxpayers by email, text messages or social media channels to request personal or financial information.
- This includes requests for PIN numbers, passwords or similar access information for credit cards, banks or other financial accounts.
- The official website of the IRS is www.irs.gov.
Take action to avoid becoming a victim
If you believe you might have revealed sensitive information about your organization or access credentials, report it to the appropriate contacts within the organization, including network administrators. They can be alert for any suspicious or unusual activity.
Watch for any unexplainable charges to your financial accounts. If you believe your accounts may be compromised, contact your financial institution immediately and close those accounts.
If you believe you might have revealed sensitive account information, immediately change the passwords you might have revealed. If you used the same password for multiple accounts, make sure to change the password for each account and do not use that password in the future.
Report suspicious phishing communications
- Email: If you read an email claiming to be from the IRS, do not reply or click on attachments and/or links. Forward the email as-is to phishing@irs.gov, then delete the original email.
- Website: If you find a website that claims to be the IRS and suspect it is fraudulent, send the URL of the suspicious site to phishing@irs.gov with subject line, “Suspicious website”.
- Text Message: If you receive a suspicious text message, do not reply or click on attachments and/or links. Forward the text as-is to 202-552-1226 (standard text rates apply), and then delete the original message (if you clicked on links in SMS and entered confidential information, visit the IRS’ identity protection page).
If you are a victim of any of the above scams involving IRS impersonation, please report to phishing@irs.gov, file a report with the Treasury Inspector General for Tax Administration (TIGTA), the Federal Trade Commission (FTC), and the police.
Additional Resources
For more information on phishing, other suspicious IRS-related communications including phone or fax scams, or additional guidance released by Treasury/IRS and DHS/US-CERT, visit:
- Avoiding Social Engineering and Phishing Attacks
- Recognizing and Avoiding Email Scams
- Phishing and Other Schemes Using the IRS Name
- IRS Repeats Warning about Phone Scams
- Report Phishing and Online Scams
- Tips for Taxpayers, Victims about Identity Theft and Tax Returns
To report a cybersecurity incident, vulnerability, or phishing attempt, visit US-CERT.gov/report.
Author: US-CERT and IRS
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT: The United States Computer Emergency Readiness Team http://1.usa.gov/1DeLpCx
Thursday, January 29, 2015
VMware SDDC Management Highlights at Partner Exchange 2015
As part of the Power Play initiative, you can continue to earn up to 20% additional margin for vSphere with Operations Management and up to 25% for Virtual SAN sales until June 30, 2015. Make sure your opportunities are registered in Advantage+ with the relevant Solution Competency in place to benefit.
via VMware Blogs http://bit.ly/1yamrky
VMware SDDC Management Highlights at Partner Exchange 2015
- Hands On Labs
- Sessions
- vSphere Optimization Assessment (VOA) Showcase
- VOA Pod in the Solutions Exchange
from VMware Blogs http://bit.ly/1yamrky
Fünf Gründe, weshalb Sie unsere große Online-Ankündigung nicht verpassen sollten
Bald ist es soweit…
Wie Sie vielleicht bereits erfahren haben, werden …
Read More
from VMware Blogs http://bit.ly/1yampJt
Fünf Gründe, weshalb Sie unsere große Online-Ankündigung nicht verpassen sollten
Bald ist es soweit…
Wie Sie vielleicht bereits erfahren haben, werden …
Read More
from VMware Blogs http://bit.ly/1yampsW
Bugtraq: Blubrry PowerPress Security Advisory - XSS Vulnerability - CVE-2015-1385
from SecurityFocus Vulnerabilities http://bit.ly/15WqCbL
Bugtraq: CVE-2014-8779: SSH Host keys on Pexip Infinity
from SecurityFocus Vulnerabilities http://bit.ly/1EsgVB0
Vuln: Drupal Context Module Open Redirection Vulnerability
from SecurityFocus Vulnerabilities http://bit.ly/15WqBEV
Do You have Vulnerability Research to Showcase?
from http://bit.ly/1A2DwTj
Today’s VMware and Google Announcement
Today Google and VMware announced an agreement to integrate selected Google Cloud Platform services into VMware vCloud® Air™.
Google Cloud Storage–Distributed low-cost object storage service
- Google BigQuery –A real-time analytics service suitable for ad-hoc business intelligence queries across billions of rows of data in seconds
- Google Cloud Datastore–A schemaless NoSQL database service
- Google Cloud DNS–A globally-distributed low-latency DNS service
For more information about the integration of selected Google Cloud Platform Services into vCloud Air, visitTribal Knowledge.
via VMware Blogs http://bit.ly/1Chlcqc
Today’s VMware and Google announcement
Today’s VMware and Google Announcement
Today Google and VMware announced an agreement to integrate selected Google Cloud Platform services into VMware vCloud® Air™.
Google Cloud Storage–Distributed low-cost object storage service
- Google BigQuery –A real-time analytics service suitable for ad-hoc business intelligence queries across billions of rows of data in seconds
- Google Cloud Datastore–A schemaless NoSQL database service
- Google Cloud DNS–A globally-distributed low-latency DNS service
For more information about the integration of selected Google Cloud Platform Services into vCloud Air, visitTribal Knowledge.
from VMware Blogs http://bit.ly/1Chlcqc
Today’s VMware and Google announcement
Sanjay Poonen
from VMware Blogs http://bit.ly/1Chlcqb
US military explores biometric replacement for passwords
from Latest topics for ZDNet in Security http://zd.net/1HjZJQG
Bugtraq: KL-001-2015-001 : Windows 2003 tcpip.sys Privilege Escalation
from SecurityFocus Vulnerabilities http://bit.ly/1yDPc8o
Bugtraq: AST-2015-001: File descriptor leak when incompatible codecs are offered
from SecurityFocus Vulnerabilities http://bit.ly/18yF2AV
Bugtraq: Cisco Security Advisory: GNU glibc gethostbyname Function Buffer Overflow Vulnerability
from SecurityFocus Vulnerabilities http://bit.ly/1yDPaxk
Bugtraq: [slackware-security] glibc (SSA:2015-028-01)
from SecurityFocus Vulnerabilities http://bit.ly/18yF0ZL
Wednesday, January 28, 2015
VMware reports record earnings, significant AirWatch growth
VMware reports record earnings, significant AirWatch growth
Lanier Norville
from VMware Blogs http://bit.ly/1trS64g
Bugtraq: Multiple vulnerabilities in MantisBT
from SecurityFocus Vulnerabilities http://bit.ly/1zcqIGU
Bugtraq: Two XSS Vulnerabilities in SupportCenter Plus
from SecurityFocus Vulnerabilities http://bit.ly/1zYuAhv
Bugtraq: [CVE-2015-1394] Photo Gallery (Wordpress Plugin) - Multiple XSS Vulnerabilities Version 1.2.8
from SecurityFocus Vulnerabilities http://bit.ly/1zYuA16
Bugtraq: [CVE-2015-1393] Photo Gallery (Wordpress Plugin) - SQL Injection in Version 1.2.8
from SecurityFocus Vulnerabilities http://bit.ly/1zYuuqa
Hear our new EMEA channel head’s message to VMware’s partners
Our new vice president of channel and alliances in EMEA, …
Read More
from VMware Blogs http://bit.ly/1DaNYWc
Cisco Prime Service Catalog XML External Entity Processing Vulnerability
A vulnerability in the configuration of the XML parser of Cisco Prime Service Catalog could allow an authenticated, remote attacker to access sensitive data stored on the host operating system or cause system resource consumption that could cause a denial of service condition.Cisco has released free software updates that address this vulnerability.
This advisory is available at the following link:
http://bit.ly/1LhH8nL
from Cisco Security Advisory http://bit.ly/1LhH8nL
Bugtraq: [CORE-2015-0003] - FreeBSD Kernel Multiple Vulnerabilities
from SecurityFocus Vulnerabilities http://bit.ly/1DgXWG1
Bugtraq: FreeBSD Security Advisory FreeBSD-SA-15:03.sctp
from SecurityFocus Vulnerabilities http://bit.ly/1zzifAS
Bugtraq: FreeBSD Security Advisory FreeBSD-SA-15:02.kmem
from SecurityFocus Vulnerabilities http://bit.ly/1zzifkm
Sind Sie ein VMware Partner? Verfolgen Sie unser Launch Event und gewinnen Sie einen digitalen Code von iTunes im Wert von 10 €!
Wie Sie vielleicht bereits wissen, sind es nur noch wenige …
Read More
from VMware Blogs http://bit.ly/1tqhibt
Sind Sie ein VMware Partner? Verfolgen Sie unser Launch Event und gewinnen Sie einen digitalen Code von iTunes im Wert von 10 €!
Wie Sie vielleicht bereits wissen, sind es nur noch wenige …
Read More
from VMware Blogs http://bit.ly/1uAUH7g
VMware End-User Computing 2014 Recap and 2015 Predictions
Morgan OLeary
from VMware Blogs http://bit.ly/1uAUGQN
Sind Sie ein VMware Partner? Verfolgen Sie unser Launch Event und gewinnen Sie einen digitalen Code von iTunes im Wert von 10 €!
Wie Sie vielleicht bereits wissen, sind es nur noch wenige Tage bis zu unserem großen Online Launch Event. Vor allem wenn Sie ein VMware Partner sind, wird das Webinar Neuigkeiten für Sie bereithalten, die Sie nicht verpassen sollten.
Und nebenbei können Sie ganz einfach einen digitalen Code von iTunes im Wert von 10€ gewinnen. Wie? Ganz einfach: registrieren Sie sich und verfolgen Sie unser Webinar. Allerdings müssen Sie schnell sein, denn nur die ersten 2500 Partner können gewinnen. Für die Registrierung und die Teilnahme am Gewinnspiel klicken Sie hier.
Weiterhin erhalten alle registrierten Teilnehmer über unsere Online Event-Plattform Zugang zu zusätzlichen Inhalten und Aktivitäten. Außerdem können Sie so auch Ihr Ticket für die VMworld 2015 gewinnen. Es lohnt sich also mitzumachen!
Und nicht vergessen: das EMEA Webinar findet am 3. Februar um 10:00 Uhr statt!
iTunes is a trademark of Apple, Inc., registered in US and other countries. Apple is not a participant in or sponsor of this promotion
via VMware Blogs http://bit.ly/1tqhibt
Sind Sie ein VMware Partner? Verfolgen Sie unser Launch Event und gewinnen Sie einen digitalen Code von iTunes im Wert von 10 €!
Wie Sie vielleicht bereits wissen, sind es nur noch wenige Tage bis zu unserem großen Online Launch Event. Vor allem wenn Sie ein VMware Partner sind, wird das Webinar Neuigkeiten für Sie bereithalten, die Sie nicht verpassen sollten.
Und nebenbei können Sie ganz einfach einen digitalen Code von iTunes im Wert von 10€ gewinnen. Wie? Ganz einfach: registrieren Sie sich und verfolgen Sie unser Webinar. Allerdings müssen Sie schnell sein, denn nur die ersten 2500 Partner können gewinnen. Für die Registrierung und die Teilnahme am Gewinnspiel klicken Sie hier.
Weiterhin erhalten alle registrierten Teilnehmer über unsere Online Event-Plattform Zugang zu zusätzlichen Inhalten und Aktivitäten. Außerdem können Sie so auch Ihr Ticket für die VMworld 2015 gewinnen. Es lohnt sich also mitzumachen!
Und nicht vergessen: das EMEA Webinar findet am 3. Februar um 10:00 Uhr statt!
iTunes is a trademark of Apple, Inc., registered in US and other countries. Apple is not a participant in or sponsor of this promotion
via VMware Blogs http://bit.ly/1uAUH7g
VMware End-User Computing 2014 Recap and 2015 Predictions
Tuesday, January 27, 2015
Illumio's new security foundations can enable a new era of agility
from Latest topics for ZDNet in Security http://zd.net/1LeVmWo
Nu är det inte långt kvar…
Som du nu har hört vid det här laget, så kommer Pat Gelsinger och Ben Fathi att presentera vår största lansering online det här året 3 februari kl 10.00 (CET). Den här lanseringen är också starten på vår kampanj: 28 dagar i februari, då vi varje dag i februari kommer att dela med oss av events, tävlingar med toppenpriser och mycket mer – du måste vara med på allt det här!
Varför? Jo, här är fem väldigt goda anledningar till att du ska anmäla dig till vårt STORA online-event:
1. Var först med att höra om våra senaste nyheter, direkt från vår CEO och CTO och vad nyheterna kommer att innebära för din verksamhet
2. Du får reda på hur du ligger steget före dina konkurrenter genom att förändra din IT-infrastruktur
3. Partners, lär er mer om hur innovationer gör det möjligt för dig att leverera stabila lösningar och tjänster till dina kunder i 2015
4. Ta chansen och vinn en iPad och andra priser på #CloudCred och #vmw28days webbsida
5. Och slutligen, tre lyckliga deltagare på webbinaret kommer att vinna fribiljetter till VMworld 2015 – USA eller Europa. Se bara till att du har anmält dig!
Anmäl dig här
via VMware Blogs http://bit.ly/1BuUxn2
USN-2485-1: GNU C Library vulnerability
Ubuntu Security Notice USN-2485-1
27th January, 2015
eglibc vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS
Summary
The GNU C Library could be made to crash or run programs.
Software description
- eglibc - GNU C Library
Details
It was discovered that a buffer overflow existed in the gethostbyname
and gethostbyname2 functions in the GNU C Library. An attacker could
use this issue to execute arbitrary code or cause an application crash,
resulting in a denial of service.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 12.04 LTS:
- libc6 2.15-0ubuntu10.10
- Ubuntu 10.04 LTS:
- libc6 2.11.1-0ubuntu7.20
To update your system, please follow these instructions: http://bit.ly/1aJDvTw.
After a standard system update you need to reboot your computer to make
all the necessary changes.
References
from Ubuntu Security Notices http://bit.ly/1zqTjvk
Nu är det inte långt kvar…
Som du nu har hört vid det här laget, så …
Read More
from VMware Blogs http://bit.ly/1BuUxn2
Reducing the Attack Surface: Takeaways from the 2015 Annual Security Report
from Cisco Blog » Security http://bit.ly/18pKyFX
Coffee In the Cafe with Vic Bhagat — Israel Center of Excellence
 |
|
via EMC Feeds http://bit.ly/15FOpgg
Need some help getting to EMC World 2015? Let us help you! We’ve created a Convi...
| | Need some help getting to EMC World 2015? Let us help you! We’ve created a Convince Your Boss email with the most important information about EMC World 2015. Copy, Paste, Attend: http://emc.im/1xKWMP6  |
via EMC Feeds http://bit.ly/15FOoJm
EMC for SAPs HANA Platform - Convenience of an Appliance with the Flexibility of TDI
| |
|
via EMC Feeds http://bit.ly/1EoO2Wv
EMC Data Protection for SAP HANA; Backup and Restore
| |
|
via EMC Feeds http://bit.ly/15FOlgG
EMC for SAPs HANA Platform - Introduction Why - What - Impact.mp4
| |
|
via EMC Feeds http://bit.ly/1EoO2pt
5 things you need to know about Microservices:
| | 5 things you need to know about Microservices:  Five Things You Need To Know About Microservices | EMC infocus.emc.com Microservices bring benefits in innovation, manageability, resiliency and scalability, but there are tradeoffs. |
via EMC Feeds http://bit.ly/15FOiS4
Coffee In the Cafe with Vic Bhagat — Israel Center of Excellence
| |
|
via EMC Feeds http://bit.ly/15FOpgg