Microservices Expo Authors: Liz McMillan, Elizabeth White, John Katrick, Pat Romanski, Gordon Haff

Blog Feed Post

Five Lessons The League Can Teach Us about Cyber Security

Lessons from the hit show, The League

Internet Security and the Offensive Line

The 2013 NFL season kicks off tonight with the defending Super Bowl champion Baltimore Ravens visiting the Denver Broncos. For many of us, the start of football season means lazy chicken wing and pizza-filled Sundays in front of the TV. But, it also means it’s time to scramble together and pick your fantasy football team. If you participate in fantasy football, you may be a fan of the hit FX television show, The League which premiered last night. Don’t worry – there are no spoilers here. The League follows a group of old friends in a fantasy football league that seems to bleed into every aspect of their lives. Even if you don’t like fantasy football, or football for that matter, this show is likely to have you either laughing or turning away from the television in disgust at their attempts to make each other’s lives miserable. Aside from football, pranks, and Yobogoya, the show happens to teach us some good, not so obvious, lessons about cyber security. Read on for five lessons The League can teach us about cyber security.

  • Always Monitor

  • In football, players are constantly getting injured, traded and let go. In order to have a successful team you should be monitoring these updates as much as possible to make sure you choose the right players every week. When it comes to monitoring his team, Taco, Kevin’s obnoxious yet lovable brother, is notorious for not doing it. In fact, his lineup is usually decided by Kevin or his wife (and brains of the operation), Jenny, who simply want to keep him in the league.

    Keeping up-to-date with your fantasy team is similar to keeping your antivirus software up-to-date. New viruses are being released at a staggering rate and if your antivirus is using outdated virus signatures, the chances that your outdated AV software will detect the new virus is unlikely. Comodo Internet Security software makes monitoring a synch – it’s as simple as pressing a “Fix It” button when an update or scan is necessary.

  • Research From Trustworthy Sources

  • Kevin is helpless without advice from his wife, Jenny. He knows he needs help making his draft picks and trades but he gets lucky when he runs into the infamous Matthew Berry, an [actual] ESPN fantasy sports analyst. He enlists Matthew Berry’s help because he trusts his expert advice, but in the end, he doesn’t get to benefit from Matthew Berry’s advice because Andre harasses him when he thinks Matthew is hitting on his date.

    Just like Kevin used a trusted source for his fantasy football advice, you too should only visit trusted websites, especially when entering personal data in order to make online transactions. Websites that securely process your credit card information will have and extra “s” in the URL. So, instead Comodo and Internet Security of “http” you will see “https” in the URL while visiting secure websites. That’s because these websites have SSL Certificates to prove their authenticity. An SSL Certificate ensures that the website (or company) is authentic and safe for online transactions. Another way to spot a trusted website is to look for a trust seal which usually looks like a lock.

  • Use Secure Passwords

  • Taco is about as sharp as a marble so it’s not a huge surprise that he named his team, “Password is Taco.” Knowing Taco’s team name and taking an “educated guess” as to what his password is, another player could easily hack into his account and make unwarranted trades on his behalf. Though, he may not have the best of players to pick from since he doesn’t see the disadvantage to picking a kicker first.

    “I like kickers. They’re the toughest.” – Taco

    A strong password is fundamental to keeping your personal data safe. While a strong password alone will not protect you from being hacked, it can certainly help deter an attack. With the amount of personal information we post online (name, email, kids’ names, dogs’ name, birthday, etc.), we make it a lot easier for cyber criminals to decipher our passwords. Hackers often attempt to break into accounts by employing a “dictionary attack,” which involves using words straight from the dictionary to guess your password. Instead of essentially handing over your password by using easy-to-guess words, create them from a combination of letters, numbers, and symbols that would not be associated with a word found in the dictionary (or on your Facebook profile).

  • Don’t Let Fake Websites Fool You

  • Taco is certainly no Mark Zuckerberg but he did create the world’s first offline social network called “MyFace” where your face if your profile Don't let Fake Websites Fool Youpicture. The concept followed Facebook’s layout complete with a physical face wall, covered with outdated and awkward photos of his friends. He even created a “link” symbolized by a jewelry chain and you could literally poke or write on someone’s wall. In order to leave a message for one of his friends, he would break into their house while they were sleeping and leave a handwritten note. When his friends complained about the break-ins, Taco suggested they create a MyFace group, “People who don’t like getting their houses broken into at 4 AM.” Even though Taco’s MyFace required you to carry a corkboard-bound offline social network with you no matter where you went, he got a couple of others to join in on the fun.

    While you certainly wouldn’t mistake “MyFace” for the real Facebook, the concept of tricking people into using fake sites to steal their information happens every day. Cyber criminals deploy phishing scams in emails that entice you to click on what appears to be a link to an authentic website but actually takes you to phony scam site or legitimate-looking pop-up window. The good news is, if you fall for the scam and click through, there are some signs that alert you that the website is phony. For instance, sometimes the URL will have one different letter or one missing letter, such as www.facbook.com where you wouldn’t necessarily notice the missing “e” in the URL. Once you’re on the page that looks just like the legitimate www.facebook.com, you login and the cybercriminal has access to your password and other personal information. The consequences can be far worse if you fall for a phishing scam that takes you to a fake banking website. That’s why it’s best to never click on a link within an email from an unknown sender or enter personal information on a website that isn’t “https.”

  • It’s Easy To Catch A Virus
  • Andre had no idea what went down in his loft while the rest of the gang were supposedly making their draft picks. His final punishment for losing to Taco in the previous season was being banished from the next season’s draft. Unbeknownst to him, his other final punishment came at the same time while his so-called friends organized an adult video to be filmed in his apartment by Rafi, Ruxin’s revolting brother-in-law, and Dirty Randy, a shady Liberian/adult film maker.

    The gang planned to reveal this surprise to Andre after he lived in the soiled space for a few days. Suffice to say, his furniture needed to be burned after the event; however, Andre didn’t know and ate crackers off the couch used for the main scene. Once the act was committed, the scene of the crime was cleaned up just enough so Andre wouldn’t notice. When Andre invited the rest of the league over, he still didn’t realize that everyone was disgusted to even enter the place. Andre only found out about the punishment days after he had mysteriously contracted thrush through “immaculate infection”, a play on football’s “immaculate reception.” The point is, Andre wasn’t even a part of the video, yet he still got a virus because it’s that easy.

    Just like Andre didn’t go out of his way to catch a virus, he still ended up with one. You may think you’re keeping your device secure by steering clear of risky websites, but that’s not enough. Thousands of new viruses are created every day so keep your device secure with the proper antivirus protection.

    There you have it. If you learn from the five lessons The League can teach us about cyber security, you’ll have a much better chance at keeping your devices safe and secure from cyber criminals. Oh yeah, don’t forget to make your draft picks before it’s too late so you have a chance at winning the Shiva Bowl this season!

Read the original blog entry...

More Stories By Solar VPS

Solar VPS lives the Parallels "Optimized Computing" vision. It has created a virtual infrastructure from client offerings, data facilities and management offices. Solar VPS works very closely with Parallels to provide the highest possible service and support to customers.

@MicroservicesExpo Stories
Modern software design has fundamentally changed how we manage applications, causing many to turn to containers as the new virtual machine for resource management. As container adoption grows beyond stateless applications to stateful workloads, the need for persistent storage is foundational - something customers routinely cite as a top pain point. In his session at @DevOpsSummit at 21st Cloud Expo, Bill Borsari, Head of Systems Engineering at Datera, explored how organizations can reap the bene...
The dynamic nature of the cloud means that change is a constant when it comes to modern cloud-based infrastructure. Delivering modern applications to end users, therefore, is a constantly shifting challenge. Delivery automation helps IT Ops teams ensure that apps are providing an optimal end user experience over hybrid-cloud and multi-cloud environments, no matter what the current state of the infrastructure is. To employ a delivery automation strategy that reflects your business rules, making r...
"We started a Master of Science in business analytics - that's the hot topic. We serve the business community around San Francisco so we educate the working professionals and this is where they all want to be," explained Judy Lee, Associate Professor and Department Chair at Golden Gate University, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
Cloud Governance means many things to many people. Heck, just the word cloud means different things depending on who you are talking to. While definitions can vary, controlling access to cloud resources is invariably a central piece of any governance program. Enterprise cloud computing has transformed IT. Cloud computing decreases time-to-market, improves agility by allowing businesses to adapt quickly to changing market demands, and, ultimately, drives down costs.
There is a huge demand for responsive, real-time mobile and web experiences, but current architectural patterns do not easily accommodate applications that respond to events in real time. Common solutions using message queues or HTTP long-polling quickly lead to resiliency, scalability and development velocity challenges. In his session at 21st Cloud Expo, Ryland Degnan, a Senior Software Engineer on the Netflix Edge Platform team, will discuss how by leveraging a reactive stream-based protocol,...
We call it DevOps but much of the time there’s a lot more discussion about the needs and concerns of developers than there is about other groups. There’s a focus on improved and less isolated developer workflows. There are many discussions around collaboration, continuous integration and delivery, issue tracking, source code control, code review, IDEs, and xPaaS – and all the tools that enable those things. Changes in developer practices may come up – such as developers taking ownership of code ...
For over a decade, Application Programming Interface or APIs have been used to exchange data between multiple platforms. From social media to news and media sites, most websites depend on APIs to provide a dynamic and real-time digital experience. APIs have made its way into almost every device and service available today and it continues to spur innovations in every field of technology. There are multiple programming languages used to build and run applications in the online world. And just li...
The general concepts of DevOps have played a central role advancing the modern software delivery industry. With the library of DevOps best practices, tips and guides expanding quickly, it can be difficult to track down the best and most accurate resources and information. In order to help the software development community, and to further our own learning, we reached out to leading industry analysts and asked them about an increasingly popular tenet of a DevOps transformation: collaboration.
How is DevOps going within your organization? If you need some help measuring just how well it is going, we have prepared a list of some key DevOps metrics to track. These metrics can help you understand how your team is doing over time. The word DevOps means different things to different people. Some say it a culture and every vendor in the industry claims that their tools help with DevOps. Depending on how you define DevOps, some of these metrics may matter more or less to you and your team.
"CA has been doing a lot of things in the area of DevOps. Now we have a complete set of tool sets in order to enable customers to go all the way from planning to development to testing down to release into the operations," explained Aruna Ravichandran, Vice President of Global Marketing and Strategy at CA Technologies, in this SYS-CON.tv interview at DevOps Summit at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
"We are an integrator of carrier ethernet and bandwidth to get people to connect to the cloud, to the SaaS providers, and the IaaS providers all on ethernet," explained Paul Mako, CEO & CTO of Massive Networks, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
"Grape Up leverages Cloud Native technologies and helps companies build software using microservices, and work the DevOps agile way. We've been doing digital innovation for the last 12 years," explained Daniel Heckman, of Grape Up in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
"NetApp's vision is how we help organizations manage data - delivering the right data in the right place, in the right time, to the people who need it, and doing it agnostic to what the platform is," explained Josh Atwell, Developer Advocate for NetApp, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"Outscale was founded in 2010, is based in France, is a strategic partner to Dassault Systémes and has done quite a bit of work with divisions of Dassault," explained Jackie Funk, Digital Marketing exec at Outscale, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"I focus on what we are calling CAST Highlight, which is our SaaS application portfolio analysis tool. It is an extremely lightweight tool that can integrate with pretty much any build process right now," explained Andrew Siegmund, Application Migration Specialist for CAST, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
Let's do a visualization exercise. Imagine it's December 31, 2018, and you're ringing in the New Year with your friends and family. You think back on everything that you accomplished in the last year: your company's revenue is through the roof thanks to the success of your product, and you were promoted to Lead Developer. 2019 is poised to be an even bigger year for your company because you have the tools and insight to scale as quickly as demand requires. You're a happy human, and it's not just...
The enterprise data storage marketplace is poised to become a battlefield. No longer the quiet backwater of cloud computing services, the focus of this global transition is now going from compute to storage. An overview of recent storage market history is needed to understand why this transition is important. Before 2007 and the birth of the cloud computing market we are witnessing today, the on-premise model hosted in large local data centers dominated enterprise storage. Key marketplace play...
Cavirin Systems has just announced C2, a SaaS offering designed to bring continuous security assessment and remediation to hybrid environments, containers, and data centers. Cavirin C2 is deployed within Amazon Web Services (AWS) and features a flexible licensing model for easy scalability and clear pay-as-you-go pricing. Although native to AWS, it also supports assessment and remediation of virtual or container instances within Microsoft Azure, Google Cloud Platform (GCP), or on-premise. By dr...
With continuous delivery (CD) almost always in the spotlight, continuous integration (CI) is often left out in the cold. Indeed, it's been in use for so long and so widely, we often take the model for granted. So what is CI and how can you make the most of it? This blog is intended to answer those questions. Before we step into examining CI, we need to look back. Software developers often work in small teams and modularity, and need to integrate their changes with the rest of the project code b...
Kubernetes is an open source system for automating deployment, scaling, and management of containerized applications. Kubernetes was originally built by Google, leveraging years of experience with managing container workloads, and is now a Cloud Native Compute Foundation (CNCF) project. Kubernetes has been widely adopted by the community, supported on all major public and private cloud providers, and is gaining rapid adoption in enterprises. However, Kubernetes may seem intimidating and complex ...