OUR BLOG

A critical vulnerability has been identified in SSH ProxyCommand, marked as CVE-2023-51385, with a severity rating of 9.8 on the CVSS scale. This flaw poses a significant risk, potentially allowing attackers to execute arbitrary code through shell injection on vulnerable servers. Let’s delve into the details of this vulnerability, its potential impact, and the necessary...

In a recent incident (last 3rd January), Orange Spain encountered a significant internet outage due to a cyberattack that targeted the company’s RIPE account. The threat actor, identified as ‘Snow,’ exploited vulnerabilities to misconfigure Border Gateway Protocol (BGP) routing and Resource Public Key Infrastructure (RPKI) settings, illustrating the importance of robust cybersecurity measures. Understanding BGP...

RELIANOID Community Edition Release v7.1 is a leap in functionality and stability. See what’s new: Changelog The improvements achieved with this release are: [system] Based on Debian Bookworm 12.4 [system] Enhanced SNMP support [system] optimize for lighter ISO dependencies [core] Improved static code analysis [core] Fixed Perl documentation syntax [api] API 4.0.3 and updated API...

The global internet user base continues its upward trajectory, reaching 5.16 billion users in 2023, marking nearly a 2% increase from the previous year. This growth, fueled by the momentum gained during the pandemic and the continuous evolution of social networks, underscores the entrenched habits of internet consumption worldwide. These insights are gleaned from the...

Emerging threats demand continuous attention to fortify businesses against potential vulnerabilities. Recently, researchers uncovered a critical flaw in the SSH cryptographic network protocol, identified as CVE-2023-48795. Known as the Terrapin attack, this vulnerability poses a significant risk by allowing attackers to compromise the security of SSH connections. Decoding the Terrapin Attack Unearthed by researchers at...

For heightened security and optimal data encryption, effective October 31, 2024, Microsoft mandates that interactions with Azure services must be secured using Transport Layer Security (TLS) 1.2 or later. This aligns with the discontinuation of support for TLS 1.0 and 1.1. While the Microsoft implementation of older TLS versions is not currently identified as vulnerable,...

Sberbank, a major Russian financial institution, recently disclosed that it encountered an exceptionally potent distributed denial of service (DDoS) attack, marking it as the most formidable in recent history, according to a press release. Procedure The attack was reported to peak at one million requests per second (RPS), a magnitude approximately four times larger than...

A campaign known as “Stayin’ Alive” has been actively targeting government organizations and telecommunication service providers across Asia since 2021. Aim of the attack Employing a diverse array of “disposable” malware to evade detection, the campaign primarily focuses on entities in Kazakhstan, Uzbekistan, Pakistan, and Vietnam, with Check Point, a cybersecurity firm, tracking these activities....

A massive telecommunications outage struck Australia, leaving millions of citizens and businesses without mobile and internet services due to a network failure at the telecommunications company Optus. This disruption led to significant transportation delays, the loss of hospital phone connections, and the shutdown of payment systems. Telecom giant attacked Optus, the nation’s second-largest telecommunications provider,...

We are proud to announce the release of RELIANOID Community Edition v7! Changelog The new features achieved with this release are: [system] Full rebranding to RELIANOID [system] Kernel 6.1 based on Debian Bookworm 12.2 [system] OpenSSLv3 support [system] Seamless upgrade from Community to Enterprise Edition [system] Seamless upgrade from Community v5 to v7 [system] Python3...

Singapore, renowned for its cutting-edge digital infrastructure, was struck by a sudden and disruptive digital service outage on October 14th, 2023. This unforeseen event left businesses and the general public reeling, highlighting the vulnerability of even the most advanced digital ecosystems. This blog post explores the impact of the outage on banking, telecommunications, and social...

In our current digital landscape, where websites and applications need to be available 24/7, load balancers play a crucial role in distributing traffic across multiple servers to ensure optimal performance and high availability. However, load balancers come with their own set of challenges. In this blog post, we’ll explore the pain points of load balancers...

Cyberattacks are a constant threat, and the latest victim is none other than the Japanese company Casio. Attackers have reportedly breached their servers, compromising the personal information of thousands of users from 149 countries. The breach appears to have targeted Casio’s ClassPad server, which is primarily geared towards the educational sector. In an official statement,...

In today’s increasingly connected world, airlines are not just responsible for ensuring the safety of passengers during flights but also safeguarding their digital presence. As airlines have embraced technology to streamline operations and enhance the passenger experience, the importance of cybersecurity has grown exponentially. The Digital Transformation of Airlines In recent years, airlines have undergone...

We are delighted to announce the release of RELIANOID Community Edition v5.21.0. Changelog The new features and improvements achieved with this release are: [system] seamless upgrade from Community Edition to Enterprise [system] automatize grub-pc configuration update [farms] fix debian buster apt sources Release notes This release fixes some important issues about the Debian APT sources...

In the ever-evolving landscape of cybersecurity, staying ahead of vulnerabilities and ensuring the safety of your digital assets is paramount. This week, the cURL project, under the stewardship of Daniel Stenberg, announced an imminent release that is set to address two security vulnerabilities – CVE-2023-38545 and CVE-2023-38546. In this blog post, we will delve into...

In the world of cybersecurity, vulnerabilities are an ever-present concern. Recently, security researchers unearthed a noteworthy vulnerability in the GNU C Library’s dynamic loader, often referred to as ld.so. This vulnerability, identified as CVE-2023-4911, poses a significant security risk due to its potential to enable local privilege escalation. In this blog post, we will explore...

RELIANOID ADC Load Balancer is now available for VMware Workstation 17 and VMware ESXi 8.0. The virtual template is provided in OVF format to be deployed very easily in your VMware Workstation 17 or VMware ESXi 8.0 . VMware Workstation versions supported by RELIANOID ADC Load Balancer Some good news about that is that RELIANOID...

The comprehensive report we present here delves into the evolving threat landscape of 2023, offering insights into the changing face of Denial-of-Service (DDoS) attacks. This analysis draws from a wealth of intelligence, sourced from various channels, including the mail cybersecurity experts and our dedicated threat intelligence research team. Additionally, valuable information was gleaned by bots...

We are delighted to announce the release of RELIANOID Enterprise Edition v6.2.30 . Changelog The improvements achieved with this release are: [system] RELIANOID rebranding [system] SNMP filter excess of logging [system] faster connection to the updates repository [system] include virtualization drivers by default [ipds] include ipds package by default [ipds] use secure HTTPS service for...

In today’s fast-paced digital landscape, the role of Site Reliability Engineering (SRE) has become pivotal in ensuring the reliability and performance of online services. Companies recognize the importance of investing in SRE practices to enhance customer satisfaction, minimize downtime, and maintain a competitive edge. However, to effectively implement SRE initiatives, it’s essential to create a...

A Site Reliability Engineering (SRE) company such as RELIANOID reports successfully thwarting a significant distributed denial-of-service (DDoS) attack directed at a major US bank earlier this month. This attack reached its peak at 55.1 million packets per second on September 5. Cybersecurity for Banks and Financial companies The targeted financial institution, one of the largest...

We’re glad to announce the release of RELIANOID Community Edition v5.20.0. This release will stabilize the proxy issues that you’ve been facing while we continue working on the proxyng project that is still in progress. Also, this release applies the changes for the new updates repository, but also fixes an important race condition applying bulk...

A Commitment to Innovation, Reliability, and Customer Trust When it comes to branding, we understand that it’s more than just a logo or color scheme. A brand image encompasses our mission, values, reputation, and customer experience. It’s how our customers perceive us, and it plays a crucial role in the success of our company. That’s...