Google Launches App Engine Firewall, WireX Malware Adds UDP Flood Feature and More in This Week’s News

Admin Globaldots
image 3 Min read

Google Rolls Out New Firewall For Its App Engine

Last week Google announced their new firewall features for app developers and admins. Currently still in beta, the App Engine firewall features will help those operating within Google’s Cloud Platform environment to by eliminating the need to write layered security rules for apps.

The new feature help to stop hackers, specific networks, or even accidental users from accessing an app. It means that developers will be able to grant selected IP addresses access when and to what they see appropriate.

The features appear simple but are heavily complex in execution. All firewall rules are testable and spread from simple single-IP blocks to complex, multi-IP contracts that allow or block access depending on strictly defined parameters.

Being in beta, Google does not recommend using the features yet. But once it’s thoroughly tested, it is bound to offer much relief to security-concerned app developers and further establish Google’s position within the cloud landscape.

Read More:

Bizety, Google Blog

Known Android DDoS Malware Adds UDP Flood

A recent collaboration between several security vendors resulted in a surprising and timely discovery of a new strain of a known Android malware. Dubbed WireX, the DDoS thingbot now includes UDP flood capabilities along with original HTTP flood.

The new variant was discovered by F5 threat researchers who claim that existing behavioral DDoS solutions will relatively easily detect the random user-agent strings and additional anomalies in the requests sent by the WireX botnet.

Judging by the many differents variations that exist in the wild, the malware seems to still be in its early stages. It currently provides limited attack types and functionality. However, experts are fearing it could evolve into a much bigger threat.

Read More:

F5 Labs, Akamai Blog

Chinese Authorities Arrest Man For Selling Great Firewall Bypassing Solutions

China’s Supreme Court has sentenced one Deng Jiewei to nine months in prison for distributing virtual private network software. Chinese citizens use VPNs to encrypt Internet traffic and bypass the Great Firewall of China (aka the Golden Shield project).

Deng and his partner Jiang Moufeng earned some 14,000 Chinese yuan (just over $2,000) selling VPN solutions that enabled users to visit usually censored foreign websites.

Deng has been found guilty of intrusions and “illegal control of computer information system procedures,” sentenced to nine months in jail along with 5,000 Chinese yuan fine.

Read More:

Hacker News

Walmart Partners With Nvidia To Build Its Own Cloud

Walmart will use Nvidia’s chips to propel its own machine learning tools and possibly tako on the likes of AWS.

The company decided to build its own datacentres which it’ll leverage to gain deeper insights into customer behaviors and possibly take a swing at arch-rival Amazon.

“Within the next 6 months or so, Walmart is going full steam with Deep Neural Networks and will be creating its own GPU Clusters on Walmart Cloud. This is incrementally positive for [Nvidia’s] GPU Business.”

Trip Chowdhry, Analyst @ Global Equities

As Walmart refuses to use anything Amazon-related, it developed its own OneOps cloud to run much of its infrastructure. They’re also offering an alternative for those that perhaps want to avoid using AWS, Azure or Google’s Cloud Platform.

Read More:

Cloud Pro

China Bans ICO Fundraising

On Monday, China’s central bank announced an immediate ban on all Initial Coin Offering fundraising, as a way to prevent fraud and illegal fundraising.

The People’s Bank of China, the country’s central bank and financial regulator, has forbidden “all types of currency issuance financing activities” that have “seriously disrupted the economic and financial order.”

The bold move has been backed by many Chinese government administrators and regulators and now marks the end of ICO fundraising in China.

The Securities and Exchange Commission (SEC) in the US has also previously warned about the risks of ICOs but has not made a firm move yet. We are yet to see if other countries will follow China’s strict policies.

Read More:

Hacker News



There’s more to see

slider item
Your Innovation Feed

eBook: Don’t Fortify, Amplify: The New Cloud Security Stack

Steven Puddephatt 25.11.21

2021’s Security leaders deal with everything from cloud-native insider threats to staying one step ahead of the unknown. While the cloud is made to amplify and speed up core business processes, the pressure to fortify cloud-borne assets from possible cyber threats painfully slows things down.  GlobalDots harnessed its 17-year cloud security experience to rethink cloud […]

Read more
slider item
Identity & Access Management (IAM)

How IT can Breeze through Onboardings without Additional Hirings

Dror Arie

Which IT Nuisance Would You Automate First? Employee onboarding is one of the heaviest, most complex operations on a company’s IT. This is especially true in fast-growing companies that may see multiple onboardings per day. And, of course, the wider a company’s software tools array, the more accounts to create and permissions to manage. In […]

Read more
slider item
Cloud Workload Protection

GlobalDots Partners with CWP Innovator Lacework

Li-Or Amir 23.11.21

In its constant endeavor to enrich its cloud security offering with the latest innovation, GlobalDots has recently introduced security unicorn Lacework to its vendor portfolio. Founded in 2015, Lacework offers a cloud security monitoring platform which brings together some of today’s top needs: Workload protection, container & K8s security, compliance monitoring. Last weekend (Nov. 18th, […]

Read more

Unlock Your Cloud Potential

Schedule a call with our experts. Discover new technology and get recommendations to improve your performance.
Contact us
figure figure figure figure figure