KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

/0 Comments/in /by

On Thursday evening, KrebsOnSecurity was the subject of a rather massive (and mercifully brief) distributed denial-of-service (DDoS) attack. The assault came from “Meris,” the same new “Internet of Things” (IoT) botnet behind record-shattering attacks against Russian search giant Yandex this week and internet infrastructure firm Cloudflare earlier this summer.

Cloudflare recently wrote about its attack, which clocked in at 17.2 million bogus requests-per-second. To put that in perspective, Cloudflare serves over 25 million HTTP requests per second on average.

In its Aug. 19 writeup, Cloudflare neglected to assign a name to the botnet behind the attack. But on Thursday DDoS protection firm Qrator Labs identified the culprit — “Meris” — a new IoT monster that first emerged at the end of June 2021.

Qrator says Meris has launched even bigger attacks since: A titanic and ongoing DDoS that hit Russian Internet search giant Yandex last week is estimated to have been launched by roughly 250,000 malware-infected devices globally, sending 21.8 million bogus requests-per-second.

While last night’s Meris attack on this site was far smaller than the recent Cloudflare DDoS, it was far larger than the Mirai DDoS attack in 2016 that held KrebsOnSecurity offline for nearly four days. The traffic deluge from Thursday’s attack on this site was was more than four times what Mirai threw at this site five years ago. This latest attack involved more than two million requests-per-second. By comparison, the 2016 Mirai DDoS generated approximately 450,000 requests-per-second.

According to Qrator, which is working with Yandex on combating the attack, Meris appears to be made up of Internet routers produced by MikroTik. Qrator says the United States is home to the most number of MikroTik routers that are potentially vulnerable to compromise by Meris — with more than 42 percent of the world’s MikroTik systems connected to the Internet (followed by China — 18.9 percent– and a long tail of one- and two-percent countries).

The darker areas indicate larger concentrations of potentially vulnerable MikroTik routers. Qrator says there are about 328,000 MikroTik devices currently responding to requests from the Internet. Image: Qrator.

It’s not immediately clear which security vulnerabilities led to these estimated 250,000 MikroTik routers getting hacked by Meris.

“The spectrum of RouterOS versions we see across this botnet varies from years old to recent,” the company wrote. “The largest share belongs to the version of firmware previous to the current stable one.”

Qrator’s breakdown of Meris-infected MikroTik devices by operating system version.

It’s fitting that Meris would rear its head on the five-year anniversary of the emergence of Mirai, an IoT botnet strain that was engineered to out-compete all other IoT botnet strains at the time. Mirai was extremely successful at crowding out this competition, and quickly grew to infect tens of thousands of IoT devices made by dozens of manufacturers.

And then its co-authors decided to leak the Mirai source code, which led to the proliferation of dozens of Mirai variants, many of which continue to operate today.

The biggest contributor to the IoT botnet problem — a plethora of companies white-labeling IoT devices that were never designed with security in mind and are often shipped to the customer in default-insecure states — hasn’t changed much, mainly because these devices tend to be far cheaper than more secure alternatives.

The good news is that over the past five years, large Internet infrastructure companies like Akamai, Cloudflare and Google (which protects this site with its Project Shield initiative) have heavily invested in ramping up their ability to withstand these outsized attacks [full disclosure: Akamai is an advertiser on this site].

More importantly, the Internet community at large has gotten better at putting their heads together to fight DDoS attacks, by disrupting the infrastructure abused by these enormous IoT botnets, said Richard Clayton, director of Cambridge University’s Cybercrime Centre.

“It would be fair to say we’re currently concerned about a couple of botnets which are larger than we have seen for some time,” Clayton said. “But equally, you never know they may peter out. There are a lot of people who spend their time trying to make sure these things are hard to keep stable. So there are people out there defending us all.”

Nuula raises $120M to build out a financial services ‘super app’ aimed at SMBs

/0 Comments/in /by

A Canadian startup called Nuula that is aiming to build a super app to provide a range of financial services to small and medium businesses has closed $120 million of funding, money that it will use to fuel the launch of its app and first product, a line of credit for its users.

The money is coming in the form of $20 million in equity from Edison Partners, and a $100 million credit facility from funds managed by the Credit Group of Ares Management Corporation.

The Nuula app has been in a limited beta since June of this year. The plan is to open it up to general availability soon, while also gradually bringing in more services, some built directly by Nuula itself but many others following an embedded finance strategy: business banking, for example, will be a service provided by a third party and integrated closely into the Nuula app to be launched early in 2022. Alongside that, the startup will also be making liberal use of APIs to bring in other white-label services, such as B2B and customer-focused payment services, starting first in the U.S. and then expanding to Canada and the U.K. before expanding further into countries across Europe.

Current products include cash flow forecasting, personal and business credit score monitoring, and customer sentiment tracking; and monitoring of other critical metrics including financial, payments and e-commerce data are all on the roadmap.

“We’re building tools to work in a complementary fashion in the app,” CEO Mark Ruddock said in an interview. “Today, businesses can project if they are likely to run out of money, and monitor their credit scores. We keep an eye on customers and what they are saying in real time. We think it’s necessary to surface for SMBs the metrics that they might have needed to get from multiple apps, all in one place.”

Nuula was originally a side-project at BFS, a company that focused on small business lending, where the company started to look at the idea of how to better leverage data to build out a wider set of services addressing the same segment of the market. BFS grew to be a substantial business in its own right (and it had raised its own money to that end, to the tune of $184 million from Edison and Honeywell). Over time, it became apparent to management that the data aspect, and this concept of a super app, would be key to how to grow the business, and so it pivoted and rebranded earlier this year, launching the beta of the app after that.

Nuula’s ambitions fall within a bigger trend in the market. Small and medium enterprises have shaped up to be a huge business opportunity in the world of fintech in the last several years. Long ignored in favor of building solutions either for the giant consumer market, or the lucrative large enterprise sector, SMBs have proven that they want and are willing to invest in better and newer technology to run their businesses, and that’s leading to a rush of startups and bigger tech companies bringing services to the market to cater to that.

Super apps are also a big area of interest in the world of fintech, although up to now a lot of what we’ve heard about in that area has been aimed at consumers — just the kind of innovation rut that Nuula is trying to get moving.

“Despite the growth in services addressing the SMB sector, overall it still lacks innovation compared to consumer or enterprise services,” Ruddock said. “We thought there was some opportunity to bring new thinking to the space. We see this as the app that SMBs will want to use everyday, because we’ll provide useful tools, insights and capital to power their businesses.”

Nuula’s priority to build the data services that connect all of this together is very much in keeping with how a lot of neobanks are also developing services and investing in what they see as their unique selling point. The theory goes like this: banking services are, at the end of the day, the same everywhere you go, and therefore commoditized, and so the more unique value-added for companies will come from innovating with more interesting algorithms and other data-based insights and analytics to give more power to their users to make the best use of what they have at their disposal.

It will not be alone in addressing that market. Others building fintech for SMBs include Selina, ANNA, Amex’s Kabbage (an early mover in using big data to help loan money to SMBs and build other financial services for them), Novo, Atom Bank, Xepelin and Liberis, biggies like Stripe, Square and PayPal, and many others.

Novo, a neobank for SMBs, banks $41M

The credit product that Nuula has built so far is a taster of how it hopes to be a useful tool for SMBs, not just another place to get money or manage it. It’s not a direct loaning service, but rather something that is closely linked to monitoring a customers’ incomings and outgoings and only prompts a credit line (which directly links into the users’ account, wherever it is) when it appears that it might be needed.

“Innovations in financial technology have largely democratized who can become the next big player in small business finance,” added Gary Golding, General Partner, Edison Partners. “By combining critical financial performance tools and insights into a single interface, Nuula represents a new class of financial services technology for small business, and we are excited by the potential of the firm.”

“We are excited to be working with Nuula as they build a unique financial services resource for small businesses and entrepreneurs,” said Jeffrey Kramer, Partner and Head of ABS in the Alternative Credit strategy of the Ares Credit Group, in a statement. “The evolution of financial technology continues to open opportunities for innovation and the emergence of new industry participants. We look forward to seeing Nuula’s experienced team of technologists, data scientists and financial service veterans bring a new generation of small business financial services solutions to market.”

Fin names former Twilio exec Evan Cummack as CEO, raises $20M

/0 Comments/in /by

Work insights platform Fin raised $20 million in Series A funding and brought in Evan Cummack, a former Twilio executive, as its new chief executive officer.

The San Francisco-based company captures employee workflow data from across applications and turns it into productivity insights to improve the way enterprise teams work and remain engaged.

Fin was founded in 2015 by Andrew Kortina, co-founder of Venmo, and Facebook’s former VP of product and Slow Ventures partner Sam Lessin. Initially, the company was doing voice assistant technology — think Alexa but powered by humans and machine learning — and then workplace analytics software in 2020. You can read more about Fin’s origins at the link below.

Sam Lessin and Andrew Kortina on their voice assistant’s workplace pivot

The new round was led by Coatue, with participation from First Round Capital, Accel and Kleiner Perkins. The original team was talented, but small, so the new funding will build out sales, marketing and engineering teams, Cummack said.

“At that point, the right thing was to raise money, so at the end of last year, the company raised a $20 million Series A, and it was also decided to find a leadership team that knows how to build an enterprise,” Cummack told TechCrunch. “The company had completely pivoted and removed ‘Analytics’ from our name because it was not encompassing what we do.”

Fin’s software measures productivity and provides insights on ways managers can optimize processes, coach their employees and see how teams are actually using technology to get their work done. At the same time, employees are able to manage their workflow and highlight areas where there may be bottlenecks. All combined, it leads to better operations and customer experiences, Cummack said.

Graphic showing how work is really done. Image Credits: Fin

Fin’s view is that as more automation occurs, the company is looking at a “renaissance of human work.” There will be more jobs and more types of jobs, but people will be able to do them more effectively and the work will be more fulfilling, he added.

Particularly with the use of technology, he notes that in the era before cloud computing, there was a small number of software vendors. Now with the average tech company using over 130 SaaS apps, it allows for a lot of entrepreneurs and adoption of best-in-breed apps so that a viable company can start with a handful of people and leverage those apps to gain big customers.

“It’s different for enterprise customers, though, to understand that investment and what they are spending their money on as they use tools to get their jobs done,” Cummack added. “There is massive pressure to improve the customer experience and move quickly. Now with many people working from home, Fin enables you to look at all 130 apps as if they are one and how they are being used.”

As a result, Fin’s customers are seeing metrics like 16% increase in team utilization and engagement, a 25% decrease in support ticket handle time and a 71% increase in policy compliance. Meanwhile, the company itself is doubling and tripling its customers and revenue each year.

Now with leadership and people in place, Cummack said the company is positioned to scale, though it already had a huge head start in terms of a meaningful business.

Productivity startup Time is Ltd. raises $5.6M to be the ‘Google Analytics for company time’

Arielle Zuckerberg, partner at Coatue, said via email that she was part of a previous firm that invested in Fin’s seed round to build a virtual assistant. She was also a customer of Fin Assistant until it was discontinued.

When she heard the company was pivoting to enterprise, she “was excited because I thought it was a natural outgrowth of the previous business, had a lot of potential and I was already familiar with management and thought highly of them.”

She believed the “brains” of the company always revolved around understanding and measuring what assistants were doing to complete a task as a way to create opportunities for improvement or automation. The pivot to agent-facing tools made sense to Zuckerberg, but it wasn’t until the global pandemic that it clicked.

“Service teams were forced to go remote overnight, and companies had little to no visibility into what people were doing working from home,” she added. “In this remote environment, we thought that Fin’s product was incredibly well-suited to address the challenges of managing a growing remote support team, and that over time, their unique data set of how people use various apps and tools to complete tasks can help business leaders improve the future of work for their team members. We believe that contact center agents going remote was inevitable even before COVID, but COVID was a huge accelerant and created a compelling ‘why now’ moment for Fin’s solution.”

Going forward, Coatue sees Fin as “a process mining company that is focused on service teams.” By initially focusing on customer support and contact center use case — a business large enough to support a scaled, standalone business — rather than joining competitors in going after Fortune 500 companies where implementation cycles are long and there is slow time-to-value, Zuckerberg said Fin is better able to “address the unique challenges of managing a growing remote support team with a near-immediate time-to-value.”

5 emerging use cases for productivity infrastructure in 2021

 

LinkedIn doubles down on development with new learning hub, free courses and new search fields for hybrid working

/0 Comments/in /by

The wider world of employment has seen a huge shift in the wake of the COVID-19 pandemic. Looking for a job, finding someone to fill a role or simply developing professionally are just not the same as they used to be for many of us. So it’s no surprise to see companies that have built business models catering to these areas changing, too: today, LinkedIn, Microsoft’s social networking platform for the working world, announced a wave of news aimed at moving ahead with the times.

It’s launching a new Learning Hub aimed at organizations to provide professional development and other training to employees. And it’s making 40 courses free of charge to LinkedIn members specifically to address some of the changes afoot, such as how to adapt to hybrid working, how to be a better manager in the new normal, and how to return to the office, and run facilities when they are spread beyond a building to also include people’s private homes. Lastly, it’s also starting to tweak details that people can use to list and search for job openings to account for these kinds of working conditions, and more.

The Learning Hub was first previewed back in April of this year and has been running in a limited beta. Today, as part of a bigger event hosted by Microsoft CEO Satya Nadella and LinkedIn CEO Ryan Roslansky where they are discussing new trends in the world of work, the Hub is being rolled out more widely.

How engaged are your employees?

For some context, LinkedIn has been long on education for years, with acquisitions like the remote learning platform Lynda back in 2015 bolstering its own education strategy and position as a go-to platform for professional development; partnerships to bring in significant amounts of third-party content (for example, when it added some 13,000 courses via third parties in 2018); and efforts to tie together the concept of skills development with professional profiles, running research and building interactive tools for its users.

The free courses that are being launched today (and will remain free until October 9) are a timely set of videos to help companies as some of them start to make (or think about) the transitions from remote to in-office environments, but the bigger product launch, The Learning Hub, is not exactly an altruistic endeavor in that longer journey. It is being sold as a premium service for businesses — existing LinkedIn Learning Pro users will be able to use it for free until July 2022, potentially longer, it said. In addition to being a salient business, it is also connected to the company’s bigger efforts to bring in more business-focused services, and more engagement from HR departments, to bolster one of its other main revenue drivers: recruitment.

As a learning experience platform (often described as LXPs), LinkedIn’s relaunch of its own learning hub will bring it into closer competition with the likes of 360Learning, Coursera for Business, Workday, Cornerstone, and the many other platforms used by organizations to manage their own in-house and third-party professional training content. In addition to this, LinkedIn says it will be using its own data on employment trends, plus AI, to personalize content for organizations and users. The fact, however, that it’s also a platform where those HR teams can also list jobs and source candidates makes it a significantly stickier experience, and one that might feel more cohesive at a time when so much else might be more fragmented.

The new fields that LinkedIn is bringing into its recruitment service are also notable in that regard. It will now let recruiters indicate whether a job is remote, hybrid or onsite; and soon those looking for jobs will also be able to indicate which of these it’s looking for in a new role. Companies will also be able to start indicating more details on their own company status as it relates to things like vaccination requirements, and to let the world (employees, partners, customers, interested others) know whether your physical offices are open for business or not.

These new fields may sound a little trivial, or at least very specifically related to concerns and circumstances that we live with today, but I think they are more notable than this. They speak to what LinkedIn sees (and what many of us feel) are strong priorities in how we view jobs today. That opens the door to how and if LinkedIn might consider other kinds of details in company and personal profiles, as well as details that could be used in recruitment. This is something the company has also been working on for a little while already: in June it started to give users the option of adding pronouns to their profiles. All of this is pretty important, considering that there are a lot of smaller companies and calls for someone to knock LinkedIn off its pedestal. As LinkedIn dabbles with new formats and sunsets others, it’s all signals that it’s attempting to be more adaptable to counteract that.

Affinity, a relationship intelligence company, raises $80M to help close deals

/0 Comments/in /by

Relationships ultimately close deals, but long-term relationships come with a lot of baggage, i.e. email interactions, documents and meetings.

Affinity wants to take what Ray Zhou, co-founder and CEO, refers to as “data exhaust,” all of those daily interactions and communications, and apply machine learning analysis and provide insights on who in the organization has the best chance of getting that initial meeting and closing the deal.

Today, the company announced $80 million in Series C funding, led by Menlo Ventures, which was joined by Advance Venture Partners, Sprints Capital, Pear Ventures, Sway Ventures, MassMutual Ventures, Teamworthy and ECT Capital Partners’ Brian N. Sheth. The new funding gives the company $120 million in total funding since it was founded in 2014.

Affinity, based in San Francisco, is focused on industries like investment banking, private equity, venture capital, consulting and real estate, where Zhou told TechCrunch there aren’t customer relationship management systems or networking platforms that cater to the specific needs of the long-term relationship.

Stanford grads Zhou and co-founder Shubham Goel started the company after recognizing that while there was software for transactional relationships, there wasn’t a good option for the relationship journeys.

He cites data that show up to 90% of company profiles and contact information living in traditional CRM systems are incomplete or out of date. This comes as market researcher Gartner reported the global CRM software market grew 12.6% to $69 billion in 2020.

“It is almost bigger than sales,” Zhou said. “Our worldview is that relationships are the biggest industries in the world. Some would disagree, but relationships are an asset class, they are a currency that separates the winners from the losers.”

Instead, Affinity created “a new breed of CRM,”  Zhou said, that automates the inputting of that data constantly and adds information, like revenue, staff size and funding from proprietary data sources, to assign a score to a potential opportunity and increase the chances of closing a deal.

Affinity people profile. Image Credits: Affinity

He intends to use the new funding to expand sales, marketing and engineering to support new products and customers. The company has 125 employees currently; Zhou expects to be over 200 by next year.

To date, the company’s platform has analyzed over 18 trillion emails and 213 million calendar events and currently drives over 500,000 new introductions and tracks 450,000 deals per month. It also has more than 1,700 customers in 70 countries, boasting a list that includes Bain Capital Ventures, Kleiner Perkins, SoftBank Group, Nike, Qualcomm and Twilio.

Tyler Sosin, partner at Menlo Ventures, said he met Zhou and Goel at a time when the firm was looking into CRM companies, but it wasn’t until years later that Affinity came up again when Menlo itself wanted to work with a more modern platform.

As a user of Affinity himself, Sosin said the platform gives him the data he cares about and “removes the manual drudgery of entry and friction in the process.” Affinity also built a product that was intuitive to navigate.

“We have always had an interest in getting CRMs to the next generation, and Affinity is defining itself in a new category of relationship intelligence and just crushing it in the private capital markets,” he said. “They are scaling at an impressive growth rate and solving a hard problem that we don’t see many other companies in the space doing.”

Building customer-first relationships in a privacy-first world is critical

 

Box wins proxy board battle with activist investor Starboard Value

/0 Comments/in /by

A battle between Box and its majority shareholder Starboard Value over control of the board ended today when the company’s slate of directors easily defeated Starboard’s. It culminated months of maneuvering on both sides as they battled for control of the company.

Box, in a somewhat generic statement, expressed gratitude for the results:

Box appreciates the support and perspectives we have received from our stockholders throughout this process. The Board and management team will remain focused on continuing to transform Box and executing Box’s strategy to grow profitably and deliver significant value to all Box stockholders.

Starboard on the other hand, as you might expect, was unhappy with the outcome and didn’t hide that in a letter to shareholders released earlier today.

“We are certainly disappointed by the results of this election, which were heavily skewed by the voting rights tied to the preferred equity financing and the use of stockholder capital to aggressively repurchase shares ahead of the record date from stockholders likely to support change. At this juncture, the future of Box is in the Board’s hands, and there is a significant amount of work left to be done. Many commitments have been made, and we hope that Box will finally be able to follow through on its promises to drive improved results, accountability, governance, and compensation practices,” managing director Peter A. Feld wrote in the letter.

This all began when Starboard Value invested in Box, taking a 7.5% stake, which would eventually grow to 8.8% in the company. With that stake, it became the largest shareholder, but it remained relatively quiet until March of this year. That is when public rumblings began that Starboard was unhappy with the direction of the company, a conflict that could have ultimately resulted in the ouster of founder and CEO Aaron Levie or the sale of Box.

Starboard Value takes 7.5% stake in Box

The situation took an interesting turn when Box announced it was taking a $500 million investment from KKR, a move that Starboard took great exception to and made clear in a letter published at the beginning of May that it wanted significant changes to take place. As we wrote at the time:

While they couched the letter in mostly polite language, it’s quite clear Starboard is exasperated with Box. “While we appreciate the dialogue we have had with Box’s management team and Board of Directors (the “Board”) over the past two years, we have grown increasingly frustrated with continued poor results, questionable capital allocation decisions, and subpar shareholder returns,” Starboard wrote in its letter.

Less than a week later Starboard made a move for board seats and the battle was on for control. Box’s position was strengthened by two decent earnings reports prior to the vote; the company took the unusual move of delivering the results early in order to give the voters that information prior to the vote.

The company also made the unusual move of filing a document with the SEC that pushed back against Starboard’s slate of candidates. In the end, Box won the battle. Alan Pelz-Sharpe, founder and principal analyst at Deep Analysis, who has been watching the content management space where Box operates for years, sees this as a victory for Levie and Box.

“It was not a surprise to me that Box won the day. In my opinion, Starboard misread and underestimated the loyalty that Aaron Levie generates. The fact is that to most Box employees and investors, the company is a success story, and they also know that the customer base is pretty engaged and that there is plenty of room for future growth,” he said.

“For Box this vote of confidence will mean that they can (if they want) make some acquisitions and invest more in R&D moving forward, without constantly having an aggressive investor looking over their shoulder,” Pelz-Sharpe added.

It’s hard to know what happens next, but Starboard still maintains its shares for now, and it still has some clout in those numbers. Throughout its ownership tenure, Box has performed better, as the recent earnings results have shown, and the firm says that this remains the ultimate goal.

“As we have repeatedly stated, our only goal has been to help Box perform better and adopt best-in-class practices across operating performance, financial results, governance and compensation in order to create long-term value for the benefit of all stockholders. We will continue to monitor progress at Box, and we hope to see the company embrace the changes catalyzed by our involvement and create long-term value,” Starboard’s Feld wrote.

Box takes fight with activist investor public in SEC filing

Securing Amazon EKS Anywhere with SentinelOne Singularity

/0 Comments/in /by

SentinelOne Announced As Launch Partner for Amazon EKS Anywhere

Today, SentinelOne was announced as a launch partner for AWS’ new on-prem and hybrid Kubernetes service, Amazon EKS Anywhere. EKS Anywhere extends AWS’ popular cloud Kubernetes service to deliver hybrid cloud agility for on-premises workloads. EKS Anywhere brings customers flexibility and choice when deploying, managing, and scaling Kubernetes workloads.

Flexibility and Choice for Kubernetes

Containerized applications are the future of how applications are written and deployed.

Gartner predicts that by 2023, 70% of organizations will be running three or more containerized applications in production. Kubernetes, a purpose-built open-source platform for managing and orchestrating containers, is the most used container orchestration control plane powering more than 50% of containerized applications. By abstracting the complexity of container lifecycle management, Kubernetes enables organizations to re-architect and modernize applications for scalability and portability.

Despite the almost universal adoption of cloud services, many organizations have sunk CapEx investments in on-premises infrastructure. Additionally, DevOps teams likely have separate tooling for Kubernetes in the data center vs. Kubernetes running in public clouds like AWS. Multiple control planes for Kubernetes workloads lead to a lack of uniformity, which makes management complex, confusing, and expensive. Operational differences between separate Kubernetes environments also lead to gaps in security policy and controls. Organizations need a way to unify the management of Kubernetes, utilizing existing on-premises investments while taking advantage of the agility and scalability of the public cloud. For these reasons, hybrid approaches offer the best of both worlds and are the driving force behind AWS’ new EKS Anywhere offering.

How Does EKS Anywhere Work?

EKS Anywhere creates a hybrid cloud Kubernetes control plane to create and operate K8s on-premises on your own hardware or in the public cloud. Where the EKS service manages Kubernetes workloads in AWS, EKS Anywhere extends the managed Kubernetes service to containerized workloads deployed either on-premises or hybrid.

EKS Anywhere uses the backbone of EKS to automate the deployment, scaling, and management of containerized apps.

EKS and EKS Anywhere are powered by Amazon EKS Distro, Amazon’s open-source Kubernetes distro. EKS Distro is an upstream, certified conformant version of Kubernetes that enables the creation of K8s clusters anywhere. EKS Anywhere bundles Kubernetes with networking, cluster config database, and storage plugins that are all tested, supported, and validated by AWS. With EKS Anywhere, AWS offers continuous security patches, updates, and extended support.

EKS Anywhere helps reduce support cost, tool redundancy, and complexity with a single dashboard in AWS console that provides unified management of K8s regardless of location. EKS Anywhere supports several types of deployments based on the availability of internet connectivity at the on-premises location:

  • Fully Connected: Supports backups, instance snapshots to S3, and full-featured audit, compliance, and policy management.
  • Partially Connected: In cases of intermittent disconnects, the EKS console will show the last connected state.
  • Disconnected: Use EKS distro to run clusters on-premises. All of the benefits of homogeneous EKS Distro images without a centralized EKS management console in AWS.

Amazon EKS Anywhere delivers a number of benefits for organizations seeking frictionless hybrid cloud:

  • Workload migration and modernization: Provides developers and DevOps with consistent tooling and a familiar interface for deploying Kubernetes. Rather than refactoring or re-platforming containers, a common base image enables an accelerated journey to the cloud for K8s workloads.
  • Utilize and optimize on-premises investments: Use existing investments in on-premises infrastructure, especially for applications that require low latency. Deploy applications on-premises using EKS Anywhere and seamlessly burst excess demand to EKS in AWS for temporary capacity.
  • Flexibility: Choose the right infrastructure for the right workload with maximum choice. Have applications with specific data residency requirements? Keep the data where it is for compliance purposes, and shift compute to cloud-based instances in EKS.

What Does SentinelOne Bring To EKS Anywhere?

Kubernetes provides many benefits for DevOps, but if improperly secured presents an attractive target for adversaries who seek to disrupt business. The 2021 IDC State of Cloud Security survey says 98% of companies surveyed experienced a cloud data breach in the last 18 months, illustrating that cloud workloads are just as vulnerable to malware, ransomware, and nation-state attacks as user endpoints. Kubernetes has become a popular attack vector and is primarily targeted for data theft, cryptomining using the underlying infrastructure, and denial of service to critical applications. This challenge prompted the NSA to issue specific guidance on the hardening of Kubernetes environments.

Just as DevOps and developers struggle with tool redundancy and complexity, so do cloud security practitioners. Multiple cloud security tools create operational difficulties and blind spots, which may leave organizations vulnerable. SentinelOne believes that for cloud security to be effective, it should provide the same level of consolidated management and automation as Amazon EKS Anywhere does for Kubernetes.

An integral part of the Singularity™ Platform, Singularity Cloud extends security and visibility to assets running in public clouds, private clouds, and on-premises data centers. Singularity Cloud is the single console for hybrid cloud management; security teams can manage not only Linux and Windows servers in Amazon EC2, but also Docker and Kubernetes-managed containers, all from the same console where they secure user endpoints.

A single featherweight Sentinel agent delivers runtime, AI-driven protection, detection, and response at machine speed across the hybrid cloud estate. The Kubernetes Sentinel brings ActiveEDR® to Docker containers and both self-managed and managed Kubernetes services like EKS, EKS Anywhere, ECS, and ECS Anywhere, with automated kill and quarantine, Application Control Engine, and complete remote shell forensics.

Detecting Threats in an EKS Environment

Our agent is DevOps-friendly. Auto-deployed as a DaemonSet, a single, resource-efficient Kubernetes Sentinel agent protects the Kubernetes worker, its pods, and all their containers without any container instrumentation to gum up the works. Plus, our agent operates entirely in user space: no tainted kernels, no kernel panics, and freedom to update your AMI at will without fear of conflicting with the Sentinel agent.

SentinelOne gathers cloud metadata from the workload, making it easy to tag, group, and manage policy based on the workload characteristics. To simplify management, we can take all instances with a particular image ID and apply a more granular or hardened policy.

“Amazon EKS Anywhere brings unprecedented flexibility and agility for Kubernetes workloads by offering true hybrid cloud container orchestration, “ said Guy Gertner, Vice President of Product Management, SentinelOne. “The SentinelOne Singularity™ Platform delivers industry-leading protection and EDR to Kubernetes and containerized workloads, wherever they are deployed whether on-premises or in AWS.”

SentinelOne is powered by AWS and is available on the AWS Marketplace. Learn more about SentinelOne and AWS or join our upcoming webinar with Presidio to see how SentinelOne brings AI-powered threat prevention, detection, and response to AWS workloads.

Like this article? Follow us on LinkedIn, Twitter, YouTube or Facebook to see the content we post.

Read more about Cyber Security

New IBM Power E1080 server promises dramatic increases in energy efficiency, power

/0 Comments/in /by

We know that large data centers running powerful servers use vast amounts of electricity. Anything that can reduce consumption would be a welcome change, especially in a time of climate upheaval. That’s where the new IBM Power E1080 server, which is powered by the latest Power10 processors, comes into play.

IBM claims it can consolidate the work of 126 competitive servers down to just two E1080s, saving 80% in energy costs, by the company’s estimation. What’s more, the company says, “The new server has set a new world record in a SAP benchmark that measures performance for key SAP applications, needing only half the resources used by x86 competitive servers to beat them by 40%.”

Patrick Moorhead, founder and principal analyst at Moor Insight & Strategy, who closely follows the chip industry, says that the company’s bold claims about what these systems can achieve make sense from a hardware design perspective. “The company’s claims on SAP, Oracle and OpenShift workloads pass initial muster with me as it simply requires less sockets and physical processors to achieve the same performance. These figures were compared to Intel’s Cascade Lake that will be replaced with Sapphire Rapids (in the future),” he said.

IBM breaks latest revenue losing streak as cloud revenue shows modest growth

Steve Sibley, vice president and business line executive in the Power Systems Group at IBM, says that the new server (and the Power10 chip running it) have been designed for customers looking for a combination of speed, power, efficiency and security. “If you look at what we deliver here with scale and performance, it gives customers even more agility to respond quickly to scale to their highest demands,” he said.

To give customers options, they can buy E1080 servers outright and install them in a company data center. They can buy server access as a service from the IBM cloud (and possibly competitor clouds) or they can rent the servers and install them in their data centers and pay by the minute to help mitigate the cost.

“Our systems are a little bit more expensive on what I call a base cost of acquisition standpoint, but we allow customers to actually purchase [E1080 servers] on an as-a-service basis with a by-the-minute level of granularity of what they’re paying for,” he said.

What’s more, this server, which is the first to be released based on the Power10 chip, is designed to run Red Hat software under the hood, giving the company another outlet for its 2018 $34 billion acquisition.

“Bringing Red Hat’s platform to this platform is a key way to modernize applications, both from just a RHEL (Red Hat Enterprise Linux) operating system environment, as well as OpenShift (the company’s container platform). The other place that has been key with our Red Hat acquisition and our capitalizing on it is that we’re leveraging their Ansible projects and products to drive management and automation on our platform, as well,” Sibley explained.

Since Arvind Krishna took over as CEO at IBM in April 2020, he has been trying to shift the focus of the company to hybrid computing, where some computing exists in the cloud and some on prem, which is the state many companies will find themselves in for many years to come. IBM hopes to leverage Red Hat as a management plane for a hybrid environment, while offering a variety of hardware and software tools and services.

While Red Hat continues to operate as a standalone entity inside IBM, and wants to remain a neutral company for customers, Big Blue is still trying to find ways to take advantage of its offerings whenever possible and using it to run its own systems, and the E1080 provides a key avenue for doing that.

The company says that it is taking orders for the new servers starting immediately and expects to begin shipping systems at the end of the month.

Google Workspace opens up spaces for all users

/0 Comments/in /by

Employee location has become a bit more complicated as some return to the office, while others work remotely. To embrace those hybrid working conditions, Google is making more changes to its Google Workspace offering by going live with spaces in Google Chat for all users.

Spaces integrates with Workspace tools, like the calendar, Drive and documents, to provide a more hybrid work experience where users can see the full history, content and context of conversations, regardless of their location.

Google’s senior director of product management, Sanaz Ahari, wrote in a blog post Wednesday that customers wanted spaces to be more like a “central hub for collaboration, both in real time and asynchronously. Instead of starting an email chain or scheduling a video meeting, teams can come together directly in a space to move projects and topics along.”

Here are some new features users can see in spaces:

  • One interface for everything — inbox, chats, spaces and meetings.
  • Spaces, and content therein, can be made discoverable for people to find and join in the conversation.
  • Better search ability within a team’s knowledge base.
  • Ability to reply to any message within a space.
  • Enhanced security and admin tools to monitor communication.

Employees can now indicate if they will be virtual or in-person on certain days in Calendar for collaboration expectations. As a complement, users can call colleagues on both mobile and desktop devices in Google Meet.

Calendar work location. Image Credits: Google

In November, all customers will be able to use Google Meet’s Companion Mode to join a meeting from a personal device while tapping into in-room audio and video. Also later this year, live-translated captions will be available in English to French, German, Portuguese and Spanish, with more languages being added in the future.

In addition, Google is also expanding its Google Meet hardware portfolio to include two new all-in-one video conferencing devices, third-party devices — Logitech’s video bar and Appcessori’s mobile device speaker dock — and interoperability with Webex by Cisco.

Google is tying everything together with a handbook for navigating hybrid work, which includes best practice blueprints for five common hybrid meetings.

Chrome Beta to experiment with a more powerful New Tab page, web highlights and search changes

 

Real-time database platform SingleStore raises $80M more, now at a $940M valuation

/0 Comments/in /by

Organizations are swimming in data these days, and so solutions to help manage and use that data in more efficient ways will continue to see a lot of attention and business. In the latest development, SingleStore — which provides a platform to enterprises to help them integrate, monitor and query their data as a single entity, regardless of whether that data is stored in multiple repositories — is announcing another $80 million in funding, money that it will be using to continue investing in its platform, hiring more talent and overall business expansion. Sources close to the company tell us that the company’s valuation has grown to $940 million.

The round, a Series F, is being led by Insight Partners, with new investor Hewlett Packard Enterprise, and previous backers Khosla Ventures, Dell Technologies Capital, Rev IV, Glynn Capital and GV (formerly Google Ventures) also participating. The startup has to date raised $264 million, including most recently an $80 million Series E last December, just on the heels of rebranding from MemSQL.

The fact that there are three major strategic investors in this Series F — HPE, Dell and Google — may say something about the traction that SingleStore is seeing, but so too do its numbers: 300%+ increase in new customer acquisition for its cloud service and 150%+ year-over-year growth in cloud.

Data is the world’s most valuable (and vulnerable) resource

Raj Verma, SingleStore’s CEO, said in an interview that its cloud revenues have grown by 150% year over year and now account for some 40% of all revenues (up from 10% a year ago). New customer numbers, meanwhile, have grown by over 300%.

“The flywheel is now turning around,” Verma said. “We didn’t need this money. We’ve barely touched our Series E. But I think there has been a general sentiment among our board and management that we are now ready for the prime time. We think SingleStore is one of the best-kept secrets in the database market. Now we want to aggressively be an option for people looking for a platform for intensive data applications or if they want to consolidate databases to one from three, five or seven repositories. We are where the world is going: real-time insights.”

With database management and the need for more efficient and cost-effective tools to manage that becoming an ever-growing priority — one that definitely got a fillip in the last 18 months with COVID-19 pushing people into more remote working environments. That means SingleStore is not without competitors, with others in the same space, including Amazon, Microsoft, Snowflake, PostgreSQL, MySQL, Redis and more. Others like Firebolt are tackling the challenges of handing large, disparate data repositories from another angle. (Some of these, I should point out, are also partners: SingleStore works with data stored on AWS, Microsoft Azure, Google Cloud Platform and Red Hat, and Verma describes those who do compute work as “not database companies; they are using their database capabilities for consumption for cloud compute.”)

But the company has carved a place for itself with enterprises and has thousands now on its books, including GE, IEX Cloud, Go Guardian, Palo Alto Networks, EOG Resources and SiriusXM + Pandora.

“SingleStore’s first-of-a-kind cloud database is unmatched in speed, scale, and simplicity by anything in the market,” said Lonne Jaffe, managing director at Insight Partners, in a statement. “SingleStore’s differentiated technology allows customers to unify real-time transactions and analytics in a single database.” Vinod Khosla from Khosla Ventures added that “SingleStore is able to reduce data sprawl, run anywhere, and run faster with a single database, replacing legacy databases with the modern cloud.”