Over the last few years, cloud-based business solutions have fundamentally changed the way we do business on nearly every level, offering unprecedented mobility, accessibility and storage. The global business landscape still presents challenges, however, as businesses learn how to integrate current systems and harness the power of the cloud to its fullest capacity.
At LeaseWeb, we know that businesses experience a wide variety of triumphs and trials when it comes to managing resources and scaling to demand. That’s why we’re going beyond just the “good” in this blog post and talking about what we’ve seen our customers really experience.
Adjust is a business intelligence platform for mobile app marketers, combining attribution for advertizing sources with advanced analytics and store statistics. Using LeaseWeb infrastructure, they help the world’s largest brands reach their audience, anytime, any place.
Discover what other companies say about LeaseWeb: http://lsw.to/llk
On January 1, 2016, the new Dutch Law on Data Breach Notifications came into effect. Organizations – both companies and government agencies – are now required to immediately report any serious data breach to the Dutch Data Protection Authority (Authoriteit Persoonsgegevens). And, if it is likely that the data breach will have an adverse effect on the privacy of those involved, those people have to be informed as well.
A data breach is defined as the act of accessing, deleting, modifying or releasing personal data, committed unintentionally by the organization. Not only releasing (e.g. leaking) personal data, but also the illegal processing of data, will be seen as a data breach. Examples of data breaches are a lost USB stick containing personal data, a stolen smartphone or malicious access to a database by a hacker.
In October last year, the US Safe Harbor regime was invalidated by Europe’s Court of Justice, meaning that personal data of Europeans could no longer be transferred by a company to US companies solely on the basis of such companies being Safe Harbor-certified.
At the time of the ruling, no replacement for the Safe Harbor principle was proposed. The European Commission gave itself a 3-months term to come up with an alternative solution, working towards January 31, 2016. It is not likely that this timeline will be met but we expect new developments to be made public in the coming weeks.
For businesses or organizations whose data is particularly sensitive or mission critical, disk fault tolerance and optimized performance aren’t luxury add-ons but absolute must haves. A Redundant Array of Independent Disks (RAID) provides the additional capacity, reliability and performance they need by combining an array of physical hard disks into a single logical disk.
RAID is a common feature on servers and almost all storage platforms because no single disk could meet all the capacity and performance demands of a busy server. To make RAID an even more valuable feature for customers, LeaseWeb has now automated its implementation – making it much quicker to deploy. Currently the feature is only available for CentOS, Debian and Ubuntu but we are working to bring the feature on board for more operating systems in the near future.
A security bug affecting Linux versions 3.8 and higher was recently identified. Although this bug (CVE-2016-0728) was first introduced into the Linux Kernel in 2012, it was only discovered and made public a few days ago. When we learned of the bug’s existence, we immediately patched all internal LeaseWeb servers. We advise everyone to patch their servers as well.
The vulnerability in the Linux kernel could potentially be used by attackers in order to obtain higher privileges from a regular account. It uses a technique called “use-after-free” to control the way memory is freed on kernel objects which is then replaced with user supplied data, while keeping the privileges of that memory object.
The IT industry is slowly becoming a technically solid sector, but until now, it continues to be vulnerable as well. Security incidents are still widely reported in the press. It’s an important topic, and one there are many ways of looking at it. This is I why lead a round table session with nine LeaseWeb customers, where questions were answered about the new Dutch Law on Data Breach Notifications (Meldplicht Datalekken) and participants discussed how to organize a secure online company.
The participants were executives of companies which have IT as a core business, or companies that use IT for their online services. They were joined by LeaseWeb founders Laurens Rosenthal and Con Zwinkels, and Jort Kollerie, Enterprise Security Specialist at Dell Security. In addition, IT journalist and security specialist Brenno de Winter shared his experiences about the topic.
Read the rest of this entry »