Categories
Event Hosting News Technology Web Security

GlobalSign Honored as Gold Winner at 9th Annual 2013 Security Industry’s Global Excellence Award

BOSTON, MA – GlobalSign, the enterprise SaaS-based Certificate Authority (CA), announced today that Info Security Products Guide, the industry’s leading information security research and advisory guide, has named GlobalSign SSL Certificates a Gold winner of the 2013 Global Excellence Awards in SSL. The security industry celebrated its 9th Annual 2013 Global Excellence Awards in San Francisco by honoring excellence in every facet of the industry, including products, people behind the successes and best companies. This is second significant achievement by GlobalSign this week as yesterday it became the first Certificate Authority to provide all Certificate revocations status services over IPv6.GlobalSign Honored as Gold Winner in the 9th Annual 2013 Security Industry’s Global Excellence Award in SSL

This industry honor is the greatest endorsement of the fact that GlobalSign is ahead of the curve in offering best-of-the-best products that provide the highest security in SSL and the Internet as a whole. We feel GlobalSign separates itself from the rest of the pack by continually innovating in the digital-certificate space and by doing whatever it takes to make Web transactions, for the enterprise and individuals alike, much safer. – Steve Waite, CEO, GlobalSign Americas.

More than 50 judges from a broad spectrum of industry voices from around the world participated, and their average scores determined the 2013 Global Excellence Awards Finalists and Winners. Winners were announced during the awards dinner and presentation on February 27, 2013, in San Francisco attended by the finalists, judges and industry peers.

“This industry honor is the greatest endorsement of the fact that GlobalSign is ahead of the curve in offering best-of-the-best products that provide the highest security in SSL and the Internet as a whole,” said Steve Waite, CEO, GlobalSign Americas. “We feel GlobalSign separates itself from the rest of the pack by continually innovating in the digital-certificate space and by doing whatever it takes to make Web transactions, for the enterprise and individuals alike, much safer.”

GlobalSign SSL Certificates provide enterprises with a unique set of added features and benefits that maximize the value of SSL investments and make the security protocol practical and efficient for the enterprise. Fortune 100 and government organizations around the world conduct a wide variety of web transactions each and every day, ranging from significant credit card transactions and confidential data and file transfers to lower-priority browsing of social-media platforms, all of which are secured by GlobalSign’s SSL certificate solutions. GlobalSign is transforming how organizations use SSL across networks and the cloud through automated workflow and management technology, and by building new value-add benefits into the core DNA of the GlobalSign SSL range.

About Info Security Products Guide
Info Security Products Guide sponsors leading conferences and expos worldwide and plays a vital role in keeping end-users informed of the choices they can make when it comes to protecting their digital resources. It is written expressly for those who are adamant on staying informed of security threats and the preventive measure they can take. You will discover a wealth of information in this guide including tomorrow’s technology today, best deployment scenarios, people and technologies shaping info security and market research that facilitate in making the most pertinent security decisions. The Info Security Products Guide Awards recognize and honor excellence in all areas of information security. To learn more, visit www.infosecurityproductsguide.com.

About GlobalSign
GlobalSign SSL Certificates
GlobalSign has been a trust service provider since 1996. Its focus has been, and always will be, on providing convenient and highly productive PKI solutions for organizations of all sizes. Its core Digital Certificate solutions allow its thousands of authenticated customers to conduct SSL secured transactions, data transfer, distribution of tamper-proof code, and protection of online identities for secure email and access control. Vision and commitment to innovation led to GlobalSign being recognized by Frost & Sullivan for the 2011 Product Line Strategy Award. The company has local offices in the US, Europe and throughout Asia. For the latest news on GlobalSign visit www.globalsign.com.

About GMO Internet Group
GMO Internet Group is a comprehensive provider of industry-leading Internet solutions including domain name registration, cloud-based and traditional hosting, ecommerce, security, and payment processing services that each hold the top share of their respective markets in Japan. Other key business areas for the Group include online securities/FX trading, Internet advertising, search engine marketing and online research, and smartphone game development and publishing. GMO Internet, Inc. (TSE: 9449) is headquartered in Tokyo, Japan. Please visit www.gmo.jp/en for more information.

Categories
Hosted Cloud Apps Hosting Innovation New Products News Technology

GlobalSign is First Certificate Authority to Provide Revocation Status Services Over IPv6

Boston, MA – GlobalSign , the enterprise SaaS Certificate Authority (CA), today announced that it is the first Certificate Authority to provide all Certificate revocations status services over IPv6. This is an important step for the SSL ecosystem, as revocation status services underpin the base security system providing trust to the Internet. The news comes a few days after GlobalSign announced the launch of a new solution to help companies overcome IP restrictions when it comes to implementing SSL security.
GlobalSign is First Certificate Authority to Support IPv6

We are proud to be the first CA to offer revocation status services that are IPv6 compliant.Making investments to support the evolving requirements of the Internet is an important part of GlobalSign’s philosophy to not just be an SSL provider but a security partner. Organizations that work with GlobalSign benefit from a partner that understands the changing nature of the modern Internet and that IPv6 has now become the new norm.
– Ryan Hurst, CTO, GlobalSign.Ryan Hurst, CTO, GlobalSign.

The current version of the Internet Protocol (IPv4) used to route traffic across the Internet has only a finite number of unique IP addresses. The explosive growth of applications and devices requiring unique IP addresses will result in a near-term exhaustion of IP addresses. As the successor to IPv4, IPv6 resolves this issue by using longer 128-bit addresses, adds additional security layers, and is critical to the Internet’s continued growth.Many major organizations have already shown their commitment to enabling IPv6 through initiatives like World IPv6 Day in 2012 . Furthermore, from September 2012 all U.S. government federal agencies were required to have their public-facing services reachable over IPv6. GlobalSign has taken a strong leadership stance within the CA industry to accommodate the needs of both government agencies and other organizations that have upgraded their websites to support IPv6.

“We are proud to be the first CA to offer revocation status services that are IPv6 compliant,” said Ryan Hurst, CTO of GlobalSign. “Making investments to support the evolving requirements of the Internet is an important part of GlobalSign’s philosophy to not just be an SSL provider but a security partner. Organizations that work with GlobalSign benefit from a partner that understands the changing nature of the modern Internet and that IPv6 has now become the new norm.”

All GlobalSign SSL Certificates are currently available and enabled for IPv6 at no additional charge to the customer.

About GMO GlobalSign
GlobalSign has been a trust service provider since 1996. Its focus has been, and always will be, on providing convenient and highly productive PKI solutions for organizations of all sizes. Its core Digital Certificate solutions allow its thousands of authenticated customers to conduct SSL secured transactions, data transfer, distribution of tamper-proof code, and protection of online identities for secure email and access control. Vision and commitment to innovation led to GlobalSign being recognized by Frost & Sullivan for the 2011 Product Line Strategy Award. The company has local offices in the US, Europe and throughout Asia. For the latest news on GlobalSign visit www.globalsign.com.

GMO Internet Group
GMO Internet Group is a comprehensive provider of industry-leading Internet solutions including domain name registration, cloud-based and traditional hosting, ecommerce, security, and payment processing services that each hold the top share of their respective markets in Japan. Other key business areas for the Group include online securities/FX trading, Internet advertising, search engine marketing and online research, and smartphone game development and publishing. GMO Internet, Inc. (TSE: 9449) is headquartered in Tokyo, Japan. Please visit www.gmo.jp/en for more information.

Categories
News Web Security

Twitter Hacked; Passwords Of 250,000 User Accounts Potentially Compromised

Now would be a good time to refresh your Twitter password. Twitter disclosed on Friday evening that its systems had been attacked in the past week by an unidentified group of hackers. As a result of the the attack, the hackers may have had access to the usernames, email addresses and other sensitive information of nearly a quarter of a million Twitter users.

This attack was not the work of amateurs, and we do not believe it was an isolated incident. The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked.
– Twitter.

“This week, we detected unusual access patterns that led to us identifying unauthorized access attempts to Twitter user data. We discovered one live attack and were able to shut it down in process moments later,” the company said in a blog post. “However, our investigation has thus far indicated that the attackers may have had access to limited user information – usernames, email addresses, session tokens and encrypted/salted versions of passwords – for approximately 250,000 users.”

Twitter’s hack announcement comes in a week crowded with announcements about media companies that have been hacked. On Thursday, the New York Times revealed that hackers, who had been inside its network for at least four months, had succeeded to steal the usernames and passwords of all of its employees in an apparent attempt to identify sources and gather other intelligence about stories related to the family of China’s prime minister.

On Friday evening, Twitter sent out emails to those users whose accounts may have been compromised, notifying them that the company had automatically reset their user passwords, and that they would need to create a new password in order to access the service again. Screenshot of the e-mail being sent to the concerned users:

The email also warns users to “Avoid using websites or services that promise to get you lots of followers. These sites have been known to send spam updates and damage user accounts.” The US Department of Homeland Security has also encouraged users to disable Java in their browsers, following a number of system breaches in recent weeks. Although Bob Lord, Director of Information Security, Twitter who made the blog post did not explain how the attackers got in and accessed the data, but said that he did not believe Twitter was the only company targeted.

“This attack was not the work of amateurs, and we do not believe it was an isolated incident,” he wrote. “The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked. For that reason we felt that it was important to publicize this attack while we still gather information, and we are helping government and federal law enforcement in their effort to find and prosecute these attackers to make the Internet safer for all users.”

One expert said that the Twitter hack probably happened after an employee’s home or work computer was compromised through a vulnerability in Java, a commonly-used computing language whose weaknesses have been well publicized. Ashkan Soltani, an independent privacy and security researcher, said such a move would give attackers “a toehold” in Twitter’s internal network, potentially allowing them either to sniff out user information as it traveled across the company’s system or break into specific areas, such as the authentication servers that process users’ passwords.

Twitter is generally used to broadcast messages to the public, so the hacking might not immediately have yielded any important secrets. But the stolen credentials could be used to eavesdrop on private messages or track which Internet address a user is posting from. That might be useful, for example, for an authoritarian regime trying to keep tabs on a journalist’s movements.

“More realistically, someone could use that as an entry point into another service.” Soltani said, noting that since few people bother using different passwords for different services, a password stolen from Twitter might be just as handy for reading a journalist’s emails.

Whatever the case, I’ll admit that I was pretty pleased with the way that Twitter moved swiftly to ensure the safety of their users. As well as dealing with the direct threat, they’ve given some helpful keys to ensuring safety online. Whether you’re using Twitter, Facebook or any other kind of online service, their advice is worth checking out.

Happy Tweeting (Maybe)! While you’re at it, take above mentioned advice. Also,change all of your passwords for everything. It’s a good thing to do once in a while, especially if you use the same one for every single site you log into.