Cloud Hosting

The cloud has become a foundational part of nearly every national economy's journey towardenhanced productivity. "Today, we see that cloudiscomputing. Cloud and cloud-led innovation are foundational for businesses and governments in driving enterprise and economic growth," saysElizabeth Bramson-Boudreau, CEO and publisher of MIT Technology Review.

Based on research conducted between November 2021 and February 2022, the interactive Index shows which countries are progressing fastest in global efforts to adopt and deploy cloud computing services. The Index reveals Singapore has the highest score (8.48/10) for overall cloud innovation. Next ranked were Finland (8.46/10) and Sweden (8.43/10).

The key findings of this report are as follows:

"Data gathered from the Global Cloud Ecosystem Index validates that now, more than ever, there is urgency to go to the cloud from both enterprises and policymakers, as cloud can create positive economic impact," saysRavi Kumar S., president of Infosys. He continues, "The future of work will depend heavily on effective cloud transformations to create a dynamic digital future that uplifts and equalizes us all, ensuring more opportunities for everyone, irrespective of location. Infosys Cobalt is poised to continue playing a key role in building a community through the cloud that nurtures knowledge, assets, and talent to drive innovation."

To view the research findings,visit the interactive pageor clickhereto download the report.

To learn more about the cloud, visit The cloud hub: From cloud chaos to clarity.

For more information, please contact us at[emailprotected].

About MIT Technology ReviewFounded at the Massachusetts Institute of Technology in 1899,MIT Technology Reviewisa world-renowned independent media company whose insight, analysis, interviews, and live events explore the newest technologies and their commercial, social, and political impacts. MIT Technology Review derives its authority from its relationship to the world's foremost technology institution and from its editors' deep technical knowledge capacity to see technologies in their broadest context and unequaled access to leading innovators and researchers. Insights, MIT Technology Review's custom publishing division, conducts research worldwide and publishes a wide variety of content, including articles, reports, and podcasts.

Contact:Laurel Ruma[emailprotected]

SOURCE MIT Technology Review Insights

Go here to read the rest:
MIT Technology Review Insights and Infosys Cobalt Launch first-ever Global Cloud Ecosystem Index - PR Newswire

The Hive threat group has been targeting organizations across the finance, energy and healthcare sectors as part of coordinated ransomware attacks since June 2021.

During the attacks, the group exploits ProxyShell vulnerabilities in MSFT Exchange servers to remotely execute arbitrary commands and encrypt the data of companies with this unique ransomware strain.

The group is highly organized, with the Varonis research team recently discovering that a threat actor managed to enter an organizations environment and encrypt the target data with the ransomware strain in less than 72 hours.

These attacks are particularly concerning, as unpatched exchange servers are publicly discoverable via web crawlers. Anyone with an unpatched exchange server is at risk, said Peter Firstbrook, a Gartner analyst.

Even organizations that have migrated to the cloud version of Exchange often still have some on-premises Exchange servers that could be exploited if unpatched. There are circulating threats already and unpatched servers can be detected with a web crawler, so it is highly likely that unpatched servers will be exploited, Firstbrook added.

Despite the significance of these vulnerabilities, many organizations have failed to patch their on-premise Exchange servers (these vulnerabilities do not affect Exchange online or Office 365 servers).

Last year, Mandiant reported that around 30,000 Exchange Servers remain unpatched and recent attacks highlight that many organizations have been slow to update their systems.

This is problematic given that the vulnerabilities enable an attacker to remotely execute arbitrary commands and malicious code on Microsoft Exchange Server through the 443 port.

Attackers continue to exploit the ProxyShell vulnerabilities that were initially disclosed more than eight months ago. They have proven to be a reliable resource for attackers since their disclosure, despite patches being available, said Claire Tills, a senior research engineer at Tenable.

The latest attacks by an affiliate of the Hive ransomware group are enabled by the ubiquity of Microsoft Exchange and apparent delays in patching these months-old vulnerabilities. Organizations around the world in diverse sectors use Microsoft Exchange for critical business functions, making it an ideal target for threat actors.

According to Tills, organizations that fail to patch their exchange servers enable attackers to reduce the amount of reconnaissance and immediate steps they need to take to infiltrate target systems.

Organizations that are slow to patch, such as less mature or short-staffed IT organizations, can fall into the trap of thinking just because theres no obvious signs of intrusion that no ones used ProxyShell to gain a foothold in the environment but this isnt always the case.

Firstbrook notes that while ransomware attacks will be obvious to organizations when they happen, however there are lots of other attack techniques that will [be] much stealthier, so the absence of ransomware does not mean the Exchange server is not already compromised.

It is for this reason that Brian Donohue, a principal information security specialist at Red Canary, recommends that organizations ensure they can detect the execution Cobalt Strike or Mimikatz, even if they cant update Exchange.

Having broad defense in depth against a wide array of threats means that even if you cant patch your Exchange servers or the adversary is using entirely novel trade craft in certain parts of the attack, you might still catch the Mimikatz activity, or you might have an alert that looks for the heavily obfuscated PowerShell thats being used by Cobalt Strike all of which happens before anything gets encrypted, Donohue said.

In other words, enterprises that havent patched the vulnerabilities can still protect themselves by using managed detection and response and other security solutions to detect malicious activity that comes before ransomware encryption, so they can respond before its too late.

VentureBeat's mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Learn more about membership.

View post:
Experts warn that Hive ransomware gang can detect unpatched servers - VentureBeat

After the billionaire Elon Musks roughly $44 billion bid to buy Twitter, people are looking for its alternatives and the Mastodon Social Network comes on the top. This decentralized social network running using instances (communities) is now trending on Twitter and it has even launched an Android app recently to welcome the flocks of users.

But, what exactly is the Mastodon Social Network? Who owns and runs it? If it is worth switching over and leaving Twitter? Well discuss that here. You will also understand why Mastodons name is on the top of the Twitter alternatives despite being the opposite of it.

Also, Mastodon Social Network isnt a newly launched fad eating up on the recent hype of Musks deal with Twitter. It has been here for a long time, since late-2016, and revolutionized the way social networking works. However, people rarely get a hold of its core idea.

Mastodon Social Network is a free and open-source platform founded in October 2016, by Eugen Rochko, a German developer. It runs self-hosted social networking services and has microblogging features like Twitter, and they are offered by a large number of Mastodon nodes called Instances which run independently.

An individual who joins Mastodon Social Network joins a specific Instance that is capable of interoperating with other instances as part of a federated social network allowing users on different nodes to interact with each other.

You can understand instances (communities or nodes) like the various Sub-reddits on Reddit that are each dedicated to a specific topic. However, Reddit still owns them and can moderate them whenever needed. Whereas, in Mastodons case, all the instances are independent, dedicated to a specific topic or community like LGBTQ+, Art, Music, Region, etc, and cant be controlled by a single entity.

If you are a business or an organization, you can host your own social media platform on your own infrastructure based on Mastodon Social Network. This will help you operate your community in a decentralized manner, and it will not depend on any single company.

Mastodon Social Network works as a part of the Fediverse, which is the ensemble of federated or interconnected server platforms used for sharing content and allowing users to interact which other without having to sign up for separate accounts for each server.

They are like email, where you can communicate with Gmail, Yahoo!, Rediff Mail, or any other email client. However, your account wont be owned and controlled by anyone else. You are the owner of your content, actions, and words. The instance you are a part of is still managed by the admins of the community.

The founder, Eugen Rochko believes that small and closely related communities manage unwanted behavior more effectively than a large companys small safety team. Mastodon even allows users to block and report other users to administrators.

You can either join Mastodon Social Network as an individual or as an organization/community. When joining as an individual, you only need to join an instance, which is an individual server run by an organization or community. It is just like signing up with an email address or joining a Sub-reddit.

You will have to start the process by finding the right instance for your interest, or you can simply join the one for your region, interest, or the globally popular one. Well help you choose the right instance in the next section of this post.

If you are an organization, you can install Mastodon on a Ubuntu cloud server. After that, youll have to learn to expand your Mastodon Fediverse Network. You can also integrate it into WordPress or any other web application that you manage. Youll be the owner of your social network.

Mastodon is not a single site but a collection of many. Thus, joining it can be a bit complicated for some users as they just couldnt figure out which would be the right instance for them. The core website, joinmastodon.org, lists several communities or instances, but they present only the ones that are committed to active moderation against hate.

The largest of these instances is Mastodon.online, which is run by the developers of the Mastodon Social Network. You can start by joining it if you are confused about which instance to join.

There wouldnt be any problem later on as Mastodon allows smoothly moving your account to a different instance, and you can interact with users on other instances without having to even move over.

There is an unofficial directory, Instances.social, which holds a collection of around 2,500 instances or communities based on varying interests and themes. You can go through the list and find the perfect one for you. When you dont join any, Mastodon serves only the Japanese cat videos or mostly the content in other languages on the home feed.

Some controversial Mastodon instances include Sinblr, where previous Tumblr amateur porn creators reside, Dolphin.Town, where every post must contain only the letter e, Fosstodon, the community for open-source software enthusiasts, and Gab, where users post an extreme amount of hate content without much moderation.

Yes, Mastodon Social Network is now available on both Android and iOS devices. The iOS client launched in July 2021 to expand the network to more users. You can find it on the App Store for your iPhone and iPad.

Recently, Mastodon Social Network also launched an Android application in April 2022 to welcome the users coming after Elon Musks controversial bid to buy Twitter at the price of $54.2 per share. You can find the Mastodon app for Android in the Play Store.

Mastodon Social Network presents to you an actual network of communities with varying interests and rules capable of communicating with each other. It allows you to consume content without any interruptions and there isnt an algorithm that decides what you see.

You will see the full content from the people you follow and the instance you are a part of. It doesnt register your clicks, inputs, or any activity, unlike Facebook and Twitter. It is completely ad-free and doesnt want to sell you things. Also, your content is absolutely yours.

There is no centralized authority that decides what the users do on the platform. You are free to express yourself. There are instances that are generalized such as mastodon.social, mastodon.xyz, etc. And, there are instances dedicated to hardcore fans of something.

It offers a friendlier kind of social environment eliminating hateful, ugly, or influential content. There is no one controlling you. This serves as the major advantage of the network. However, it also comes with certain cons and the Gab community is the prime example.

If youll ask me, then you can definitely hop on the Mastodon ship and try it. However, you should only leave Twitter and completely switch to it once you get a complete hold of it. Mastodon is not for everyone, in my opinion. Its like the early days of the Internet, there is decentralization, there is no stalking, and people freely express themselves.

However, for casual users who do not wish to dive deep into the technology, it could be hard to understand. Mastodon still has a long way to go before competing with traditional social networks like Twitter and Facebook. They know how to retain users and make them addicted to their content, while Mastodon never tries it.

Mastodon Social Network is still far from competing with Twitter or any other traditional social media platform. It currently only has over 4.4 million users while Twitter has more than 217 million registered users. It is also not suitable for everyone, especially casual users.

We are not stating that its not good. Its amazing, in fact. There are zero ads, no one is treated in a special manner, and everyone is treated equally. There is no hate speech and harmful content, and there is complete decentralization. The community members control the instances.

However, casual users may find it hard to understand and may not understand the core concept behind decentralization. If you are able to figure it out, then you can definitely switch over and explore it for your purposes.

What do you think about it? Do find the Mastodon Social Network worth switching over to? Let us know in the comments section.

Read the original:
Mastodon Social Network: Everything You Need to Know Before Switching - TheTealMango

April 25, 2022Alex Woodie

Many IBM i shops are under the gun to modernize their applications as part of a digital transformation initiative. If the app is more than 10 or 15 years old and doesnt use the latest technology and techniques, its considered a legacy system that must be torn down and rebuilt according to current code. But there are substantial risks associated with these efforts not the least of which that the modern method is essentially incompatible with the IBM i architecture as it currently exists. IBM i shops should be careful when evaluating these new directions.

Amy Anderson, a modernization consultant working in IBMs Rochester, Minnesota, lab, says she was joking last year when she said every executive says they want to do containerized microservices in the cloud. If Anderson is thinking about a future in comedy, she might want to rethink her plans, because what she says isnt a joke; its the truth.

Many, if not most, tech executives these days are fully behind the drive to run their systems as containerized microservices in the cloud. They have been told by the analyst firms and the mainstream tech press and the cloud giants that the future of business IT is breaking up monolithic applications into lots of different pieces that communicate through microservices, probably REST. All these little apps will live in containers, likely managed by Kubernetes, enabling them to scale up and down seamlessly on the cloud, likely AWS or Microsoft Azure.

The containerized microservices in the cloud mantra has been repeated so often, many just accept it as the gospel truth. Of course that is the future of business tech! they say. How else could we possibly run all these applications? Its accepted as an article of faith that this is the right approach. Whether a company is running homegrown software or a packaged app, theyre adamant that the old ways must be left behind, and to embrace the glorious future that is containerized microservices running in the cloud.

The reality is that the supposedly glorious future is today is a pipe dream, at least when it comes to IBM i. Lets start with Kubernetes, the container orchestration system open sourced by Google in 2014, which is a critical component of running in the cloud native way.

Google is the most advanced technology firm on the planet, having single handedly developed many of the most important technologies of the past two decades (IBM may own the most patents, but Google has the biggest impact). Starting in the early 2000s, Google created a management system called Borg to corral all the giant clusters that power its various data services, and that eventually became Kubernetes.

While Kubernetes solves one problem eliminating the complexity inherent in deploying and scaling all the different components that go into a given application it introduces a lot more complexity to the user. Running a Kubernetes cluster is hard. If youve talked to anybody who has tried to do it themselves, youll quickly find out that its extremely difficult. It requires a whole new set of skills that most IT professionals do not have. The cloud giants, of course, have these folks in droves, but theyre practically non-existent everywhere else.

ISVs are eager to adopt Kubernetes as the new de facto operating system for one very good reason: because it helps them run their applications on the cloud. They want to run in the cloud for several reasons, not the least of which is that the accountants tell them that recurring OpEx revenue is better than one-time CapEx revenue. (Of course, its all the same dollars in the end, but we mustnt question the accountants about their precious codes and practices.)

For greenfield development, the cloud can make a lot of sense. Customers can get up and running very quickly on a cloud-based business application, and leave all the muss and fuss of managing hardware to the cloud provider. But there are downsides too, such as no ability to customize the application. For the vendors, the fact that customers cannot customize goes hand in hand with their inability to fall behind on releases. (Surely the vendor passes whatever benefit it receives through collective avoidance of technical debt back to you, dear customer.)

The Kubernetes route makes less sense for established products with an established installed base. It takes quite a bit of work to adapt an existing application to run inside a Docker container and have it managed in a Kubernetes pod. It can be done, but its a heavy lift. But when it comes to critical transactional systems, it likely becomes more of a full-blown re-implementation than a simple upgrade. There are no free lunches in IT.

When it comes to IBM i, lots of existing customers who are running their ERP systems on-prem are not ready to move their production business applications to the cloud. Notice what happened when Infor stopped rolling out enhancements for the M3 applications for IBM i customers. Infor wanted these folks to adopt M3 running on X86 servers running in AWS cloud. Many of them balked at this forced re-implementation, and now Infor is rolling out a new offering called CM3 that recognizes that customers want to keep their data on prem in their Db2 for i server.

Other ERP vendors have taken a similar approach to the cloud. SAP wants its Business Suite customers to move to S/4 HANA, which is a containerized, microservice-based ERP running in the cloud. The German ERP giant has committed to supporting on-prem Business Suite customers until 2027, and through 2030 with an extended maintenance agreement. After that, the customers must be on S/4 HANA, which at this point doesnt run on IBM i.

Will the 1,500-plus customers who have benefited from running SAP on IBM i for the past 30 years be willing to give up their entire legacy and begin anew in the S/4 HANA cloud? It sounds like a risky proposition, especially given the fact that much of the functionality that currently exists in Business Suite has yet to be re-constructed din S/4 HANA. Is this an acceptable risk?

Kubernetes is just part of the problem, but its a big one, because at this point IBM i doesnt support Kubernetes. Its not even clear what Kubernetes running on IBM i would look like, considering all the virtualization features that already exist in the IBM i and Power platform. (What would become of LPARs, subsystems, and iASPs? How would any of that work?) In any event, the executives in charge of IBM i have told IT Jungle there is no demand for Kubernetes among IBM i customers. But that could change.

Jack Henry & Associates officially unleashed its long-term roadmap earlier this year, but it had been working on the plan for years. The company has been a stalwart of the midrange platform for decades, reliably processing transactions for more than a thousand banks and credit unions running on its RPG-based core banking systems. It is also one of the biggest private cloud providers in the Power Systems arena, as it runs the Power machinery powering (pun intended) hundreds of customer applications.

The future roadmap for Jack Henry is (you guessed it) containerized microservices in the cloud. The company explains that it doesnt make sense to develop and maintain about 100 duplicate business functions across four separate products, and so it will slowly replace those redundant components that today make up its monolithic packages like Silverlake with smaller, bite-sized components that run in the cloud-native fashion on Kubernetes and connect and communicate via microservices.

Its not a bad plan, if youve been listening to the IT analysts and the press for the past five years. Jack Henry is doing exactly what theyve been espousing as the modern method. But how does it mesh with its current legacy? The reality is that none of Jack Henrys future software will be able to run on IBM i. Db2 for i is not even one of the long-term options for a database; instead it selected PostgreSQL, SQL Server, and MongoDB (depending on which cloud the customer is running in).

Jack Henry executives acknowledge that theres not much overlap between its roadmap and the IBM i roadmap at this point in time. But they say that theyre moving slowly and wont have all of the 100 or so business functions fully converted into containerized microservices for 15 years and then it will likely take another 15 years to get everybody moved over. So its not a pressing issue at the moment.

Maybe Kubernetes will run on IBM i by then? Maybe there will be something new and different that eliminates the technological mismatch? Who knows?

The IBM i system is a known entity, with known strengths and weaknesses. Containerized microservices in the cloud is an unknown entity, and its strengths and weaknesses are still being determined. While containerized microservices running in the cloud may ultimately win out as the superior platform for business IT, that hasnt been decided yet.

For the past 30 years, the mainstream IT world has leapt from one shiny object to the next, convinced that it will be The Next Big Thing. (TPM, the founder of this publication and its co-editor with me, has a whole different life as a journalist and analyst chasing this, called The Next Platform, not surprisingly.) Over the same period, the IBM i platform has continued more or less on the same path, with the same core architecture, running the same types of applications in the same reliable, secure manner.

The more hype is lavished upon containerized microservices in the cloud, the more it looks like just the latest shiny object, which will inevitably be replaced by the next shiny object. Meanwhile, the IBM i server will just keep ticking.

Infor CM3 to Provide On-Prem Alternative to Cloudy M3

Inside Jack Henrys Long-Term Modernization Roadmap

SAP on IBM i to S/4 HANA Migration: No Need to Rush

Wanted: Exciting New Publicist For Boring Old Server

Read the original post:
Beware The Hype Of Modern Tech - IT Jungle