Inside CTO/CIO - April 16th, 2019 |

Inside CTO/CIO (Apr 16th, 2019)

Enterprise VPN warning / Cows with 5G / SOC as a service

Subscribe to Inside CTO/CIO

New blank template
Subscribe | View in browser

1. Multiple enterprise VPN apps contain an active vulnerability. In an alert, the Department of Homeland Security and Carnegie Mellon University’s CERT Coordination Center said multiple vendors are affected because the configuration issue is likely “generic” to other VPN apps. The flaw is in (but is not limited to) VPN apps made by Cisco, F5 Networks, Palo Alto Networks, and Pulse Secure. The security hole, in which VPN cookies are stored in plan text thus allowing session replay, gives attackers access to other apps. --CYBERSCOOP

2. Cisco is trying out 5G on cows in tests for global rollout across various industries. While the cows may have better connection speeds than you, the herds in England give farmers access to 5G-connected cow collars and health-monitoring ear tags that transmit biometric data and help monitor the herd from afar. Cisco is trying out 5G in three rural locations to explore use by various industries outside the tech bubble but are still dependent on increasingly sophisticated hardware and software. “We are testing the ability of 5G to transmit the data from our sensors much quicker, and not via the farm’s PC and a slow broadband internet connection,” said Duncan Forbes, Project Manager at the Agri-Epi Centre. --VERGE

3. Samsung has developed its EUV 5nm semiconductor chip process. Samsung announced it has successfully pioneered a 5nm semiconductor process using its Extreme Ultra Violet (EUV) tech. The 5nm process means chips will be 25% smaller and 20% more power efficient compared to those made with a 7nm process (like what's in a Galaxy S10). The expects to commercialize the new process and begin mass production of 6nm chips sometime in 2020. Clients who design their own chips based on the 7nm process will be able to take any IP rights they're already using and apply them to the new process, which should help conserve costs. --ZDNET

4. A look into Nokia’s factory of the future shows how high-speed connectivity can transform manufacturing. VentureBeat looked into Nokia’s “factory of the future” in Oulu, Finland, showing how the company wants to integrate 5G; Nokia's website now features several new 5G demos from the Oulu lab. “We have our own factory here,” said Nokia research and development lead Jani Leskinen. “Why not use this as a playground?” According to the report, however, the factory's connectivity is currently running on a 4G LTE network. Nokia excecs were quick to point out that 4G networks are still underutilized and in the process of rolling out in many areas -- good news for carriers who want more time to recoup investments on 4G even as they continue to make 5G plans. --VENTUREBEAT

5. Google and Linux's Hyperledger launched online identity management tools. Google rolled out five upgrades to its BeyondCorp cloud enterprise security service enabling identity and access management for employees, corporate partners, and customers; Hyperledger announced that its distributed ledger for identity management is now live. --COMPUTERWORLD

6. 'SOC-as-a-Service' offerings are on the rise. According to recent ESG research, 53% of enterprises face a shortage of cybersecurity skills. This look at SOC-as-a-service offerings show there's hope for orgs who can't afford to build their own SOCs, and gives a look into the future of the managed security services sector. --DARK READING

7. Python developers now outnumber Java devs. Python adoption among the new crop of devs has been rapid, with SlashData estimating the language gained more than two million new developers in 2018. SlashData attributes Python's rising popularity to the machine learning revolution. --ZDNET

8. If your org is racing to catch up with digital trandofrmation, experts say don't rush. Trailing in digital maturity may have you feeling the pressure from shareholders, customers, competitors and more -- but with only 21% of orgs saying they're actually mature, leaders must practice caution to avoid damage done by enterprise's current FOMO mindset. --DEVOPS.COM

9. Google's private Kubernetes cloud still relies on VMware for local storage. In a little-publicized detail from last week's announcements, it turns out that Google Cloud’s new Anthos hybrid and multi-cloud platform depends on VMware vSphere. "Of all the partnerships and initiatives VMware has with all the cloud service providers," notes Forbes, "this underlying dependence of Google Anthos on vSphere is a uniquely strategic dependence." --FORBES

10. A handful of books provide insight on how to be a better leader than your boss. HPE queried a variety of experts about which books gave them a practical takeaway of how to be a better manager in the real world, and came up with a list of eight titles. These include The Last Lecture by Randy Pausch, Leadership: In Turbulent Times by Doris Kearns Goodwin, and You Can Negotiate Anything by Herb Cohen (among others). --HPE

This newsletter is curated and authored by author and reporter Violet Blue, who covers security and privacy for outlets ranging from CBS News and CNET to Financial Times and ZDNet. Ms. Blue has been featured on The Oprah Winfrey Show and CNN, she writes the Engadget column "Bad Password," and she is the author of The Smart Girl's Guide to Privacy. Violet is on the Advisory Board for privacy nonprofit Without My Consent and a member of the Internet Press Guild. Find her sharing thoughts on Twitter @violetblue.

Editing team: Kim Lyons (Pittsburgh-based journalist and managing editor at Inside); Susmita Baral (senior editor at Inside, who runs the biggest mac and cheese account on Instagram); and David Stegon (senior editor at Inside, whose reporting experience includes cryptocurrency and technology).

Copyright ©, All rights reserved.

Our mailing address is:
767 Bryant St. #203
San Francisco, CA 94107

Did someone forward this email to you? Head over to to get your very own free subscription!

You received this email because you subscribed to Inside CTO/CIO. Click here to unsubscribe from Inside CTO/CIO list or manage your subscriptions.

Subscribe to Inside CTO/CIO