Tag Archives: short

New “Gears Forever” Trailer Shows The Biggest Gears Yet – Xbox Wire

We’re just a short time away from the biggest Gears yet with Early Access for either Xbox Game Pass Ultimate or with Gears 5 Ultimate Edition, and today while fans eagerly await its release, we’ve got a brand new trailer showing off Gears 5’s five modes.

In Gears 5, there are five thrilling ways to play: the all-new aggressive, high-stakes co-op mode Escape; the competitive Versus mode, featuring nine modes including the all-new Arcade for players of all levels; the deepest Horde Mode ever;  the intuitive Map Builder and the biggest Campaign yet.

Yesterday, we shared news about latest blockbuster partnership in Gears 5 with WWE Superstar Batista making an appearance in Gears 5 as a multiplayer character, donning the armor of the legendary Marcus Fenix. Fans can also look forward to the inclusion of Sarah Connor and the T-800 Endoskeleton from Terminator: Dark Fate and Spartans Emile-A239 and Kat-B320 from Halo: Reach with Xbox Game Pass Ultimate and Gears 5 Ultimate Edition.

Gears 5 early access will begin at 9pm on September 5th in your local time zone. For countries with multiple time zones, the earliest time zone will determine when you can play. For example, North American early access will begin at simultaneously at 9pm ET, 8pm CT and 6pm PT.

Both Xbox Game Pass Ultimate members and Gears 5 Ultimate Edition owners will be able to gear up and take the fight to the Swarm. On behalf of everyone at The Coalition, we’re excited to have fans jump into the world of Gears 5.

For more information on Gears 5 and the Gears franchise, stay tuned to Xbox Wire or follow Gears on Twitter @gearsofwar.

Go to Original Article
Author: Microsoft News Center

What is Azure Bastion?

In this post, you’ll get a short introduction into Azure Bastion Host. To be honest, I still don’t know if I should pronounce it as [basˈti̯oːn] (German), /bæstʃən/ (US engl.) or [basˈt̪jõn] (french) but that shouldn’t stop us from learning more about Azure Bastion Host, what is it, and when it’s useful.

So let’s start.

What is Azure Bastion Host?

Azure Bastion Host is a Jump-server as a Service within an Azure vNet (note that this service is currently in preview). What does that mean exactly? Well, a jump server is a fixed point on a network that is the sole place for you to remote in, get to other servers and services, and manage the environment. Now some will say, but I build my own jump server VM myself! While you’re certainly free to do that yourself, there are some key differences between the self-built VM option and a Bastion Host.

A regular Jump-server VM must either be reachable via VPN or needs to have a public IP with RDP and/or SSH open to the Internet. Option one, in some environments, is rather complex. Option two is a security nightmare. With Azure Bastion Host, you can solve this access issue. Azure Bastion enables you to use RDP and SSH via the Internet or (if available) via a VPN using the Azure Portal. The VM does not need a public IP, which GREATLY increases security for the target machine.

NOTE: Looking for more great content on security? Watch our webinar on Azure Security Center On-Demand.

After the deployment (which we’ll talk about in a second), Bastion becomes the 3rd option when connecting to a VM through the Azure Portal, as shown below.

Bastion

Virtual Machine Bastion

After you hit connect, an HTTPs browser Window will open and your session will open within an SSL encrypted Window.

Bastion in browser

Azure Bastion Use Cases

Now let’s list some possible use-cases. Azure Bastion can be very useful (but not limited) to these scenarios:

  1. Your Azure-based VMs are running in a subscription where you’re unable to connect via VPN, and for security reasons, you cannot set up a dedicated Jump-host within that vNet.
  2. The usage of a Jump-host or Terminal Server in Azure would be more cost-intensive than using a Bastion Host within the VNet (e.g. when you have more than one admin or user working on the host at the same time.)
  3. You want to give developers access to a single VM without giving them access to additional services like a VPN or other things running within the VNet.
  4. You want to implement Just in Time (JIT) Administration in Azure. You can deploy and enable Bastion Host on the fly and as you need it. This allows you yo implement it as part of your Operating System Runbook when you need to maintain the OS of an Azure-based VM. Azure Bastion allows you to do this without setting up permanent access to the VM.

The way you deploy Azure Bastion Host within a VNet is pretty straightforward. Let’s go through the steps together.

  1. Open the Azure Preview Portal through the following link.
  2. Search for the feature in the Azure Marketplace and walk through the deployment wizard by filling out the fields shown below.

create a bastion

Again, the deployment is quite simple and most options are fairly well explained within the UI. However, if you want further details, you can find them in the official feature documentation here.

Also, be aware that a Bastion Host must be implemented in every vNet where you want to connect to a VM. Currently, Bastion does not support vNet Peering.

How Much Does Azure Bastion Cost?

Pricing for Bastion is pretty easy to understand. As all Microsoft VM Services, you pay for the time the Bastion hast is deployed and for any Bastion service you have deployed. You can easily calculate the costs for the Bastions Hosts you need via Azure Price Calculator.

I made my example for one Bastion Host in West Europe, with the assumption it would be needed all month long.

Azure Bastion Price Calculator

Bastion Roadmap Items

Being in preview there are still a number of things that Microsoft is adding to Bastion’s feature set. This includes things like:

  1. Single-Sign-On with Azure AD
  2. Multi-Factor Auth
  3. vNet Peering (Not confirmed, but being HEAVILY requested by the community right now)

vNet Peering support would make it so that only a single Bastion Host in a Hub or Security vNet is needed.

You can see additional feature request or submit your own via the Microsoft Feedback Forum.

If you like a feature request or want to push your own request, keep an eye on the votes. The more votes a piece of feedback has, the more likely Microsoft will work on the feature. 

Additional Documentation and Wrap-Up

Additional documentation can be found on the Azure Bastion Sales Page.

Finally, I’d like to wrap up by finding out what you think of Azure Bastion. Do you think this is a worthy feature? Is this something that you’ll be putting into production once the feature is out of preview? Any issues you currently see with it today? Let us know in the comments section below!

Finally, if you’re interested in learning more about Azure security issues why not watch our webinar session on Azure Security Center? Presented by Thomas Maurer from the Azure Engineering Team, you will learn all about this important security package and how you should be using it to ensure your Azure ecosystem is fully protected!

Azure Security Center Webinar

Watch the Webinar

Thanks for reading!

Go to Original Article
Author: Florian Klaffenbach

These innovations are driving collaboration in the Cascadia region | Microsoft On The Issues

As far as enviable commutes go, a short hop in a seaplane, flying over water and past snow-capped mountains, is up there.

Connecting Seattle and Vancouver, a recently launched flight route is testament to the growing ties between the locations.

The two-way trading relationship between Canada and the United States remains one of the largest in the world – and the links between British Columbia and Washington state are growing. In 2016, the launch of the Cascadia Innovation Corridor formalized the connection. And a July 2019 study also found that a high-speed rail line connecting Vancouver, Seattle and Portland could bring $355 billion in economic growth in the region.

Here are a few of the ways this region is coming together.

[Subscribe to Microsoft on the Issues for more on the topics that matter most.]

Innovation at scale

Microsoft, along with many other business, academic and research institutions, has been working to maximize the opportunities the corridor presents – and the Canadian Digital Technology Supercluster consortium is one example.

Bringing together names in tech, healthcare and natural resources, this consortium hopes to advance technologies by developing innovation and talent. It will also be a boon to the local economy, with the goal of creating 50,000 B.C. jobs over the next 10 years, fuelling growth across multiple sectors and expanding opportunity across the region.

A meeting of minds

Home to some of the world’s leading research and medical organizations, the Cascadia region is also aiming to become a global leader in biomedical data science and health technology innovation.

Stock image of people working in technology

Accelerating cancer research has been a key target. Working in collaboration with the Fred Hutchinson Cancer Research Center, Microsoft has established the Cascadia Data Discovery Initiative, which is tackling the barriers that make research breakthroughs difficult, such as data discovery and access.

Microsoft’s partnership with BC Cancer is taking another approach to finding a cure for the disease. Using Azure, scientists can collaboratively analyze vast amounts of data, accelerating the pace of research. Interns from the Microsoft Garage program have been working to take this a step further, using the HoloLens platform to create mixed reality tools to help researchers visualize the structure of a tumor.

Inspiring the next generation

Work is also happening at the grass-roots level, helping to create the next generation of graduates ready to build the technologies of the future. Through a partnership with Microsoft, the British Columbia Institute of Technology is delivering a first-of-its-kind mixed-reality curriculum, with the goal of training students for jobs in digital media and entertainment along the Cascadia Corridor.

British Columbia students are also benefiting from a Microsoft initiative to help high schools build computer science programs. The TEALS program first started in Washington state in 2009 and recently expanded to B.C. It pairs computer science professionals with teachers, giving schools the training and support to help their students build skills for in-demand local careers.

A lesson for others

The Cascadia Corridor is already helping Vancouver, Seattle and the region achieve more than they could do independently.

A steering committee established at the end of 2018 will help build on the economic opportunities, growing human capital in the region, investing in and expanding transport and infrastructure, and helping to foster an ecosystem that encourages innovation.

For more on the Cascadia Corridor and other Microsoft work follow @MSFTIssues on Twitter.

Go to Original Article
Author: Microsoft News Center

Reddit breach sparks debate over SMS 2FA

Reddit admitted its systems were breached after an attacker was able to compromise the short message service two-factor authentication used by employees.

According to Christopher Slowe, CTO and founding engineer at Reddit, the main attack leading to the Reddit breach involved a threat actor intercepting SMS-based 2FA codes.

“On June 19, we learned that between June 14 and June 18, an attacker compromised a few of our employees’ accounts with our cloud and source code hosting providers. Already having our primary access points for code and infrastructure behind strong authentication requiring two-factor authentication (2FA), we learned that SMS-based authentication is not nearly as secure as we would hope, and the main attack was via SMS intercept,” Slowe wrote in a post on the social news site. “We point this out to encourage everyone here to move to token-based 2FA.”

Slowe wrote that the attacker accessed user data, including some current email addresses, as well as “account credentials (username + salted hashed passwords), email addresses, and all content (mostly public, but also private messages)” from 2007. The attacker was apparently limited to read-only access on Reddit systems, and Reddit has since rotated all production secrets and API keys and took steps to harden access management security with “enhanced logging, more encryption and requiring token-based 2FA to gain entry since we suspect weaknesses inherent to SMS-based 2FA to be the root cause of this incident.”

SMS 2FA security

Because the Reddit breach was blamed on the security limitations inherent to SMS-based 2FA, experts have begun to debate whether or not it’s worth using it as an authentication method.

What can be taken from this attack is that, while SMS authentication can be used to boost security, two-factor authentication that involves standalone hardware token generators is needed to mitigate the risk of such attacks.
Leigh-Anne Gallowaycybersecurity resilience lead, Positive Technologies

Even back in 2016, when NIST advised organizations to stop using SMS-based 2FA, experts said the recommendation was overdue because of known techniques to intercept one-time codes sent via SMS either via malware on smartphones, exploiting the SS7 protocol, or by cloning a victim’s SIM card.

Craig Young, computer security researcher for Tripwire’s Vulnerability and Exposures Research Team, noted that “while SMS interception has been a common trick in opportunistic financial fraud, it is far less common to hear about this method being used in this type of targeted attack of a public service.”

“Although any form of multi-factor authentication is a considerable improvement on simple password models, SMS-based verification tokens can be stolen with a variety of well-known techniques, including social engineering, mobile malware, or by directly intercepting and decrypting signals from cell towers,” Young wrote via email. “An attacker within the same cellular coverage area as the victim could even intercept and decrypt SMS out of the air with just a couple hundred dollars’ worth of equipment. The moral of this story is that SMS-based two-factor authentication should not be considered ‘strong’ in the face of a determined attacker.”

However, there was no clear consensus among experts about SMS-based 2FA. Many acknowledged the flaws in the system, but noted it was still better than not using 2FA at all.

Pravin Kothari, CEO of CipherCloud, said it is still far too common for users to not use any 2FA.

“Today, use of two-factor authentication is a best practice still not used by most authenticating systems. Even when two-factor is offered, for example, in Google’s Gmail, over 90% of the Gmail users don’t opt to use it,” Kothari wrote via email. “Given that two-factor authentication is still a best practice the likely move by financial institutions will be to utilize token-based SMS systems, instead of mobile phone-based systems. In any case two-factor authentication, even with a mobile phone, is still much better than not using two-factor.”

Leigh-Anne Galloway, cybersecurity resilience lead at Positive Technologies, said the Reddit breach is an example of businesses placing “unwarranted faith in two-factor authentication.”

“While lots of organizations think 2FA is a silver bullet for authentication, it actually isn’t, thanks to weaknesses in mobile networks which allow SMS [messages] to be intercepted,” Galloway wrote via email. “What can be taken from this attack is that, while SMS authentication can be used to boost security, two-factor authentication that involves standalone hardware token generators is needed to mitigate the risk of such attacks. SMS alone is not enough to constitute adequate defense of customer and employee data.”

Ilia Kolochenko, CEO of High-Tech Bridge, said he would “refrain from blaming 2FA SMS — in many cases it’s still better than nothing.”

“Moreover, when most of business critical applications have serious vulnerabilities varying from injections to [remote code execution], 2FA hardening is definitely not the most important task to take care of,” Kolochenko wrote via email, adding that there may be more to the Reddit breach story. “I would equally be cautiously optimistic about the size of the disclosed data breach and thoroughly ascertain that no other systems or user accounts were compromised. Often large-scale attacks are conducted in parallel by several interconnected cybercrime groups aimed to distract, confuse and scare security teams. While attack vectors of the first group are being mitigated, others are actively exploited, often not without success.”

For Sale – 2gb Mini GTX 960, 8gb ddr4 sodimm

As per title, double slot, short length GTX 960 graphics card, full working order ideal for a powerful ITX build

3 x 8gb ddr4 sodimm – £35 each

Price and currency: 90 & £35
Delivery: Delivery cost is included within my country
Payment method: BT/PP
Location: Bridgwater
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I prefer the goods to be collected

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

For Sale – 2gb Mini GTX 960, 8gb ddr4 sodimm

As per title, double slot, short length GTX 960 graphics card, full working order ideal for a powerful ITX build

3 x 8gb ddr4 sodimm – £35 each

Price and currency: 90 & £35
Delivery: Delivery cost is included within my country
Payment method: BT/PP
Location: Bridgwater
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I prefer the goods to be collected

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

Huawei MT992 Modem for G.fast

I’ve recently been connected to G.fast or BT Ultrafast.

Long story short, BT now supplies a ‘Super Hub’ rather than a modem and Home Hub. But the Super Hub isn’t so super…

Therefore, whilst I’m still in my cooling off period, I’m hoping someone might have a Huawei MT992 G.fast modem they’re will to part with? If so, I’d love to hear from you!

Or perhaps you may know a BT Engineer who could get hold of one for me?

Any help welcome! Thanks.

Location: Swindon…

Huawei MT992 Modem for G.fast

For Sale – ASUS PCE-AC88 – Dual-band AC3100 4×4 Wi-Fi

Top of the range PCI-E WiFi card. Comes boxed with short & long bracket, driver disc and all paperwork. This card is very fast and will max your connection out.

Mint condition with 22 months of warranty remaining.

[​IMG]

[​IMG]

[​IMG]

[​IMG]

Price and currency: £65
Delivery: Delivery cost is included within my country
Payment method: BT,PPG
Location: Chorley
Advertised elsewhere?: Not advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

For Sale – HP Envy 13 AD015NA i7-7500U CPU, 320GB SSD, 8GB RAM, NVIDIA MX150 GPU ***NEW***

Hi all

I have one of these brand new, long story short this was a gift from my brother who works abroad, he actually got me two one for the missus and one for myself (i5 version). I kept mine but the missus wants a mac pro instead :/

I dont have the receipt, however the warranty is valid, according to the HP website its says end date for warranty is July 26th 2018. The serial number is clean and I have done a checkMEND just to be on the safe side, and its clear. Piece of advice though I purchased a warranty extension for my one for an extra 2 years for £70 which I would recommend doing, I also talked to HP and they said you dont need a receipt when I told them it was a gift.

My brother bought it for £800, so I think thats a fair price to start with. Its £1100 in store!
I have fallen in love with the i5 version I have now, they are really beautiful laptops and the build quality is really good. I’m happy to do cash on collection, or I can post via insured courier/special delivery.

Specs
Windows 10 Home 64 bit
Intel i7-7500 CPU
8GB DDR3 Ram
Nvidia Geforce MX150 2GB GDDR5
13.3 IPS LED 1920X1080 Multi Point Touchescreen
320GB SSD
Bang & Olufsen Speakers
Comes fully boxed, unused, I only opened it to take a picture!

Price and currency: £800 + £15 P&P
Delivery: Delivery cost is not included
Payment method: Bank transfer, or cash on collection
Location: London
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

For Sale – HP Envy 13 AD015NA i7-7500U CPU, 320GB SSD, 8GB RAM, NVIDIA MX150 GPU ***NEW***

Hi all

I have one of these brand new, long story short this was a gift from my brother who works abroad, he actually got me two one for the missus and one for myself (i5 version). I kept mine but the missus wants a mac pro instead :/

I dont have the receipt, however the warranty is valid, according to the HP website its says end date for warranty is July 26th 2018. The serial number is clean and I have done a checkMEND just to be on the safe side, and its clear. Piece of advice though I purchased a warranty extension for my one for an extra 2 years for £70 which I would recommend doing, I also talked to HP and they said you dont need a receipt when I told them it was a gift.

My brother bought it for £800, so I think thats a fair price to start with. Its £1100 in store!
I have fallen in love with the i5 version I have now, they are really beautiful laptops and the build quality is really good. I’m happy to do cash on collection, or I can post via insured courier/special delivery.

Specs
Windows 10 Home 64 bit
Intel i7-7500 CPU
8GB DDR3 Ram
Nvidia Geforce MX150 2GB GDDR5
13.3 IPS LED 1920X1080 Multi Point Touchescreen
320GB SSD
Bang & Olufsen Speakers
Comes fully boxed, unused, I only opened it to take a picture!

Price and currency: £800 + £15 P&P
Delivery: Delivery cost is not included
Payment method: Bank transfer, or cash on collection
Location: London
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.