NonStop ™ Newsletter for February 2021

 ______________________________________________

Current Global Subscribers 15,638                                                                                                                                       Click to Sponsor a Newsletter

Contents

Security Fundamentals: What We’ve Learned from the SolarWinds Hack

Is Your Attunity NonStop Solution for Sharing Data Across Platforms or Applications Going End-of-Service-Life (EOSL)?

NonStop(tm) Services

Synchrony powers Venmo Card with OmniPayments

Newsletters

Keystroke Logging for HPE NonStop Servers

Lusis TANGO on HPE NonStop

 

ASK

NuWave Is ......

 

   
 

Security Fundamentals: What We’ve Learned from the SolarWinds Hack

 

Last month, we wrote about the sophisticated and long-running cyber-espionage campaign distributed through the widely-used network management software, SolarWinds.

 

New information has recently come to light. We now know that the threat group behind the supply chain attack that targeted SolarWinds leveraged a piece of malware for lateral movement and deploying additional payloads.

The SolarWinds attack involved the delivery of trojan-ized updates to as many as 18,000 of the company’s customers through Orion, an IT monitoring product. These malicious updates delivered a piece of malware named Sunburst, which the attackers inserted into the Orion product using another piece of malware known as Sunspot.

While Sunburst Backdoor is a sophisticated attack vector, it is still just a trojan on a network with lateral movement. A company can deploy many of the typical network defense and incident response techniques immediately.

The SolarWinds attack is interesting because you can’t really stop it from happening. However, you can detect and stop lateral movement and data exfiltration from your network by focusing on certain security fundamentals. We define these fundamentals as follows:

·        Understand your assets

·        Know what is on your assets

·        Manage the accounts on your assets

·        Understand your asset’s vulnerabilities

·        Establish secure baselines

But how can you protect your critical data and effectively implement these security fundamentals on NonStop systems? CSP has perfected many security and compliance tools to help you achieve these security fundamentals, such as File Integrity Monitoring, User Management, Command Control, Multi-factor Authentication, Audit, and Compliance Reporting.

Today’s fancy new defense tools are no replacement for asset management controls. Threat intel won’t do you much good if you lack contextual asset data. AI benchmarking will only learn and continue to allow bad habits if your environment was already out of compliance when the tools were initially implemented.

The most effective security tools focus on these fundamental security practices by establishing secure baselines and building workflows around them to make it easier for analysts to focus on the real problems.

 

Securing NonStop Systems Effectively

With CSP PassPort

CSP provides several comprehensive security solutions that will protect your NonStop systems and ensure that you meet all of your compliance requirements. Organizations are relying on CSP’s trusted security solutions more than ever to ensure the integrity of their applications.

CSP PassPort provides comprehensive user and command control, password quality enforcement and auditing. It controls and filters user access to systems, programs and commands according to customized user profiles. It offers superior user authentication, command control, session control, accountability, and auditing capabilities not available with Guardian or Safeguard security.

All user terminal input/output operations (including OSS) can be monitored via an easy-to-use GUI interface, while an audit process records all user activities.

User Account Update Screen

Major Benefits:

Ø  - Limit user access to sensitive assets, programs and commands

Ø  - Improve user accountability and audit activities

Ø  - Track powerful user id’s and commands

Ø  - Prevent easy hacks by enforcing Password Quality

             -Eliminate the need to disclose sensitive SUPERID passwords for executing commands

Ø  - Generate extensive reports of user activities

Ø  - Get real-time notifications with Alert-Plus, and forward logs to SIEM for analysis

 

Key Features:

- Monitor and audit user sessions down to keystroke level

-   Role-based user access

-   Time restrictions by command and program

-  User Authentication SEEP to prevent users from logging on outside CSP PassPort

-  Powerful Custom Reporting

-  Control client connections by IP address or IP address ranges

Ø  Multi-factor authentication support (coming soon!)

 

Learn more about CSP PassPort here.

  

CSP - Compliance at your Fingertips™

 

For complimentary access to CSP-Wiki®, an extensive repository of NonStop security knowledge and best practices, please visit wiki.cspsecurity.com

We Built the Wiki for NonStop Security ®

The CSP Team     

+1(905) 568 –8900

HPE PartnerOne Insignia.jpeg

 


Is Your Attunity NonStop Solution for Sharing Data Across Platforms or Applications Going End-of-Service-Life (EOSL)?

 

 

Several customers recently approached us looking for solutions to their remote data access/connection requirements. HPE Shadowbase software uses a data replication/data integration architecture to meet these needs, and has experience successfully deploying these solutions at a number of customer sites. The following HPE Shadowbase architectures are popular and have significant advantages over alternative architectures.

 

  • HPE Shadowbase software replicates the customer’s Enscribe data on-platform into an SQL/MP or an SQL/MX database. Remote applications can then use, for example, ODBC/MX and JDBC, to access the NonStop-based SQL data. This architecture most closely matches several customers’ original remote data access/connection product approaches.

 

  • HPE Shadowbase software replicates the customer’s Enscribe, SQL/MP, and/or SQL/MX data off-platform to another platform/database, e.g., to Linux/Oracle or Windows/SQL Server, and then the customer’s applications access the data locally through ODBC or JDBC interfaces.

 

Implementing these Shadowbase solutions is also very straight-forward, regardless if the data is being replicated NonStop/NonStop, NonStop/some other platform, or other configurations. Shadowbase software has powerful utilities to aid in the data format/schema conversions, for data cleansing, transformation, and filtering.

 

For more information, please watch our presentation or visit this case study, where a customer recently replaced an Attunity NonStop solution with Shadowbase software. If you have similar needs, please contact us or your HPE account team to discuss your requirements and timeline.

 

Hewlett Packard Enterprise globally sells and supports Shadowbase solutions under the name HPE Shadowbase. For more information, please contact your local HPE Shadowbase representative or visit our website. For additional information, please view our Shadowbase solution videos: https://vimeo.com/shadowbasesoftware.

 

Specifications subject to change without notice. Trademarks mentioned are the property of their respective owners. Copyright 2021.

 


BrightStrand International

NonStop(tm) Services

No smoke, no mirrors, no snake oil.

Just NonStop Services to suit you.

www.BrightStrand.com


Synchrony powers Venmo Card with OmniPayments

 

Venmo has announced its Visa-powered credit card released in conjunction with Synchrony, an OmniPayments user, making the Venmo Credit Card available for all eligible Venmo customers to apply from the Venmo app.

Venmo’s first-ever credit card officially launched in October 2020 to select customers, and now the company expanded its availability to allow more of Venmo’s community of customers to apply for the no annual fee cash back card. The Venmo Credit Card can be used everywhere Visa credit cards are accepted, giving the opportunity to make purchases at millions of retailers worldwide in-store and online.

The Venmo Credit Card comes equipped with a personal Venmo QR code printed on the front. The QR code can be scanned with the mobile device to seamlessly activate the card once it arrives, or scanned by friends in the Venmo app so they can send a payment or split a purchase with ease.   Synchrony’s card activation costs are

significantly reduced by enabling QR-code activation.

It is offering the Venmo community a dynamic rewards experience maximizing opportunities to earn cashback. Cash back is automatically added to a customers account with Venmo, giving them the freedom to choose how to use the funds.

Venmo, founded in 2009, is now part of PayPal, a company which has experienced significant growth throughout the pandemic.

 OmniPayments helps to underpin the Synchrony infrastructure, streamlining their ability to launch new card products with their business partners.  Synchrony operates one of the most comprehensive private label and scheme-based card programs in north America. With its Services Oriented Architecture (SOA), OmniPayments makes it especially easy to integrate with existing infrastructure.

Let’s remind ourselves of the true OmniPayments Digital Payments Platform benefits:

   Rapid Project Delivery

   e-commerce enablement

   Mobile Wallet

   Rapid Cloud-based launch

   Rapid return on investment

   Flexible configuration

   Rock-solid reliability

 

 

 OmniPayments helps payments institutions who need to integrate their payment methods and channels, issue card products both virtual and real, or who acquire payment transactions from a broad choice of consumer payment tokens, or who want to expand payment choices for their clients.  We provide opportunities to streamline payment technology and improve bottom-line profitability. 

Our Customers today run profitable businesses of their own, and continue to improve their profit margins with Return on Investment figures of only a few months.

Whether you want to issue emergency payment vouchers, issue payment tokens to mobiles, process QR code payments, accept traditional card payments, consider our rapid private cloud-based solution to get you up and running in weeks.

Follow OmniPayments on Twitter at @omnipayments, visit our website at www.omnipayments.com, or email us at sales@omnipayments.com

 


Newsletters

Missed a Newsletter? Catch Up Here

Find out about Tandemworld

 

 


Keystroke Logging for HPE NonStop Servers  

 

 Join XYPRO for This Live Webinar!

 

Privileged accounts hold the keys to the most critical data on your HPE NonStop servers. They can take action with the highest privileges on the most sensitive areas of your system. PCI DSS requires that all actions taken by any user with administrative privileges must be tracked.

Presented by XYPRO Senior Solutions Architect and Connect User Group Past President, Rob Lesan. This webinar will cover it all!  

If your HPE NonStop servers handle PCI data, you need to keystroke log privileged users!  Period.  You must implement automated audit trails for all system components in order to reconstruct the following events:

       All individual user access to cardholder data.

       All actions taken by any individual with root or administrative privileges.

Keystroke logging is the most effective method to meet this requirement.

XYGATE captures keystrokes from Guardian (TACL), OSS (ksh, bash, etc.), via telnet (hopefully over TLS!), ssh or any other method. XYGATE keystroke logging operates with or without Safeguard and differentiates between a user and an alias for both reporting and control.

Keystroke logs combined with a SIEM or Security Intelligence technology, go beyond compliance to realtime detection and prevention of data breaches.

Compliance requirements, zero overhead, extensible reporting and the ability to record actions from all users via XYGATE is the ideal solution to meet this very necessary security requirement.

· Register NOW ·

                                                                                                                                                 

 

 


Lusis TANGO on HPE NonStop

While payment processing is constantly evolving, the fundamentals have not changed—perform transactions at high speed with round-the-clock availability and absolute security.

Changes come in the form of new financial services—how they are delivered and managed with increasing frequency. To keep pace in a dynamic industry and outperform competitors, you need modern, flexible solutions that help streamline new offerings.

TANGO’s state-of-the-art technology and unparalleled configurability due to its microservices-based architecture foster creation of new business services rapidly, enable interoperability with in-house and third-party applications, and facilitate support for current and future payment components.

And HPE NonStop is always adapting, such as hardware-independent HPE Virtualized NonStop in a VMware environment as well as support for rich tools for DevOps.

Together, Lusis TANGO on HPE NonStop helps keep your payments processing environment at the forefront of financial services and customer experience.

 

Please enjoy our short video on TANGO.

https://youtu.be/RP_eyPW3u7s

 

 

Brian Miller
General Manager
Lusis Payments
www.lusispayments.com

 

 

 

 

 


Ask TandemWorld

Got a question about NonStop ? ASK Tandemworld

Keep up with us on

Twitter @tandemworld

We are currently seeking skilled resources across the EMEA region,

contact us for More Info

www.tandemworld.net

 

 


NuWave Is Hiring!

 

Want to join a tight-knit company with a focus on innovation and modern technology? NuWave is currently hiring product development engineers with NonStop experience! Check out the latest job openings at http://www.nuwavetech.com/about-nuwave/it-jobs.

 

 

 

 

 


Find out more about us at www.tandemworld.net

 



www.tandemworld.net

+44 (0) 20 8304 7979


Our company, Tandemworld, accepts no liability for the content of this email, or for the consequences of any actions
or information provided.

To Unsubscribe or Change your Subscription Please click here