Protecting our customers Our security research team has built and deployed a rule to protect Fastly’s Signal Sciences Next-Gen WAF customers against the recently announced Microsoft Exchange Server vulnerabilities. The custom rule is available in the console under "Templated Rules".…
We are excited to announce today the launch of API and ATO Protection Dashboards, a new set of features dedicated to identifying, blocking, and analyzing malicious behavior that attackers use against web applications and APIs. Now available on the Signal…
To protect applications as modern development processes evolve and accelerate, businesses need to integrate security as part of the DevOps and security toolchain. This is a primary driver behind why we built Signal Sciences web application and API protection platform…
Digital transformation projects demand that developers continually roll out new applications to fuel those efforts. These new applications and APIs can surface sensitive data and must be protected in production: RASP (runtime application self protection) provides developers a defensive means…
Maintaining a resilient security posture is an ongoing effort for every organization. As reports of data breaches, fraud, and cyberattacks grow increasingly common, it’s important to have strategies in place to mitigate their impact. Whilst cybersecurity may have once seemed…
Ask any CISO about a trend that they think will help push security postures forward and you’ll inevitably hear the same thing: the elimination of the perimeter and the rise of the zero trust mindset. In the old perimeter model,…
We hear often from customers who replace a legacy web application firewall (WAF) with Signal Sciences next-gen WAF about why they made the switch. Almost always, those reasons are a variation on the following themes: Legacy WAF costs too much…
Signal Sciences is excited to announce the availability of new advanced rate limiting features that extend our customers' ability to detect and stop abusive behavior at the application and API layer. Over the past several weeks as part of our…
As software-defined networks have replaced the monolithic, server-to-server communication paths of networks’ past, web application firewalls (WAFs) have become staples of organizations’ security technology deployments. First-generation WAFs, launched circa 1990 as extensions to traditional network firewalls, relied on the analysis…
Reflecting on the use of SSRF in the Capital One Breach One of the most notable breaches of 2019 was the Capital One breach, where the attacker used a Server Side Request Forgery (SSRF). It was notable not only because…
The 4.2 release of the Signal Sciences agent introduces WebSocket traffic inspection, enabling customers to extend the coverage of applications, APIs, and microservices protected by Signal Sciences next-gen WAF to apps and services that utilize the WebSockets protocol. Rarely found…
I’m excited to announce the ability of Signal Sciences to detect HTTP Request Smuggling attempts! For customers implementing modern, multi-tiered or cloud native web applications, Signal Sciences can now seamlessly detect and mitigate HTTP Request Smuggling attempts which seek to…
There’s no way around it: medical care impacts us all. Even in good health, we cannot predict accidents and emergency situations that will require the knowledge and skills of medical professionals. The amount of data generated and stored each time…
Examples of common install patterns of Signal Sciences in Kubernetes The Many Flavors of Kubernetes Recently I have found that Kubernetes has become commonplace within most organizations that I work with. There are many permutations of what form Kubernetes takes…
Application Programming Interfaces (APIs) are an intermediary framework that enable applications to communicate and exchange data with one another. As a backbone of the modern web, software companies build and deploy APIs to do everything from displaying social media content…
Virtual Patches: Security Duct Tape Let’s get serious for a minute. Virtual Patching is Cyber duct tape. Originally coined by Intrusion Prevention System (IPS) vendors years ago, Virtual Patching has been known by different names including “External Patching” and “Just-in-time…
We ask our customers early and often why they chose us as their next-gen WAF and RASP technology of choice. Here are ten main reasons we hear across the board, and you can read the full white paper to dive…