31
Mar
2015
Shotgun DDoS Attacks Originating from Anonymous Proxies

The idea behind these attacks is to leverage a large number of open proxies to turn a single-source DoS attack into a distributed one (DDoS), making it much harder to mitigate.

In such attacks, the perpetrator’s first step is to harvest a list of publicly available proxy servers, using a DYI script of one of many list or tools available online.

Next, using a modified version of DoS toolkit or homebrew DoS script the perpetrator sends out a slew of malicious request through each of the harvested IPs...

Read more »

30
Mar
2015
Analysis of Vikingdom DDoS Attacks on U.S. Government Sites

Over the past two weeks, a cyber vandalism group using the Twitter handle @Vikingdom2015 (currently suspended) has been targeting various high-profile U.S. federal and state government websites with DDoS attacks.

On March 18, during one of the initial attacks, one of @Vikingdom2015’s victims contacted Incapsula for assistance with mitigation. As soon as they on-boarded their website, we saw a DDoS attack targeting our Seattle PoP, peaking at ~8.74 Gbps and 2.4 million packets per second...

Read more »

26
Mar
2015
Announcing Four New Data Centers and Our First PoP in South America

Today we are excited to announce the parallel activation of four new data centers. These will enable us to further improve our worldwide service to clients in strategic regions.

Our new data centers are located in:

  • Sao Paulo, Brazil
  • Toronto, Canada
  • Warsaw, Poland
  • Madrid, Spain

This coordinated deployment brings the total number of Incapsula data centers to 25, thereby extending Incapsula's global coverage, improving its resilience to DDoS attacks, and further enhancing performance for all Incapsula content delivery network (CDN) clients.

Read more »

19
Mar
2015

Earlier today, The OpenSSL Project released an update to address a number of security flaws, including a new vulnerability classified as “high” severity. The versions of OpenSSL to be patched are 1.0.2, 1.0.1, 1.0.0 and 0.9.8. The high-severity vulnerability exists only in v1.0.2, according to the advisory.

This new high-severity vulnerability could be exploited to launch a denial-of-service (DoS) attack against a server by renegotiating an SSL connection with an invalid signature algorithm extension.

Incapsula is not using v1.0.2 of OpenSSL and as a result the new OpenSSL vulnerability has no impact on our network.

Moreover, since Incapsula terminates all SSL connections before passing them to origin servers, all Incapsula-protected domains are also secured by default, even before applying the patch on their end.

Read more »


05
Mar
2015
Why DDoSers Have Their Eyes on SaaS, and What You Can Do About It

In recent years Software as a Service (SaaS) emerged as one of the most targeted online industries. This isn’t particularly surprising as, for several key reasons, SaaS companies are especially vulnerable to DDoS attacks.

In this post we’ll talk about:

  • What makes SaaS companies so attractive to perpetrators
  • What are the typical DDoS threats SaaS companies have to face
  • Basic steps SaaS companies should take to minimize the threat
Read more »

26
Feb
2015
Layer 7 Visibility - Beyond the Buzzword

As a website operator you’ve probably heard vendors, including Incapsula, mention the benefits of layer 7 visibility. However, you may not have ever received a clear explanation as to why it is important to your organization.

In this post, we’ll go beyond buzzwords and delve into the advantages of layer 7 visibility as a DevOps tool used for load balancing and DDoS mitigation.

Read more »

19
Feb
2015
Free IPv6 Support for All Incapsula Clients

With this upgrade, Incapsula can be used as a backward and forward-compatible IPv6-to-IPv4 gateway that supports all IPv6 communication scenarios.

Backward and forward-compatible IPv6-to-IPv4 gateway

This has two main benefits:

  • Free IPv6 for everyone – Adding to its security, availability and acceleration capabilities, Incapsula can now be used as a plug-and-play IPv6 compatibility solution.
    Any website operator in need of IPv6 support can now skip the resource and time-intensive upgrade by using Incapsula’s free Content Delivery Network (CDN) to seamlessly facilitate all IPv6-to-IPv4 communications.
  • Better Compliance – With its newly developed ability to handle end-to-end IPv6 communications, Incapsula is now fully compliant with regulatory demands calling for IPv6 support (e.g., DAE Action 89).
    This not only addresses a commonly expressed need for existing Incapsula clients, but also opens the door for new and existing business opportunities in government and enterprise sectors.

Read more »

11
Feb
2015
Introducing our New System Status Page

Today we are happy to announce the launch of our new system status page, which helps our clients track Incapsula network status worldwide, including server health and software updates.

This new system provides real-time visibility of the condition of Incapsula’s global network, offering our clients centralized updates on:

  • System Status – Allows you to confirm the availability of all Incapsula data centers and granularly observe the current status of the Incapsula management console and API on each and every Incapsula PoP.
  • Outages and Incidents – Helps keep track of major network events that may potentially impact your own service.
  • Patching and Maintenance – Provides information about Incapsula maintenance cycles and major security patches.

Incapsula’s enterprise clients can also subscribe to receive real-time network status notifications, available via SMS or Email.

Read more »

29
Jan
2015
New Data Center Goes Live in Zurich Switzerland. Total Network Capacity Surpasses 1Tbps.

This week we are happy to announce the activation of Incapsula’s 21st data center in Zurich, Switzerland. With this deployment Incapsula achieves a firm local presence that enables clients to comply with the strict demands of Swiss privacy laws and Swiss federal data protection regulations (DPA).

The Zurich deployment culminates an extensive network-wide upgrade, during which we expanded the capacity of existing data centers to further improve Incapsula's resilience against large-scale DDoS attacks.

With the conclusion of 2014’s upgrade cycle, and with the additional muscle provided by this new Zurich facility, Incapsula’s overall network capacity now surpasses 1Tbps.

Read more »