10
Nov
2014
Shellshock - 28 and some days later

As any security researcher will tell you, zero-days never die young. The reason is simple. Even when rapidly released, official patches are only useful for containment. Left unattended, some resources will remain vulnerable. . These might be some old WP templates using an older version of TimThumb or, in the case of Shellshock, a home router having an outdated Linux installation. One way or another, there are always stragglers for attackers to prey on.

Today, more than thirty days after Shellshock was officially disclosed, there are still plenty of them roaming around...

Read more »

31
Oct
2014

On Thursday, the Drupal Security Team issued a PSA on the Drupal 7 SQL injection vulnerability (SA-CORE-2014-005). The announcement underscores the importance of updating your server to Drupal 7.32.

Incapsula issued an update to our WAF rules on October 15 to protect against SA-CORE-2014-005. Customers who have the WAF enabled are protected against this vulnerability. To confirm SQL injection protection is on, log into your Incapsula account, go to Settings > WAF, and confirm that SQL Injection is set to Block Request.

Read more »

30
Oct
2014
New Data Center Goes Live in Stockholm Sweden

Today we are pleased to announce the activation of Incapsula’s latest data center in Stockholm, Sweden—located in the lucrative Telecity STO1 facility.

With this new point-of-presence (PoP), we’ve expanded our portfolio of connectivity routes to provide better performance to visitors in the Nordic region, Baltic countries, and Eastern Europe.

Read more »

21
Oct
2014
Deprecating SHA-1 Hash Algorithm. Why, What and When.

As some of you may already know, in September Incapsula began the process of replacing all SHA-1 SSL certificates with the more secure SHA-2 version. This transition is on schedule and will be completed within the following week. In addition, all new SSL certificates issued by Incapsula will use the SHA-2 algorithm.

Our decision to discontinue SHA-1 support is in line with the industry trend, which acknowledges the potential weakness of the SHA-1 cryptographic algorithm.

In November 2013 Microsoft was the first to announce its timetable for phasing out SHA-1 certificates. According to this timetable, MSN platforms will stop supporting SHA-1 as of January 1, 2017.

More recently, Google and Mozilla announced that their browsers will no longer trust SHA-1 encrypted SSL certificates with expiration dates past December 31, 2016...

Read more »

16
Sep
2014
Breaking down Our New Weekly Report

Today Incapsula is releasing a revamped version of our weekly email report. With it we address two popular requests by our clients:

  • Consolidated view – In the past we would provide a separate email report for each domain running on Incapsula’s service. summary:
    Today, with most of our clients hosting multiple domains under the same account, and with some accounts having grown to hundreds or even thousands of domains, this method has outgrown its usefulness.
  • High-level insights – As the scope of Incapsula-monitored data continued to grow, we received numerous requests for a “Top Stories” report—one that would automatically highlight the most recent and most interesting activities. summary:
    Our new report does exactly this—both by providing aggregated account information, and by introducing a new ”Insight” section, which helps you keep of the most noteworthy traffic and security trends.

Incapsula’s new report also lets you better assess your bandwidth consumption. At the same time it enables you to easily monitor your security postures—from WAF alerts to the effectiveness of your own custom security rules.

Read more »

20
Aug
2014
38 Days of DDoS — Behemoth’s Graduation Moment

Not one month after Incapsula announced its new DNS and infrastructure protection services, our new ’Behemoth‘ scrubbers were put to the test—mitigating a massive, multi-vector DDoS attack, peaking at 110+ Gbps and 90+ million packets per second.

Like the proud parents we are, we couldn’t help but brag about Behemoth’s success on Facebook and Twitter. One of these tweets caught the attention of Mohit Kumar, founder and editor-in-chief of The Hacker News (THN), who shot us an email with some questions. In responding we told him it appeared the attack “wasn’t going to stop any time soon”.

In retrospect, this turned to be a serious understatement...

Read more »


06
Aug
2014

Several hours ago, security researcher Nir Goldshlager revealed a new crucial vulnerability that allows offenders to launch a very effective Denial of Service attack, through a process that circumvents existing security measures.

The vulnerability exists in all WordPress and Drupal versions, affecting over 250 million websites, roughly 23% of the Internet website population today.

Incapsula’s security team issued an emergency patch, which has been deployed across the entire Incapsula network, preventing this vulnerability from affecting any of our WAF-protected clients.

We strongly urge all other WordPress and Drupal website operators to apply the latest security patch as soon as possible.

Read more »

24
Jul
2014
Dr. Crawlit - A Bot That Cares About the ‘Little Guy’

In the first post of this two-part series, we shared our insights into Googlebot’s activity and behavior patterns.

However, no overview of Googlebot activity would be complete without a mention of Googlebot imposters, who assume Googlebot’s identity to gain privileged access to websites and online information.

Every day millions of these “evil twins” are used for DDoS attacks, hacking, spam, content theft and many other shady activities. The details of these malicious escapades, that paint the event logs of Incapsula’s security services, are what we share with you here today.

Read more »

24
Jul
2014
Dr. Crawlit - A Bot That Cares About the ‘Little Guy’

Working at Incapsula gives us a bird’s-eye view of the bot traffic landscape. Amongst the innumerable creatures roaming those fields, few are as intriguing as Googlebot – a web crawler that facilitates knowledge exchange between billions of humans, influencing our perceptions, preferences and imaginations in more ways than we can even comprehend.

Over the years, many efforts have been made to better understand Google’s behavior and motives. Today, we want to share with you some of our insights into Googlebot’s behavior, based on what we think is one of the most robust studies on the subject to date.

Read more »