It happens to the best of us—websites can experience slow response times or an outage for a number of reasons that are out of your control. Criminals try to penetrate your security perimeter to steal your users’ private data and credit card information. Hacktivists with an opposing view attempt to take your website offline simply because they disagree. Or, a bored teenager on the other side of the world decides to take your website down with a DDoS attack simply because he can.Read more »
Register for our webinar on the threat of DDoS attacks on online gaming sites, Double Down on Cyber Security on July 30, 2015.Read more »
Forrester Research, Inc. has just released The 2015 Forrester Wave for DDoS Service Providers, naming Imperva as a leader among evaluated DDoS service providers. We are delighted to share this news with you.Read more »
Content delivery networks (CDNs) have enabled website operators to take advantage of accelerated network speeds without compromising web performance or overburdening server resources.
More recently, techniques such as CDN peering have benefited website owners by further speeding up their sites while reducing operational expenses. This article focuses on how CDN peering improves content delivery and enhances website performance...Read more »
Over the past six months, Imperva Incapsula has seen several high-profile, distributed denial of service (DDoS) attacks aimed at taking down several online gaming networks—including Xbox Live, Playstation, Nintendo, League of Legends, Blizzard, as well as countless other, smaller networks. While such attacks against online gaming servers goes back at least a decade, recent examples suggest that the problem is growing—both in terms of frequency and severity.
This blog post outlines the risks that DDoS assaults pose to gaming providers, as well as elaborates upon the unique confluence of factors that make the gaming industry an ideal DDoS target.Read more »
Since 2009 Imperva Incapsula has offered updated multi-faceted solutions that make websites faster, secure, and reliable. Having a robust, global content delivery network (CDN) continues to play a major part in our offerings.
As part of our ongoing commitment to build upon our existing CDN, we recently introduced a set of upgrades that take its caching capabilities to a higher level...Read more »
Distributed denial of service (DDoS) assaults continue to be a nuisance for online businesses and their customers. Worse, the downtime caused by attacks is costly for organizations and frustrating for consumers.
With no signs of abating, understanding the methods and capabilities of perpetrators is essential to maintaining good defenses.
In our Q2 2015 DDoS Global Threat Landscape Report we share unique research data, collected in the course of mitigating thousands of DDoS assaults against Imperva Incapsula-protected domains and network infrastructures.
Leveraging this large dataset, we are able to produce statistical research of DDoS events—one which provides a bird’s-eye view of the current state of the DDoS threat landscape, focusing on latest attack methods, attack frequency and duration patterns...Read more »
In a 24/7 world of websites and applications, downtime is simply not an option; uninterrupted availability has become absolutely imperative. Amazon’s Elastic Compute Cloud (EC2) service, along with its Elastic Load Balancing (ELB) offering, addresses this need by offering Amazon Web Services (AWS) users on-demand scalability and availability—as need dictates, additional servers are added to a virtual “data center” and entered into a load balancer’s destination list. This makes Amazon EC2/ELB a great solution for organizations having their entire environments residing within AWS.
Most enterprise-scale organizations, however, do not situate their entire network infrastructures within AWS, Rackspace—or any single cloud environment, for that matter. So, while Amazon ELB does a rather good job of load balancing within its native environment, it doesn’t work outside AWS. This can be a severe limitation in many common-use cases. This post addresses use-cases where ELB is not sufficient and explores load balancing solutions for such scenarios...Read more »
Over the past month, a number of Imperva Incapsula customers have received email threats from DD4BC—a DDoS group that, despite its boyband-sounding name, was actually responsible for several high-profile DDoS extortion attacks against bitcoin companies last year.
DD4BC's previous attacks targeted bitcoin exchanges and gaming sites, presumably due to the assumption that these types of businesses would refrain from reporting attacks to law enforcement authorities. Based on the recent threats we've seen, it would appear that DD4BC has also started targeting the payment industry...Read more »
The researchers have published a technical report that details how Diffie-Hellman fails in practice. According to the report, implementations that deploy TLS with DHE_EXPORT ciphers are susceptible to this flaw.
Since Incapsula doesn’t support DHE ciphers nor does it support export-grade ciphers, customers using Incapsula are protected from this vulnerability...Read more »