Reportedly, Shoplift vulnerability affects over 100,000 e-commerce websites. We started seeing exploitation attempts just before the official disclosure, and these attempts increased after the vulnerability was disclosed. To date, we’ve blocked thousands of attack attempts targeting our Magento customers...Read more »
If you’re looking to make a career in DevOps, the survey results will provide valuable insights into different career paths, DevOps roles, and salaries. For freshmen in the field, some of this information could turn out to be an ace in the hole when applying for your first job in DevOps...Read more »
Incapsula WAF clients are protected from the latest MS15-034 (CVE-2015-1635) and MS15-036 (CVE-2015-1640) vulnerabilities, made public on April 14th.
Our analysis of both security flaws shows that they are not currently being exploited en masse, as is often the case with other newly published vulnerabilities...Read more »
Risk assessment is a critical part of any security strategy. Only by understanding the real risks associated with a given threat can you determine the most appropriate way to address them, as well as the right level of investment.
Incapsula’s new DDoS Downtime Calculator is designed to help you assess the risks associated with an attack, offering case-specific information adjusted to the realities of your organization...Read more »
Our third and final announcement for today is a new service that allows more organizations to benefit from Incapsula DDoS protection solutions.
This new feature overcomes an innate router limitation that restricts the deployment of BGP-enabled protection to users with at least an entire Class C IP subnet.
We expect that this newfound ability to will make Infrastructure Protection the go-to option for organizations with smaller networks looking for a robust, versatile, and cost-effective DDoS mitigation solution...Read more »
The second part of our enterprise-grade feature series is a new API package that provides turnkey SIEM integration with leading security information and event management (SIEM) systems, including HP ArcSight and McAfee Enterprise Security Manager.
This solution enables enterprises to effortlessly assimilate Incapsula’s security information into their SIEM systems, allowing them a near real-time snapshot of all important security-related information and events within their network...Read more »
We are excited to announce the launch of three new enterprise-grade features that will help our client integrate Incapsula’s protection solutions into existing enterprise workflows.
The first of these upgrades is a monitoring and notification feature that provides new visibility options for our infrastructure protection customers, who use Incapsula-provided information in their incident response processes.
With this new feature our customers will benefit from real-time notifications about all types of DDoS attacks, regardless of protocol and service, enabling data-driven early response and mitigation...Read more »
The idea behind these attacks is to leverage a large number of open proxies to turn a single-source DoS attack into a distributed one (DDoS), making it much harder to mitigate.
In such attacks, the perpetrator’s first step is to harvest a list of publicly available proxy servers, using a DYI script of one of many list or tools available online.
Next, using a modified version of DoS toolkit or homebrew DoS script the perpetrator sends out a slew of malicious request through each of the harvested IPs...Read more »
Over the past two weeks, a cyber vandalism group using the Twitter handle @Vikingdom2015 (currently suspended) has been targeting various high-profile U.S. federal and state government websites with DDoS attacks.
On March 18, during one of the initial attacks, one of @Vikingdom2015’s victims contacted Incapsula for assistance with mitigation. As soon as they on-boarded their website, we saw a DDoS attack targeting our Seattle PoP, peaking at ~8.74 Gbps and 2.4 million packets per second...Read more »
Today we are excited to announce the parallel activation of four new data centers. These will enable us to further improve our worldwide service to clients in strategic regions.
Our new data centers are located in:
- Sao Paulo, Brazil
- Toronto, Canada
- Warsaw, Poland
- Madrid, Spain
This coordinated deployment brings the total number of Incapsula data centers to 25, thereby extending Incapsula's global coverage, improving its resilience to DDoS attacks, and further enhancing performance for all Incapsula content delivery network (CDN) clients.Read more »