12
May
2015
Lax Security Opens the Door for Mass Scale Abuse of SOHO Routers

Small Office / Home Office (SOHO) router security has recently become a hot topic. For those who are unfamiliar with the situation, it can best be described as negligent, with ISPs, vendors, and users sharing a long tradition of disregarding basic security practices. The result of this negligence is the existence of hundreds of thousands—more likely millions—of hacker-controlled routers used to attack the Internet ecosystem and interconnected networks.

Several dozen Imperva Incapsula customers were recently targeted by one such DDoS botnet comprised of tens of thousands of hijacked routers. After informing the major companies involved, we are sharing attack details in an attempt to raise awareness about the dangers posed by under-secured, connected devices.

The attacks we will describe are enabled by what we perceive as particularly careless security practices. Many of these botnet devices remain active, continuing to play a role in attack attempts against our clients and other websites, even as this is being written...

Read more »

10
May
2015
Come Meet us at G2E Asia 2015

Next week we'll be travelling to G2E Asia, the most prominent event in the global gaming industry. This lucrative expo brings together top professionals in the field, and serves as an invaluable platform for Incapsula to present its services and solutions in an arena that continuously grows more competitive.

Read more »


30
Apr
2015
Case Study: Advanced Camouflage Techniques that Help Backdoors Bypass Security Solutions

The nature of our business is such that many of our clients come to us only after experiencing a security breach, with their websites already infested by one or more backdoor shells. As a result, a good chunk of our time is spent towards perfecting our backdoor detection and removal mechanisms. But even when you think you've seen it all, hackers never cease to surprise.

The following is a case study that delves into the details of a sophisticated backdoor we've recently neutralized—one that really brought out our inner security geek. We hope that it will provide assistance and guidance to fellow security professionals and help them outsmart similar sneaky perpetrators...

Read more »




15
Apr
2015
Incapsula’s New DDoS Downtime Calculator

Risk assessment is a critical part of any security strategy. Only by understanding the real risks associated with a given threat can you determine the most appropriate way to address them, as well as the right level of investment.

Incapsula’s new DDoS Downtime Calculator is designed to help you assess the risks associated with an attack, offering case-specific information adjusted to the realities of your organization...

Read more »

09
Apr
2015
Infrastructure Protection for Individual IP Addresses

Our third and final announcement for today is a new service that allows more organizations to benefit from Incapsula DDoS protection solutions.

This new feature overcomes an innate router limitation that restricts the deployment of BGP-enabled protection to users with at least an entire Class C IP subnet.

We expect that this newfound ability to will make Infrastructure Protection the go-to option for organizations with smaller networks looking for a robust, versatile, and cost-effective DDoS mitigation solution...

Read more »