Security Appliance protects against Web application threats.
Share:
Press Release Summary:
Suited for global enterprises, WebDefend v3.2 offers automated detection of Web application resource abuse via full inspection of all SSL-encrypted and clear text web traffic. Ports of this Web application firewall can be configured in monitoring or blocking pairs to prevent automated attacks, and single appliance can be configured to monitor up to 4 independent network segments for attack detection and subsequent code remediation.
Original Press Release:
Breach Security Upgrades Industry-Leading Web Application Security Solution
WebDefend 3.2 Extends Capabilities of Unique Web Application Defect Detection and Adds Application-Level Protection for Denial-of-Service and Website Scraping Attacks
CARLSBAD, Calif., March 10 -- Breach Security, Inc., the leader in web application security, today announced the latest release of its flagship WebDefend web application security appliance, version 3.2. The newly available release identifies and stops abuse of web application resources, offers higher performance, and delivers enhancements to ease enterprise-wide adoption.
WebDefend v3.2 includes an industry first -- automated detection of application resource abuse. Unlike a typical attack that exploits vulnerable code, these specialized attacks exploit flaws in business logic through excessive actions such as an unusually high rate of requests for proprietary information from a single user posing as a subscriber. Left undetected, such "scraping" attacks can result in data leakage and theft of intellectual property such as industry research, gaming odds, and resumes, ultimately undermining a corporation's reputation and revenue model. Additionally, these attacks can be used to overload system resources causing web applications to fail and online business operations to cease.
"Breach Security understands that the goal of web application security is more than blocking an inbound attack," said Greg Hanchin, vice president at DirSec, a leading security reseller and Breach Security partner. "Our customers rely on WebDefend to deliver the insight required to understand the application environment and to ensure application integrity."
In response to increased demand from global enterprises with high-volume web traffic, WebDefend v3.2 features enhanced performance and increased port density. The new version delivers up to a 50 percent increase in performance without compromising the full inspection of all SSL-encrypted and clear text web traffic. To prevent automated attacks, these ports can easily be configured in monitoring/blocking pairs. For attack detection and subsequent code remediation, a single WebDefend appliance can be configured to monitor up to four independent network segments.
"The pervasive, complex and dynamic nature of web applications introduces unique security implications," said Mike Pierce, CEO, Breach Security. "Organizations of all sizes require continuous application security solutions that automatically adapt to application changes and a constantly changing threat landscape. The latest WebDefend release delivers enhancements in threat protection and performance to best serve the needs of even the world's largest web businesses."
Other features in WebDefend v3.2 include:
-- Automated report generation: WebDefend administrators can easily schedule reports for automated delivery.
-- Complete enterprise high availability: the WebDefend Enterprise Manager now includes high availability over wide area networks, complementing the robust failover capabilities already available with WebDefend sensors. The WebDefend Manager appliance supports large-scale sensor deployments with consolidated security and application defect events, role-based user administration and full command and control for remote sensors.
-- Support for segmented web infrastructures: the latest version offers ease-of-deployment with six network interfaces including four user-configurable ports.
-- Updated signature database: Breach Security Labs has updated the WebDefend application signature rules set to provide protection against the latest forms of attacks including variants of SQL injections and cross site scripting.
-- WebDefend automatic upgrade: provides administrators with a quick and easy upgrade path to the software, signatures and policies.
About WebDefend
WebDefend is an advanced web application firewall that offers customized, behavior-based security for each protected application. Only WebDefend uses a patented profiling system and multiple, collaborative detection engines to ensure the flow of business-critical traffic while supplying complete protection for applications to keep the organizations' confidential information safe from targeted attacks. Deployed out-of-line, WebDefend uniquely provides non-intrusive, effective security for multi-application environments while continuing to provide full blocking capabilities. In 2008, WebDefend has been praised for its accurate attack detection and prevention, ease-of-use, performance and targeted Payment Card Industry features in reviews by major industry publications including SC Magazine and Information Security magazine, a TechTarget publication.
About Breach Security, Inc.
Breach Security, Inc. is the leading provider of real-time, continuous web application security that protects sensitive web-based information. Breach Security's products protect web applications from hacking attacks and data leakage, and ensure applications operate as intended. The company's products are trusted by thousands of organizations around the world, including leaders in finance, healthcare, ecommerce, travel, and government. For more information, please visit http://www.breach.com/.
Breach Security, WebDefend, BreachMarks and ModSecurity are trademarks of Breach Security, Inc. All other companies' names and product names are trademarks of their respective organizations
CONTACT: Jill A. Reed of Schwartz Communications, +1-415-512-0770, breachsecurity@schwartz-pr.com, for Breach Security, Inc.
