Web Application Firewall (WAF)

According to Fortinet, Web Application Firewalls (WAFs) are designed to inspect and protect HTTP connections and prevent web-based attacks such as cross-site scripting (XSS) and SQL injection. While WAF tools and devices have been around for over a decade, and are a required technology for organizations that process credit card transactions (PCI-DSS), they are just now starting to gain traction in many networks.

Snapt say that every business exposing online applications, services, and APIs needs a Web Application Firewall (WAF) to operate safely and protect against cybersecurity threats. A WAF identifies and blocks attacks that lead to downtime, leaked data, and compromised transactions and accounts.

Some questions you may have:

  1. What does your network architecture and application infrastructure look like?
  2. Which teams will use the WAF and how?
  3. Where will you deploy a WAF?
  4. Which detection and blocking techniques suit your traffic and risk profile?
  5. Which application attacks present the biggest risks to your business?
  6. Would your apps benefit from virtual patching and scanner integration?
  7. Do you need PCI-DSS compliance for secure transactions?
  8. Do you need to terminate SSL traffic?
  9. What kind of visibility and reporting does your SecOps team need to be effective?

Click on any of the above questions to learn more, from our partner Snapt on their blog.

The difference between SD-WAN and MPLS

This topic is often how the SD-WAN discussion starts.

A network migration to SD-WAN may deliver cost savings, performance improvements and better security.

According to our partners Fortinet, the short answer is that SD-WAN offers better visibility, availability, enhanced performance, and more freedom of action. It’s why the industry has seen interest in SD-WAN rising over the past few years.

Fortinet list the following benefits of SD-WAN over MPLS:

  • SD-WAN delivers potential cost savings.
  • Secure SD-WAN from Fortinet provides better protection than MPLS, because the solution is delivered as an integrated function within a next-generation firewall appliance.
  • SD-WAN delivers better network performance, utilizing diverse links and paths based on application or traffic type, for example.

Click here for more information on Fortinet’s Secure SD-WAN solution, or get in touch to discuss a SD-WAN solution that’s right for you and your business.

Announcement: We’re now Snapt partners

Did you know that we are Snapt partners?

Snapt provides future-proof load balancing and security solutions that are cloud-neutral and platform-agnostic.

Snapt eliminates downtime and automatically scales your sites and applications to ensure maximum responsiveness.

Using a single pane of glass, our solutions deliver centralized control and intelligence for all your clouds, platforms, architectures, and applications.

You can learn more about the available products and services by clicking through.

Protect your clients and your business

“Our bank details have not changed.” is surely one of the least pleasant things to have to put in your email signature.

Chances are, if you’ve seen this, the email sender’s email domain has been impersonated and used in a phishing attack.

Phishing is extremely commonplace these days and is used by attackers to steal information such as passwords and other credentials, and other sensitive information.

According to Sendmarc, below are several common phishing scams, which can include things such as:

  • Asking you to click on a link and download a malicious file onto your computer.
  • Sending you an email notifying you of an outstanding invoice – and then a link where you can click to pay it. Clicking on this link takes you to an illegitimate site where scammers can gather your personal information and access your bank accounts.
  • The email sender telling you that one of your accounts has been compromised, and then asking you to log in and reset your password, fill in your information and resubmit it.
  • Pretending to be one of your vendors and asking you to confirm your credit information before they can release or deliver an order.

There are 2 approaches, which work best in parallel, to prevent email phishing attacks.

  1. Implement a technical solution such as DMARC to assure email authenticity
  2. Train your employees to recognize phishing emails and handle them appropriately

We work with our partners Sendmarc to help our customers prevent their email domains from being impersonated, nd used in phishing attacks.

You should really know whether or not your domain is at risk of impersonation – fill in the form below and we’ll run the analysis for you and reply with the information.