Tag: cybersecurity

Categories
Gartner Imperva Magic Quadrant WAAP WAP Web Application Protection

Imperva An Eight-Time Magic Quadrant Leader for Web Application and API Protection

Imperva An Eight-Time Magic Quadrant Leader for WAAP - Douglas Bernardini 2
Imperva An Eight-Time Magic Quadrant Leader for WAAP - Douglas Bernardini 2

2021 has seen a lot of change. Billionaires now go where only governments and Red Bull gimmicks could go before. The 2020 Olympics didn’t take place in 2020. Tom Brady won his 7th Super Bowl for a completely new franchise [those of you in the US get this reference]. Similar change in application security has now been defined by an annual report with a new name.

Gartner® published the 2021 Magic Quadrant™ for Web Application and API Protection and, despite the new name and expanded scope, Imperva has been named a Leader and rated highest for Completeness of Vision consistently throughout.

Imperva’s vision is to protect all applications for hybrid enterprises

If you picture an application 8 years ago, what you see is not complex: a very large piece of software running on vSphere in a leased data center. APIs were an innovative tool for tiny start-ups [I remember talking to my development team about the advantages of SOAP and why it was too soon to go to REST]. Amazon Web Services was just starting to offer a certification program for engineers. Clearly, 8 years is a very long time in application development time.

And yet, while so much has changed in 8 years, many web applications today are still versions of what was built then. It takes a great deal of methodical planning to properly migrate to cloud-native technologies, such as serverless functions, and gradual investments to effectively architect applications with RESTful and GraphQL APIs. For years, Imperva has continually focused on providing security for organizations in this transition, and the vast majority of them have a mix of legacy and modern across a hybrid environment. This is a key reason why we continue to invest in Web Application and API Protection that our customers can deploy in a variety of ways, from appliances in data centers to SaaS to natively deployed in AWS, Microsoft Azure, and Google Cloud Platform (GCP).

But you cannot protect all of a modern organization simply by adapting the protection they already use — it takes innovative approaches to secure what now comprises the majority of all traffic: APIs. Imperva protected our customers’ APIs prior to 2021, but this year, it became a top priority. A few months ago, we added the ability for customers to discover the APIs receiving traffic outside the view of the security team. And to ensure our customers can continue their modernization, we acquired CloudVector for advanced API security protecting high-scale businesses, but more importantly, for the expertise in the team. Effectively protecting APIs requires a deep understanding of how development operations work and how much it differs from the application development of 8 years ago.

“Imperva is a constant company, strong in market share and with solid solutions.” says Douglas Bernardini, Cyber Security Specialist and Cloud Computing Expert.

If you want to learn more about Imperva’s approach, please view the recorded session with Lebin Cheng, Head of API Security, and Peter Klimek, Office of CTO, here.

Imperva Eight Time Leader – Imperva recognizes the industry needs beyond 2022

To handle all of this change, we believe we have the industry’s best approach to protecting our customers from innovative attacks, and thank Gartner for this report’s recognition. Not every application security vendor has our track record of rapidly integrating the technology of their acquisitions, most recently with how the advanced bot management capabilities from Distil Networks were available to Imperva customers in under a year. We look forward to the 2022 report, once Gartner and the broader market have seen what we will accomplish with the CloudVector team guiding the way.

To download the report, visit here.

To immediately start a free trial of our market-leading Cloud WAAP platform, visit our free trial site.

Gartner, “Magic Quadrant for Web Application and API Protection”; Jeremy D’Hoinne, Rajpreet Kaur, John Watts, Adam Hils, Shilpi Handa; September 20, 2021.

The report was earlier named as Magic Quadrant for Web Application Firewalls until 2020. Gartner and Magic Quadrant are registered trademarks of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Imperva.

Source: https://securityboulevard.com/2021/09/imperva-an-eight-time-magic-quadrant-leader-for-web-application-and-api-protection/

See also: Capability Brief – WAF Gateway

Categories
Firewall Fortinet Gartner Magic Quadrant

Fortinet Leader Again – 2021 Named in the Gartner® Magic Quadrant™ for Network Firewalls, Recognized for the Twelfth Time

Fortinet leader again 2021 Gartner - Douglas Bernardini
Fortinet leader again 2021 Gartner - Douglas Bernardini

Fortinet® (NASDAQ: FTNT), a global leader in broad, integrated and automated cybersecurity solutions, today announced that it has been named a Leader in the 2021 Gartner® Magic Quadrant™. For Network Firewalls, marking the twelfth time Fortinet has been recognized in this Magic Quadrant.

Powered by Fortinet’s custom-built SPUs, FortiGate Next-generation Firewalls (NGFWs) deliver industry-leading enterprise security. It protects any edge at scale for customers around the globe. As part of Fortinet’s unique Security-driven Networking approach, which deeply integrates an organization’s network infrastructure and security architecture, the FortiGate NGFW is the only cybersecurity solution on the market that provides natively integrated Secure SD-WAN and ZTNA capabilities without requiring additional licensing to improve security, reduce costs and complexity, and simplify network operations.

Fortinet believes that its placement as a Leader in the 2021 Gartner® Magic Quadrant™ for Network Firewalls is a result of FortiGate’s ability to deliver:

  • Broad Protection – The digital attack surface has continued to expand and organizations are facing growing cyberthreats. The latest FortiGuard Labs Global Threat Landscape Report reported a tenfold year-over-year increase in ransomware attacks. The FortiGate NGFW count on artificial intelligence and machine learning-enhanced FortiGuard Security Services. It enables large enterprises to manage internal and external threats, prevent ransomware attacks, and avoid business disruptions. Besides that, it allows to protect hybrid and hyperscale architectures with coordinated, automatically shared threat intelligence of AI/ML-powered FortiGuard services.
  • Consolidation – IT teams struggle to keep pace with the volume and sophistication of cyberthreats. While as the threat landscape expands and organizations continue to introduce new digital innovations. To reduce product sprawl and simplify operations, FortiGate consolidates essential services like IPS, anti-malware, and web and video filtering capabilities with networking functionality such as SD-WAN to achieve the industry’s best total cost of ownership.
  • Automation – Network and security leaders continue to face challenges as a result of the growing cybersecurity skills gap. The FortiGate NGFW, managed through Fortinet’s Fabric Management Center, helps address these challenges. By providing centralized single-pane-of-glass management capabilities and integration with 400+ ecosystem partners to simplify operations. It allows to coordinate workflows, and deliver consistent policy enforcement across the hybrid network managed via on-premise or from the cloud.
  • Work-from-Anywhere – As businesses rapidly transition to the work-from-anywhere model, security must be top-of-mind. FortiGate natively enables both Zero Trust Network Access Proxy and SD-WAN. Detail: without additional licenses. It allows users to access applications and resources from anywhere, at any time with constant authentication. Important: meanwhile building effective compliance and security controls.

Enterprise Customers Continue to Rely on FortiGate NGFWs

Fortinet was not just named as a Leader in the 2021 Gartner® Magic Quadrant™ for Network Firewalls. The company was also named a 2021 Gartner Peer Insights Customers’ Choice for Network Firewalls for the second year in a row. Fortinet believes that customers validation further emphasizes Fortinet’s ability to deliver advanced security to customers across any edge, at scale.

Fortinet was also recognized as a Leader in the 2021 Gartner® Magic Quadrant™ for WAN Edge Infrastructure. The placing highest in the Leaders quadrant was for its ability to execute for Fortinet Secure SD-WAN, which is delivered on the same product – the FortiGate Next-generation Firewall.

“Fortinet is an organization truly committed to bringing innovative solutions in line with market needs.” says Douglas Bernardini, Cyber Security Specialist and Cloud Expert.

Additional Resources

  • Download the full report and read the blog to learn more.
  • Watch how Fortinet makes possible a digital world you can always trust, and view how the Fortinet Security Fabric platform delivers broad, integrated, and automated protection across an organization’s entire digital infrastructure.
  • Read more about how Fortinet customers are securing their organizations.
  • Learn more about Fortinet’s Training Advancement Agenda (TAA), or about the Fortinet Network Security Expert program, Security Academy program, and Veterans program.
  • Learn more about FortiGuard Labs threat intelligence and research or Outbreak Alerts, which provide timely steps to mitigate breaking cybersecurity attacks. Read more about Fortinet’s FortiGuard security services portfolio.
  • Engage in the Fortinet User Community (Fuse). Share ideas and feedback, learn more about our products and technology, and connect with peers.
  • Follow Fortinet on Twitter, LinkedIn, Facebook, and Instagram. Subscribe to Fortinet on YouTube.

About Gartner Magic Quadrant

Gartner and Magic Quadrant are registered trademarks of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications. Besides that, does not advise technology users to select only those vendors with the highest ratings or other designation. The research publications of Gartner consist of the opinions of Gartner’s research organization. Their opinionshould not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

The Gartner Peer Insights Customers’ Choice constitute the subjective opinions of individual end-user reviews, ratings, and data applied against a documented methodology; they neither represent the views of, nor constitute an endorsement by, Gartner or its affiliates.

Gartner, Magic Quadrant for Network Firewalls, By Rajpreet Kaur, Jeremy D’Hoinne, Nat Smith, Adam Hils, 1 November 2021

Source: finance.yahoo.com/news/fortinet-again-named-leader-2021-162700967.html

See also: Fortinet Six Steps to Stopping Ransomware Damage

Categories
Azure Firewall Fortinet Microsoft Threats

Fortinet Announces the First Next-Generation Firewall and Secure SD-WAN Integration in Microsoft Azure Virtual WAN

Fortinet Announces the First Next-Generation Firewall and Secure SD-WAN Integration in Microsoft Azure Virtual WAN - Douglas Bernardini
Fortinet Announces the First Next-Generation Firewall and Secure SD-WAN Integration in Microsoft Azure Virtual WAN - Douglas Bernardini

FortiGate-VM Integration Enables the Convergence of Security and Networking in the Cloud

Fortinet, a global leader in broad, integrated and automated cybersecurity solutions, today announced the expansion of its collaboration with Microsoft. The collaboration deliver the industry’s first next-generation firewall (NGFW) and Secure SD-WAN integration with Microsoft Azure Virtual WAN.

Customers can now – for the first time ever from any vendor – apply advanced security policies to virtual WAN traffic and extend Secure SD-WAN into the Azure virtual WAN hub.

The result is the convergence of advanced security and networking capabilities in the cloud for an even more simplified, automated, and secure cloud on-ramp and SD-WAN experience.

The integration also allows enterprises to more effectively interconnect with applications and workloads running Azure with the rest of their hybrid and multi-cloud deployments.

Secure Traffic Into, Out of and Through Azure Virtual WAN with Fortinet

Companies are increasingly looking to utilize Azure Virtual WAN as a global transit network architecture, providing seamless connectivity between endpoints.

While Microsoft has long provided secure access to the Virtual WAN Hub, until now, it has been difficult to provide the same security policies with the same security tools within Azure Virtual WAN and across clouds and data centers.

The integration of FortiGate tools into Azure Virtual WAN empowers organizations to achieve their innovation goals outcomes in the cloud. Specifically, this integration enables IT and security professionals to easily configure networking and security in Microsoft Azure and delivers some benefits:

Benefits

  • Advanced Security for Virtual WAN Traffic: FortiGate-VM allows security policies to extend to traffic within the Azure Virtual WAN hub. That enable better, more secure application experiences for users and branch offices. Support encrypted data transports, granular segmentation and application-layer protection against advanced threats. Allows and seamless overlay network with uniform policies across multi-clouds.
  • One-Click Deployment: Azure Virtual WAN integration provides one-click deployment and easy scalability for FortiGate-VM in Azure. Customers can select, configure and deploy FortiGate virtual machines directly from the Azure Marketplace. That is also possible from within the Azure Virtual WAN interface, allowing security to be part of the workflow for setting up a Virtual WAN in Azure.
  • Securely Interconnect Applications and Workloads Across Clouds:. Azure Virtual WAN provides a global network transit backbone for branch-to-branch connectivity readily interconnecting regions together. Customers looking to deploy hybrid and multi-cloud networks that include Azure can now easily and securely interconnect applications and workloads. That allows extending the benefits across their entire infrastructure to enable consistent policies and centralized visibility. This simplifies security management, enables global visibility into security events and policies, and improves quality of experience (QoE). For users and customers.

“Integrated information security solutions are becoming increasingly important for the success of cybersecurity actions.” says Douglas Bernardini, Cyber Security Specialist and Cloud Computing Expert.

Earlier this month, Fortinet and Microsoft also announced the availability of FortiGate-VM integration with Azure gateway load-balancer. It enables customers to deliver superior experiences for applications and workloads running in Azure.

See also: Fortinet Global Threat Landscape Report

Source: www.globenewswire.com/news-release/2021/11/17/2336468/0/en/Fortinet-Announces-the-First-Next-Generation-Firewall-and-Secure-SD-WAN-Integration-in-Microsoft-Azure-Virtual-WAN.html

Categories
CISA MS-ISAC Ransomware Threats

CISA Issues Guidance on Ransomware Attacks

CISA MS-ISAC Ransomware Guide - Douglas Bernardini
CISA MS-ISAC Ransomware Guide - Douglas Bernardini

CISA guidance ransomware attacks.

Recently, the Cybersecurity and Infrastructure Security Agency (CISA) issued a fact sheet offering suggestions to government agencies and private companies on how to prevent and respond to a ransomware attack.

The fact sheet is entitled “Protecting Sensitive and Personal Information from Ransomware-Caused Data Breaches”. It provides organizations with tips to prevent and respond to ransomware. CISA encourages organizations to adopt a heightened state of awareness and implement the recommendations listed in this fact sheet. The goal is to reduce their risk to ransomware and protect sensitive and personal information. Review StopRansomware.gov for additional resources.”

The fact sheet includes tips such as maintaining an offline, encrypted back-up of data, develop an incident response plan, implement auditing, regular scans and software updates, block phishing attempts, and practice “good cyber hygiene.”

“Guidance from internationally respected institutions such as CISA on real and dangerous threats to our companies is of paramount importance.”, says Douglas Bernardini, Cyber Security Specialist and Cloud Computing Expert.

The guidance sets forth some examples of good cyber hygiene, including:

  1. Ensuring antivirus and anti-malware software and signatures are up to date.
  2. Implementing application allowlisting.
  3. Ensuring user and privileged accounts are limited through account use policies, user account control, and privileged account management.
  4. Employing MFA for all services to the extent possible, particularly for webmail, virtual private networks (VPNs), and accounts that access critical systems.
  5. Implementing cybersecurity best practices from CISA’s Cyber Essentials and the CISA-MS-ISAC Joint Ransomware Guide.
    The fact sheet also offers suggestions on the topics “Protecting Sensitive and Personal Information” and “Responding to Ransomware-Caused Data Breaches.”

Finally, it provides additional resources listed on the StopRansomware.gov website. This is a free and valuable roadmap for organizations to read and consider using to prepare for and respond to a ransomware attack.

See also: CISA MS-ISAC Ransonware Guide

Source: https://www.dataprivacyandsecurityinsider.com/2021/08/cisa-issues-guidance-on-ransomware-attacks/

Categories
DDoS Threats

DDoS Attack launched by Mirai Botnet blocked by Cloudflare

DDoS-Protection-Cloudflare-Hudson-City-School-District-Selects-FirstLight-for-DDoS-Mitigation-Solution-Douglas-Bernardini
DDoS-Protection-Cloudflare-Hudson-City-School-District-Selects-FirstLight-for-DDoS-Mitigation-Solution-Douglas-Bernardini

    The number of DDoS increases. DDoS Attack Mirai Botnet confirms it.

    Cloudflare, a web giant, has detected and suppressed a DDoS Attack Mirai Botnet. This attack peaked at just below 2Tbps, making it the largest ever.

    Hackers launched a mega-attack against the company that targeted its online servers. They attacked with more than 15,000 bots running a variant of the original Mirai code. The targets was IoT devices and unpatched GitLab instances, according to SecureMyCloud.

    The company claims that the assault lasted no more than a minute. It was most likely a multi-vector attack utilizing both DNS amplification assaults as well as UDP floods.

    “Cloudflare’s mission is to help build a better Internet — one that is secure, faster, and more reliable for everyone. The DDoS team’s vision is derived from this mission: our goal is to make the impact of DDoS attacks a thing of the past”. Cloudflare in a blog post detailing the attack.

    According to Cloudflare, its systems automatically produced real-time signature after detecting the attack traffic. That was used by the whole network to identify assault patterns.

    Cloudflare about the current context of DDoS

    The firm’s website claims that employing fingerprinted rules to mitigate DDoS assaults without affecting real traffic, or introducing latency or performance issues, is possible.

    Cloudflare’s DDoS protection has gained a lot of admirers in the business. VoIP providers that have been subjected to ransomware attacks are grateful for Cloudflare’s built-in DDoS protection feature, which has saved them from an onslaught of DDoS assaults.

    “DDoS attacks are more and more frequent and can literally stop companies from operating.” says Douglas Bernardini, Cybersecurity Specialist and Cloud Computing Expert about DDoS Attack Mirai Botnet.

    In a recent DDoS trend assessment in Q3 2021, Gartner discovered that:

    • There was a 44 percent increase in network-layer DDoS attacks.
    • There was huge 1 terabit-per-second and larger than 10 gigabits per second (GTPS) network-layer DDoS attacks as well.

    While the fourth quarter is not yet over, Cloudflare has detected several terabit-force assaults aimed at its customers, according to the firm. “While the fourth quarter isn’t over yet, we’ve seen several terabit-force assaults targeted at Cloudflare customers,” it adds.

    See also: DDoS Protection

    Source: “https://lvhspiratepress.org/cloudflare-blocks-ddos-attack-launched-by-mirai-botnet”