Predictions 2021: Getting an Edge Against the Bots
In more than one way, the year 2020 was different. The COVID-19 pandemic made us change our plans for the year, and it will have a lasting impact on 2021 and beyond. Let’s look to the future and see if we can predict what 2021 will hold for web application ... Read More
Bot-as-a-Service: The Consumerization of Botting
We are fast approaching the end of 2020. A year that was different in many ways due to the COVID-19 pandemic, and the impacts on retail were no exception. There has been widespread coverage of retail strategies to survive as physical stores remain closed. Black Friday was not a day ... Read More
An Alternative Approach to WAAP Architecture
Over the last few months, I’ve had many conversations with customers about securing their APIs and some common challenges they face. Many of them already have revenue-generating applications consumed by their customers and now they are starting an API program. Old monolith applications are being broken into micro-services, orchestrated in ... Read More
Looking for a Silver Tail Replacement?
When RSA Security announced an end-of-life (EOL) for Silver Tail, a popular fraud analytics and prevention product, they left a lot of customers scrambling to find an alternative. If you find yourself in that very situation, read on. The Cequence Application Security Platform (ASP) was designed to solve the same use cases as ... Read More
Moving Fast Without API Guardrails?
In 1999, Bruce Schneir wrote, “complexity is the worst enemy of security.” Today, I’d argue that speed may be overtaking that top spot or coming darned close. There were two stories published recently about security and privacy issues arising out of apps deployed too quickly. The first disclosure involved North ... Read More
Tales from the Front Lines: Why Simple Attacks Like Content Scraping are the Hardest to Block
Of all of the automated business logic abuse attacks, the simple act of copying and pasting content from one web page to another is the most difficult for any technology to stop. Content scraping was one of the problems we designed Cequence Security Bot Defense to address, and we purposely ... Read More
Cequence Achieves PCI DSS 3.2 and SOC 2 Compliance
We are happy to announce that the SaaS deployment of our Application Security Platform has attained both PCI DSS 3.2 Level 2 for Service Providers and SOC 2 Type I compliance. Achieving both of these attestations is an important milestone for the whole Cequence Security team. Compliance matters to us ... Read More
