How to Know When a DDoS Attack is on Its Way
Gusest post by Eran Atias The element of surprise is a core principle of war in many nations around the world. According to the UK Defense Doctrine, it is the “consequence of confusion induced by deliberately or incidentally introducing the unexpected.” This limits an enemy’s reaction time to make decisions, ... Read More
Salt Customer Attack Case Study: Blocking a Low-rate-per-bot HTTP DDoS Attack
What is an HTTP DDoS Attack?An HTTP DDoS attack is a malicious attempt to overwhelm the resources of a web service, or an in-line network intermediary device, to prevent it from serving legitimate requests from legitimate users. Bad actors launch these attacks leveraging a large group of devices, called a ... Read More
Successful SQLi WAF Bypass Shows (Again) how WAFs Cannot Stop API-based Attacks
IntroductionOn December 8th, 2022, Team82 in Claroty, a cyber security company, published a new method to bypass web application firewalls and launch SQL injection attacks. SQLi is generally considered an “old-fashioned” style of attack, but one that WAFs could supposedly easily detect and block with the right rules and signatures ... Read More
