Haven't you had your fill of credential stuffing?

Posted by Bret Settle on Sep 16, 2020 8:15:00 AM

Credential stuffing attacks are some of the most common bot-based threats facing applications today. Virtually any site or application with a login page is a potential target for credential stuffing. In this blog, we take a look at what credential stuffing is, how it can impact your apps and users, and how you can use the ThreatX WAAP++ to keep yourself protected.  

Read More

Topics: Threat Intelligence, Company | Product Updates

The Many Faces of Bad Bots

Posted by Gene Fay on Sep 1, 2020 7:45:00 AM

Bad bots and malicious automation are one of the few technology challenges that can materially impact on every business team inside an organization. With up to 50% of Internet traffic generated by bots, organizations are awash in a sea of automated visitors. Some bots are benign, others aren’t. Those that aren't can interfere with customer acquisition. They steal data and intellectual property. They erode application performance. They directly defraud businesses.

Read More

Topics: Web, Application & Hybrid Cloud Security, Threat Intelligence

Five Reasons Agentless AppSec is the Right Choice

Posted by Tom Hickman on Aug 26, 2020 8:45:00 AM


I’m a big fan of the ThreatX agentless architecture. It simplifies many of aspects of deployment and side-steps a lot of the problems with agent-based architecture.

Read More

Topics: Web, Application & Hybrid Cloud Security, Threat Intelligence, Company | Product Updates

Why it's Time to adopt a risk-based approach to appsec

Posted by Gene Fay on Aug 3, 2020 11:03:59 AM

Most anyone who works in application security can tell you that the traditional WAF model has not aged gracefully over the past few years. Facing new challenges from bots, API-based threats, DDoS attacks, and sophisticated evasive attackers, the old guard of WAFs have bolted on module after module in an attempt to keep pace. This has, unsurprisingly, resulted in more complexity, the need for more AppSec talent, and the inability to protect an over-growing application attack surface. 

Read More

Topics: Company | Product Updates

This Way to WAAP++

Posted by Tom Hickman on Jul 23, 2020 10:53:55 AM

I’m excited, y’all! We’ve just published a cool piece of content that everyone with an interest in AppSec should take a look at. 

Read More

3 Steps to Improve Your AppSec Using ThreatX and Splunk Phantom

Posted by Tom Hickman on Jul 15, 2020 7:13:18 PM

Modern AppSec and security teams face enormous challenges of scale when it comes to their daily workload. Organizations need to secure more applications and APIs than ever before, and those apps and APIs are under constant attack from increasingly sophisticated methods. Security staff has to parse and analyze an avalanche of alerts and data to stay ahead of bad actors and continuously improve the security posture of their organization. Collectively, this is a perfect storm that can put even the best security teams under intense strain.

Read More

Topics: Company | Product Updates

Making the Change to Risk-Based AppSec

Posted by Bret Settle on Jul 9, 2020 1:26:29 PM

By focusing intently on risk-based security, ThreatX delivers a truly modernized approach to AppSec that enables our clients to manage their threat posture in a fundamentally different way. It lets us consistently recognize and stop more legitimate attacks for our customers, vastly reduce false positives, and significantly reduce the fatigue and burden on staff and analysts. Let's take a closer look at what it's all about and why it matters.

Read More

Topics: Company | Product Updates

ThreatX Integrates with Cortex XSOAR by Palo Alto Networks

Posted by Gene Fay on Jul 7, 2020 3:53:56 PM

Today I am proud to announce the integration of the ThreatX WAAP with the Palo Alto Networks XSOAR platform. You can read the official announcement for more details here. This integration is exciting for me personally because it tackles one of the most important issues I see facing enterprise security teams regardless of size or industry. Virtually every organization needs to get more leverage out of their security tools, whether that means arming analysts with critical data or turning that data into automated responses. This integration lets organizations harness the power of the ThreatX’s web application + api protection + bog protection + DDoS attack mitigation (WAAP++) platform for such things as risk scores, entity details, and other insights and leverage that data across the enterprise so that teams can do more, faster. 

Read More

Topics: Web, Application & Hybrid Cloud Security, Company | News

ThreatX Labs - Blog

Arm yourself with information and insights on the latest cybersecurity trends to defend against today's most advanced cyber criminals with articles from the leader in SaaS-based web application firewall solutions.

Subscribe Here!

Recent Posts

Follow Me