Why it's Time to adopt a risk-based approach to appsec

Posted by Gene Fay on Aug 3, 2020 11:03:59 AM

Most anyone who works in application security can tell you that the traditional WAF model has not aged gracefully over the past few years. Facing new challenges from bots, API-based threats, DDoS attacks, and sophisticated evasive attackers, the old guard of WAFs have bolted on module after module in an attempt to keep pace. This has, unsurprisingly, resulted in more complexity, the need for more AppSec talent, and the inability to protect an over-growing application attack surface. 

Read More

Topics: Company | Product Updates

3 Steps to Improve Your AppSec Using ThreatX and Splunk Phantom

Posted by Tom Hickman on Jul 15, 2020 7:13:18 PM

Modern AppSec and security teams face enormous challenges of scale when it comes to their daily workload. Organizations need to secure more applications and APIs than ever before, and those apps and APIs are under constant attack from increasingly sophisticated methods. Security staff has to parse and analyze an avalanche of alerts and data to stay ahead of bad actors and continuously improve the security posture of their organization. Collectively, this is a perfect storm that can put even the best security teams under intense strain.

Read More

Topics: Company | Product Updates

Making the Change to Risk-Based AppSec

Posted by Bret Settle on Jul 9, 2020 1:26:29 PM

By focusing intently on risk-based security, ThreatX delivers a truly modernized approach to AppSec that enables our clients to manage their threat posture in a fundamentally different way. It lets us consistently recognize and stop more legitimate attacks for our customers, vastly reduce false positives, and significantly reduce the fatigue and burden on staff and analysts. Let's take a closer look at what it's all about and why it matters.

Read More

Topics: Company | Product Updates

You Wouldn’t Buy a Home Without an Inspection. Why Buy a Company Without One?

Posted by Tom Hickman on Jun 29, 2020 6:30:00 AM

Mergers and acquisitions are some of the most important, exciting, and often messy aspects of the business world. Having been through the process several times, both as an acquirer and an acquiree, I can personally attest that technology and security are areas where things can get particularly messy. Buyers and sellers will often have very different approaches to security–different levels of operational maturity, different tools, and different threat profiles. This means that many of the details about security posture and risk only become known after an acquisition is complete. Yikes!

While no technology can tame all the challenges of an acquisition, ThreatX’s web application and API protection +Bot + DDoS (WAAP++) platform can give organizations an easy, yet powerful way to wrestle control over AppSec. Because it can be up and running in just a few hours, ThreatX can help uncover problems during the due diligence process; letting security teams quickly triage and deliver core protections to newly acquired sites and apps after the merger is complete. Let’s take a closer look.

Read More

Topics: Company | Product Updates

Beware the WAF in WAAP Clothing

Posted by Gene Fay on Jun 12, 2020 10:36:08 AM

It’s been a little over two months since I joined ThreatX as CEO, and it’s already shaping up to be a fantastic ride. As a leader, these are always some of the most exciting and illuminating days as we start to get our hands dirty and chart the path forward. As always, the most important insights have come from getting to hear directly from a lot of AppSec leaders and practitioners about the real-world challenges they face on a daily basis 

Read More

Topics: Company | Product Updates

Meet PCI Requirements Consistently and Efficiently

Posted by Bret Settle on May 19, 2020 2:38:53 PM

Most any organization that stores, processes, or transmits payment card data is likely well aware of the Payment Card Industry Data Security Standard (PCI DSS). For these organizations, maintaining and documenting PCI compliance is an ongoing and often laborious process. ThreatX brings a new approach to application security that not only helps address PCI requirements but does it far more consistently across many types of applications and with far less effort than traditional WAFs. 

Read More

Topics: Company | Product Updates

Joining the Front Lines of AppSec

Posted by Gene Fay on Apr 28, 2020 7:00:00 AM

Hello. My name is Gene Fay and I am incredibly excited to join the ThreatX team as CEO. I’d like to take a few moments to introduce myself and talk briefly about why I joined ThreatX and my vision for its future. 

Read More

Topics: Company | Product Updates

The Proliferation of Web Application Attacks - "Ain't Nobody Got Time for That!"

Posted by Mackenzie Jacobson on Jul 2, 2018 12:40:22 PM
Today, security teams are challenged to protect the large attack surface created by complex application environments. Mix in APIs and microservices and it has become nearly impossible for security teams to adequately manage the multiple security products required or conduct manual threat analysis. So what's the solution? 
Read More

Topics: Company | Product Updates

ThreatX Labs - Blog

Arm yourself with information and insights on the latest cybersecurity trends to defend against today's most advanced cyber criminals with articles from the leader in SaaS-based web application firewall solutions.

Subscribe Here!

Recent Posts

Follow Me