Security vendor Radware announced today that Rotter, an Israeli media business, has expanded its portfolio of Radware services.
Rotter extended its use of Radware’s cloud application protection to include cloud web DDoS protection, a new solution designed to combat high-volume, multi-vector Web DDoS Tsunami attacks. It combats aggressive layer 7 DDoS attacks without disrupting legitimate traffic.
Rotter increased its Radware protection and replaced its existing security solution after a series of Tsunami attacks were waged against Israeli websites during a recent hacktivist campaign.
“Radware’s unique behavioural-based approach to Web DDoS protection and use of automated real-time signatures changed the game for us when we were hit with tsunami-size Web DDoS attacks,” said Noam Rotter, cyber security consultant from Rotter.
“During a prolonged wave of these attacks, Radware was able to automatically detect and instantly generate new signatures for unknown malicious requests without negatively impacting our legitimate traffic.”
Web DDoS Tsunami attacks are an emerging generation of aggressive, layer 7 (L7), HTTPS Flood attacks. To elude detection, the attacks masquerade as legitimate traffic and use multiple evasion techniques, such as randomising HTTP headers, cookies, spoofing IPs, and more.
“Rotter is committed to security best practices and understands why thinking differently about mitigation solutions is so important in this threat landscape,” said Iftach Parizada, Radware’s regional manager in Israel.
“The convergence of emboldened state actors, more sophisticated attack tools and a shift to the application layer has created a new breed of DDoS attack that poses a cyber threat to organisations regardless of industry or geography.”
Radware’s Cloud Web DDoS Protection uniquely combines automated behavioral-based L7 algorithms with the high-scale infrastructure needed to accurately defend organisations against high request-per-second Web DDoS Tsunami attacks.
Radware’s cloud application protection services provide comprehensive, agnostic application protection through the company’s industry-leading web application firewall (WAF), bot detection and management, API protection, client-side protection, and application-layer DDoS protection. Combining end-to-end automation, behavioral-based detection, and 24/7 managed services, the solution is designed to offer organisations the highest level of application protection with the lowest level of false positives.
