ShiftLeft released a new version of NextGen Static Analysis (NG SAST), including new workflows, purpose-built for developers that significantly improve security, while enhancing productivity.
US Signal announced the launch of its managed Website and Application Security Solution.
The new cloud-based offering builds on US Signal’s highly successful partnership with Cloudflare to deliver a robust, customizable service that protects organizations against online threats that include DDoS, ransomware, malicious bots and application-layer attacks.
As a cloud-based solution, US Signal’s new Website and Application Security Solution filters unwanted or malicious traffic before it ever hits a customer network. This leads to cleaner web traffic and more effective use of resources, such as internet bandwidth and server capacity, which are needed to host applications and websites. Granular filtering controls, such as rate limiting, help to filter out unwanted bot and malicious traffic while ensuring real users can always get to where they need to go.
It also features DDoS, TLS, and firewall protections that can be extended to TCP and UDP ports, providing protections against port-specific attacks, such as those used to infiltrate networks and inject ransomware.
The solution also includes a component that works with existing identity and access management (IAM) solutions. It allows customers to leverage their existing single sign-on (SSO) providers to apply application-level user permissions to provide security, authentication and monitoring of domains and applications. End users get simple, quick and secure access to internal applications without needing a VPN.
It also includes a web application firewall (WAF) — one of the most powerful tools available to combat application-layer attacks. It deploys the OWASP top 10 along with over 85 special rules to prevent hackers from using common exploits. US Signal’s WAF also offers the option to write custom rules to protect from vulnerabilities that are specific to individual customers.
Aside from DDoS protection, WAF and IAM integration, US Signal’s new service offers optional tools, including managed DNS, SSL/TLS, content delivery network (CDN), DNSSEC, an IP firewall, website performance optimization, edge caching, serverless application deployments and cloud load balancing. This makes it one of the most robust, multifaceted approaches to security and cybercrime protection on the market today.
US Signal President Stephen Oyer said: “This new combination of managed security services will bring enhanced cybersecurity protection and increased peace of mind to our clients. Our 2019 State of Web and DDoS Attacks survey revealed that 81 percent of organizations experienced a cyberattack on their web applications in the past two years. This demonstrates that businesses need robust, integrated and adaptable solutions to combat evolving cybersecurity threats.”