Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


09:58 PM
Dark Reading
Dark Reading
Products and Releases

Radware Launches All-Inclusive Security Solution

APSolute Attack Prevention provides centralized attack management, real-time monitoring, advanced forensics

MAHWAH, N.J., June 1 /PRNewswire-FirstCall/ --Radware (Nasdaq: RDWR), a leading provider of integrated application delivery solutions for business-smart networking, today announced an industry first - APSolute Attack Prevention - a unique security solution that connects several defenses together, allowing them to work synchronously - and provide network and data center infrastructures with comprehensive protection from hybrid network attacks that pose threats such as: application vulnerability, information theft, authentication defeat, malware spread, network anomalies, application downtime, network downtime, and more.

Recent attacks in 2009 and 2010 such as the July 2009 cyber attacks and Conficker malware show that attackers are using hybrid attack techniques that utilize multiple attack types and vectors. Today, organizations are deploying individual protection tools such as Intrusion Prevention System (IPS), Network Behavioral Analysis (NBA) and Denial of Service (DoS) protection. But, the use of multiple individual tools, increase costs and complexity while leaving networks and services unprotected against hybrid attacks.

"We are witnessing through the widespread attacks on enterprises and governments a distinct change in the threat landscape. Cybercriminals and hackers are using attack vectors that employ not just one but multiple threat types and don't always exploit known vulnerabilities," stated Charles Kolodgy, research vice president for IDC's Security Products. "Our research also indicates that organizations are seeking to integrate a wide variety of security techniques to provide extensible security through a single vendor. Radware is addressing this critical network security requirement by offering a combination of advanced security protections in a single device. And, they're appropriately marrying it with essential monitoring, reporting, and management capabilities followed by expert services to provide customers with a complete package, thus addressing the fuller expanse of security needs necessitated by the changing threat landscape."

Introducing Radware's APSolute Attack Prevention for Networks and Datacenters

Designed for ecommerce, service providers and large enterprises, APSolute Attack Prevention is an all-inclusive attack mitigation solution, integrating different tools/modules, plus management and reporting, which need to work in a synchronized manner to best detect and prevent hybrid threats. The key elements of this solution include: DefensePro; an enhanced version of the award-winning network security solution; APSolute Vision(TM), a new unified management system providing monitoring, forensics and reporting; and is rounded out with a new Emergency Response Team (ERT) service, a security expert offering for immediate, hands-on assistance.

Radware's DefensePro uses multiple defense technologies and is the only solution available on the market today integrating IPS, NBA and DoS protection in a single appliance. DefensePro employs multiple detection and prevention engines including signature detection, protocol anomaly detection, stateful inspection and traffic anomaly detection. The secret sauce of DefensePro is patent protected behavioral based real-time signatures technology that detects and mitigates emerging network attacks in real time such as zero-minute attacks, DoS/DDoS attacks, application misuse attacks, network scanning and malware spread. All without the need for human intervention and without blocking legitimate user traffic:

Additionally, based on Radware's OnDemand Switch platform, DefensePro offers throughput of up to 12Gbps and embeds two unique and dedicated hardware components: to the DME, which also prevents high volume DoS/DDoS flood attacks - without impacting legitimate traffic- and a StringMatch Engine (SME) to accelerate signature based protection - helping to further decrease capital and operational expenditures

APSolute Visionis a unified management toolthatprovides centralized attack management, real-time monitoring, advanced forensics and historical reporting across the different modules, multiple DefensePro devices and locations - enabling advanced correlation for new attacks. Providing clear visibility into the happenings through the integrated modules, APSolute Vision incorporates a powerful Security Event Management Engine that enables security managers to detect, prioritize and respond to emerging network attacks that threaten the business applications infrastructure; It offers per user customization of real-time dashboards and historical reports; an advanced forensics engine providing attack evidence and attack trends analysis; compliance achievement with pre-defined report sets for PCI, HIPAA, SOX etc. and complete event lifecycle management through an advanced incident handling system including ticketing.

Emergency Response Team (ERT)is an emergency security service that provides customers with a swift and professional response that neutralizes attacks and restores network and service operational status. The ERT was specifically designed to provide a 24x7 service for customers facing DoS attacks or malware outbreaks. The ERT will provide instantaneous, expert security support to restore network and service operational status. The ERT is staffed by experts with vast knowledge and experience of network threats, detection and mitigation, and in-depth experience of the DefensePro family of products.

"The communication between these integrated protection modules with the combination of unified management and reporting is essential; the sum of all parts is bigger than the whole - it is what sets us apart from the competition," stated Avi Chesla, Vice-President Security, Radware. "Only the communication between these modules allows for the correlation of events and the ability to reach the correct conclusions concerning the level of risk and what is actually happening. With the development of APSolute Attack Prevention, we have designed a well-synchronized solution which is backed with a service offering to deliver a high-level of protection to IT infrastructures - enabling them to fight against known and emerging attacks more effectively in real-time, whilst keeping costs down and preserving performance as well as business continuity," he continued.

APSolute Attack Prevention is part of Radware's APSolute Immunity strategy, which encompasses the DefensePro product suite and is complemented by Radware's SOC (research) and Security Update Service (SUS).

Take the DefensePro Challenge

Radware is running a global marketing and advertising campaign. As part of the campaign, Radware has developed a fun and dynamic way for people to learn about new APSolute Attack Prevention capabilities, featuring a game - DefensePro Challenge. Contest play is offered as an online flash game. A worldwide contest running the month of June 2010 offers contestants that pass each level of online game play, a chance to be entered into a drawing with prizes including Amazon e-gift cards, high-tech gadgets (e.g., iPad, Sony PSPgo system, Flip MinoHD (TM), etc.) and a grand prize of $5000. Standard game play is also available as a desktop application for Adobe Air with apps for Apple iPhone and iPad coming soon. For game access and contest rules, please visit: www.radware.com/apsoluteattackprevention

About Radware

Radware (Nasdaq: RDWR), a global leader in integrated application delivery solutions, assures the full availability, maximum performance, and complete security of business-critical applications for nearly 10,000 enterprises and carriers worldwide. With APSolute, Radware's comprehensive and award-winning suite of application delivery and network security products, companies in every industry can drive business productivity, improve profitability, and reduce IT operating and infrastructure costs by making their networks "business smart". For more information, please visit www.radware.com and follow us on Twitter.

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2021-01-28
IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data. An attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 186509.
PUBLISHED: 2021-01-28
IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java deserialization function. By sending a malicious serialized Java object, an attacker co...
PUBLISHED: 2021-01-28
A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP request can lead to the execution of arbitrary requests in the context of the victim. An attacker can...
PUBLISHED: 2021-01-28
Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
PUBLISHED: 2021-01-28
Cross-site request forgery (CSRF) vulnerability in Aterm WG2600HP firmware Ver1.0.2 and earlier, and Aterm WG2600HP2 firmware Ver1.0.2 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.