RSA Conference, arguably the biggest security conference in the world, recently finished in San Francisco. As I reflect back on my conversations at the conference with security practitioners from a
Cequence Security Makes Its RSA Debut
After a busy week sharing our news of $17M in Series B funding with the media, we followed that with a week of non-stop craziness at RSA 2019. And it was a good one. We locked down prime real
Application Discovery – Why It’s Critical for Bot Defense
We recently conducted research with 200+ large enterprises across the US and learned that, on average, these organizations had deployed 482 different web, mobile, or API application assets –
Bot Attacks – One Week in the Life of a Customer
Each week, we provide our customers with a detailed report on malicious bot attacks targeting their organizations with the intent of gaining unauthorized access to the critical applications that
New Report: Big Breaches Breed Bad Bots
By now we’ve all seen the news on the recent Marriott breach. Yup, it was a big one. But there have been many other significant breaches in 2018, including Facebook, Quora, Panera, and the list goes
The Sequence Within Cequence
In case you missed the news, Cequence Security was born on November 13, 2018. That’s when we emerged from “stealth mode” and launched the new Cequence ASP application security platform, integrated
Working at Cequence Security
Prospective employees frequently inquire about our company culture at Cequence Security, so I thought I would share my thoughts on the topic. Before I do that, it makes sense to define mission and
Balancing Bot Detection With Customer Experience
This past weekend, I needed to book my travel for an upcoming business trip. When I went to purchase my plane ticket, I found myself unable to login to my account. Instead, I encountered an ‘Access
JavaScript Injection. Good for Fraud Detection. Bad for Security
The wide availability of attack components on the dark and public web makes it easy even for novice cybercriminals to conduct a successful attack on a website, API, or mobile application. With
Using Machine Learning to Catch Attackers
Hackers use smart tools these days. There is a growing breed of attacks that routinely bypass the web application firewall (WAF), the first line of defense at most internet sites. These
Financial Aggregators a Vehicle for Credential Exploitation?
One of the first issues we tackled for customers was detecting and mitigating automated (i.e. "bot) attacks against web applications. As an ex-CISO who struggled with these attacks, I wanted us to
Reaching a Tipping Point in Identity Verification?
As security professionals, we have a bit of a reputation for melodrama. A breach happens, we make a lot of fuss for a few weeks, and then we quickly move on to the next topic dominating our news