Resources

CQ botDefense is a Cequence ASP security module that allows your organization to fully understand and mitigate automated attacks targeting your public facing web, mobile and API-based applications deployed on GCP.

The CQAI Engine is at the core of the Cequence ASP Platform, providing the intelligence to automatically discover all applications, detect threats, and provide policy-based defense.

Ten Ways Cequence Security Is Raising the Bar on Application Security

Malicious bots account for more than 30% of all Internet traffic, but if your organization is a target for bot attacks, that percentage could be much higher. The CQ botDefense module works with the Cequence ASP platform to give organizations the fine-grained visibility and control needed to stop bots and automated attacks without impacting valid users and beneficial forms of automation.

Bots Abuse Legitimate API Access to Steal Data and Undermine Critical Business Applications. The age of the API has been touted by technologists, investors, and developers. Driven by IoT, mobile, automation, and a desire for openness, APIs have become the preferred method to access business logic and information for many organizations. Most business partners and corporate customers (and even some individuals) don’t want to use another app – standard business relationships often now include API access for automatic exchanges of information.

The Cequence Application Security Platform (ASP) represents a revolutionary approach to application security that protects all of your externally-facing applications, whether web, mobile, or API, from bots and targeted threats. Unlike other solutions, Cequence ASP requires no modification to your web or mobile applications and even discovers applications and APIs that you may not have known existed.

Fake account creation has been a common problem at large scale social media sites for the last several years. Increasingly,
fake accounts are a key tool in perpetrating sophisticated, multi-entity fraud and thus are becoming widespread beyond
household name websites and applications. Several factors drive this dynamic:

Account Takeover Attacks are Easy, Automated, Widespread, and Successful. Bad actors using account takeover (ATO) attacks have an easy time of it – attack toolkits are readily available, attack infrastructure can be rented or owned, and new large sets of legitimate user credentials from previous attacks are made available regularly. Sticking these three components together has proven to be a successful recipe for gaining illegitimate access to user accounts at various online/web properties.

The Cequence Professional Services program (CQ ProServ) offers expert-level engineering resources that can help organizations fast-track implementation and optimization of their Cequence Application Security Platform (ASP). While Cequence ASP is easy to implement, customers can engage with our professional services experts to quickly plan, deploy, optimize, and transfer their knowledge.

Companies leverage user accounts for a variety of purposes. In addition to providing access to web-based services, user accounts—and the associated information—are used for tracking user behavior, to deliver personalized offers, and to create additional revenue (for example, by selling email lists).

Understanding API/business logic abuse and defense requirements. Businesses today operate in a hyper-connected, Internet-driven economy. And it’s driving the need for an extended, API-linked application architecture. Internal Service Oriented Architecture (SOA), corporate BYOD initiatives, and the Internet of Things (IoT) are just a few of the use cases for APIs.

CyberEdge Group provides the understanding of what Account Takeover Attacks are and their Defense Requirements.

Cequence Security is a venture-backed cybersecurity software company founded in 2014 and based in Sunnyvale, CA. Named a Gartner Cool Vendor in 2018, the company has developed the Cequence Application Security Platform (ASP), an open, distributed, and scalable software platform designed to protect customers’ web, mobile, and API applications from the growing number of malicious bot attacks.