-
Webinar
Bulletproof Proxies: How Large Scale Attacks Hide in Plain Sight
View Webinar
More InfoJoin Cequence Security for this exciting webinar highlighting how automated attacks take full advantage of Bulletproof Proxies, a rapidly growing class of infrastructure providers that have taken the concepts of anonymity and availability found in Bulletproof Hosting, and use them to launch and deliver automated bot attacks.
What you’ll learn:
- The rise of Bulletproof Proxies – how they came to exist
- The balancing act between legitimate and malicious use
- Techniques used to mask their identity and location
- Details on large scale attacks targeting financial services and retail sector
Presenter:
Will Glazier -
Webinar
Preventing Fraud Caused by Account Takeovers
View Webinar
More InfoCredit unions and financial services organizations are plagued by automated attacks such as account takeovers and fake account creation. These attacks have many objectives, often targeting APIs instead of web forms or mobile apps. These attacks often lead to secondary objectives resulting in fraud or outright theft. Regardless of the objective, they all have several commonalities: they’re costly, disruptive, and because they appear to be legitimate, they’re extremely difficult to detect using traditional security tools.
In this on-demand webinar, we’ll look at how these attacks work, how the attackers can hide in plain sight, and innovative strategies for catching malicious bots.
Presenter:
Matt Keil
Director of Product Marketing -
PDF
Integrating CQ botDefense SaaS with Fastly
View PDF
More InfoUse this guide to integrate CQ botDefense SaaS with Fastly. CQ botDefense SaaS uses an agentless, ML-based approach to eliminate avenues of fraud caused by account takeovers and API business logic abuse.
When integrated with Fastly, traffic is directed to CQ botDefense SaaS where it is analyzed by the CQ AI ML-based automation indicators to determine malicious or benign intent. CQ AI findings are then used to enforce policy or exported via a REST-based API to an existing component of your security infrastructure.
-
PDF
Integrating CQ botDefense SaaS with Akamai
View PDF
More InfoUse this guide to integrate CQ botDefense SaaS with Akamai. CQ botDefense SaaS uses an agentless, ML-based approach to eliminate avenues of fraud caused by account takeovers and API business logic abuse. Using a SaaS deployment model reduces the operation efforts associated with deploying CQ botDefense to protect your public-facing applications from automated attacks.
When integrated with Akamai, traffic is directed to CQ botDefense SaaS where it is analyzed by the CQ AI ML-based automation indicators to determine malicious or benign intent. CQ AI findings are then used to enforce policy or exported via a REST-based API to an existing component of your security infrastructure.
-
PDF
Integrating CQ botDefense SaaS with Amazon CloudFront
View PDF
More InfoUse this guide to learn how to integrate CQ botDefense with Amazon CloudFront. CQ botDefense SaaS uses an ML-based approach to eliminate avenues of fraud caused by automated attacks targeted at your web, mobile and API-based applications deployed on AWS. Using a SaaS deployment model reduces the operation efforts associated with deploying CQ botDefense to prevent account takeovers and API-based business logic abuse.
-
PDF
Customer Case Study: Preventing Romance Scams at Zoosk
-
PDF
Protecting APIs from Automated Attacks
View PDF
More InfoDriven by mobile device ubiquity and the move towards modular applications, organizations are using APIs to enable application business logic, facilitate integration with other system elements, and reduce development time. Unfortunately, APIs are a double-edged sword, introducing an attack vector that is often times left unprotected. According to Gartner, by 2021, 90% of web-enabled applications will have more surface area for attack in the form of exposed APIs rather than the UI, up from 40% in 20191. There are multiple drivers behind the use of APIs as an attack vector.
-
Webinar
How APIs Simplify Automated Attacks: The Prying Eye Vulnerability
View Webinar
More InfoThe Prying-Eye enumeration vulnerability recently discovered in leading web conferencing applications by the CQ Prime research team highlights how APIs used in your public-facing applications provide bad actors with the same ease of use, efficiency and flexibility benefits that APIs bring to the development community. Rather than scripting a web form fill, to launch an attack, bad actors will analyze the web or mobile application to understand the business logic while discovering the APIs in use. Armed with that information, bad actors can then create a bot that will execute an automated attack directly against the APIs. In this session, Shreyans Mehta, CTO, and Co-founder of Cequence Security will share recent details of the Prying-Eye attack and the prevalence of using APIs for automated attacks. He will close with security recommendations and how Cequence Security can help.
-
PDF
CQ botDefense SaaS