Response To A Hacktivism Political Protest | 1.0 | June 2019
Response To A Hacktivism Political Protest
After a public threat from a well-known hacktivist group, a prominent political party’s websites were subjected to sustained cyber attacks. The sites were taken down repeatedly with additional concerns of potential database exfiltration.
A phone call to RedShield resulted in an emergency deployment.
All client website traffic redirected to RedShield global nodes for immediate DDoS defense and baseline web exploit threat prevention. RedShield immediately reported presence of blocked exploit traffic. Vulnerability scanning further confirmed some blocked exploit traffic was correlated with detected, known flaws.
RedShield discovered a partial database exfiltration was likely to have occurred prior to shielding and recommended execution of an incident response plan. RedShield instigated an urgent penetration test to detect a broader set of exploitable vulnerabilities. Based on the resulting report, RedShield tuned stateless defenses and introduced new stateful application logic manipulation shields; also known as advanced shields.
The penetration test was rerun with a clean bill of health. RedShield experts continue to monitor the tools and systems 24/7, audit the application defenses weekly, respond to any customer queries and application updates, provide monthly commented security analyst reports
Cybercrime is real, we experienced it first hand and to be frank, weren’t sure what to do. Fortunately for us, RedShield stepped in and sorted it. Having them as my cyber security team takes a lot of my concerns away.
Within 2 hours of contacting RedShield, baseline defenses were in place. Within a further week advanced defenses were deployed.
To date, a 0% false positive rate has been reported. The website displays 30% faster through RedShield though ongoing analysis shows attacks are continual.
RedShield patented attack correlation algorithms show that at peak attack rates, approximately 1,400 known vulnerabilities breaches were prevented every hour.
RedShield is the world’s first and only web application shielding-with-a-service cybersecurity company. The RedShield shielding-with-a-service offering combines superior web application shielding software with industry-leading cybersecurity services. Powerful vulnerability intelligence, exploitation research and a prolific database of known exploits ensure the right shields are deployed quickly minimizing application downtime and costly remediation delays.