Revenir au blog

Follow and Subscribe

Sécurité

Page 4

  • Log4Shell attacks (CVE-2021-44228) insights | Fastly

    Équipe de recherche en sécurité Fastly, Xavier Stevens, 1 de plus

    We’re sharing our latest data and new insights into the Log4j/Log4Shell vulnerability (CVE-2021-44228 + CVE-2021-45046) in this post in order to help the engineering community cope with the situation. We also share our guidance around testing your environment against many of the new obfuscation methods that have been seen.

    Informations sur le secteur
    Sécurité

  • Log4Shell exploit found in Log4j | Fastly

    Équipe de recherche en sécurité Fastly, Xavier Stevens, 1 de plus

    CVE-2021-44228 is a Remote Code Execution vulnerability in the Apache Log4j library being actively exploited. We provide our observations into the exploit and a summary of its impact.

    Sécurité
    Engineering

  • 30 Years of Web: Building for Tomorrow

    Lee Chen

    The web’s infrastructure — and the applications we build on it — must constantly evolve to meet the ever-transforming expectations of modern and future end users. We’ve gathered five lessons today’s builders can use to drive the next three decades of the web.

    Informations sur le secteur
    2 de plus

  • Grinch bots penalized w/ enriched security data & our edge cloud platform | Fastly

    Brooks Cunningham

    In this post, we’ll show how you can use information from an origin response to add an abuse IP address to our penalty box. We've been touting the promise of security at the edge, and this is just one example of what it can do.

    Sécurité
    2 de plus

  • 30 Years of Web: Securing Tomorrow

    Mike Johnson

    To create more secure and resilient web experiences, we must design, build, and execute applications with security top of mind, and consider how the lessons of the past 30 years inform how we think about the future of security.

    Informations sur le secteur
    Sécurité

  • 30 Years of Web: Future-Ready Apps

    Jana Iyengar

    Many websites today are really applications, and we should be building them as such. To do that, we need application architectures and networks that are capable of supporting fast, secure, and scalable user experiences. We must embrace a more dynamic mindset in how we approach web development and consider the tools we need to get there.

    Informations sur le secteur
    3 de plus

  • 30 Years of Web: Future Demands

    Davin Camara

    As we look back to celebrate the 30th anniversary of the website, it’s also worth thinking about the next 30 years. There are a couple of areas where we — as engineers, developers, and builders in general — can champion innovation, mainly around architecture and security.

    Informations sur le secteur
    5 de plus

  • Subresource monitoring with Compute

    Équipe de recherche en sécurité Fastly

    Compute, our serverless compute environment, can be used to solve headaches dealing with attackers looking to modify and manipulate resources. In this post, we tell you how.

    Sécurité
    Compute

  • Preventing SSRF: Apache CVE-2021-40438 | Fastly

    Équipe de recherche en sécurité Fastly

    Our Security Research Team provides guidance on how to address CVE-2021-40438, a vulnerability in Apache HTTP Server version 2.4.48 and earlier, by patching impacted version(s) and enabling a new templated rule to prevent exploitation.

    Engineering
    Sécurité

  • Protect against Apache vulnerability | Fastly

    Équipe de recherche en sécurité Fastly

    The recent Apache HTTP Server vulnerability (CVE-2021-41773) is reportedly being exploited in the wild. Fastly already detects this vulnerability, but our next-gen WAF customers can also create a rule to block exploitation.

    Sécurité

  • DevOps Practices Primed to Combat Threats | Fastly

    Brendon Macaraeg

    Organizations implementing DevOps practices often sacrifice security for speed, exposing them to potential threats. In reality though, many DevOps practices are already primed for security initiatives.

    Sécurité
    DevOps

  • The Importance of Securing Applications & Security in DevOps

    Julie Rockett

    Forrester’s 2021 Annual State of Application Security Report stresses the need for updated application security tools that can be easily integrated into development plans and architecture.

    Sécurité
    DevOps

  • Integrating Security in DevOps

    Brendon Macaraeg

    Your organization may have operational and cultural roadblocks to overcome when it comes to integrating security and DevOps. These tips can help you ensure a smooth transition to more secure DevOps.

    DevOps
    Sécurité

  • Legacy vs next-gen WAF: the differences matter

    Brendon Macaraeg

    Compare legacy versus next-gen WAFs to see what sets them apart. Determine if your company can benefit from a next-gen approach.

    Sécurité

  • Atlassian Confluence OGNL Injection Vulnerability Protection | Fastly

    Équipe de recherche en sécurité Fastly, Xavier Stevens, 1 de plus

    Our Security Research Team has built and deployed a rule to help protect customers of our next-gen WAF against the recently announced Confluence Server OGNL injection vulnerability, CVE-2021-26084.

    Sécurité

  • 6 essential features of modern web app & API security tools

    Julie Rockett

    Modern applications need modern security tools that include flexible deployment, DevOps support, and strong API protection. Here are the six most important characteristics of modern web app and API security tools.

    Sécurité

  • Legacy security tools: peace of mind at what price?

    Julie Rockett

    Companies using an average of 11 web application and API security tools should be able to rest easy, but the vast majority of them report successful attacks are still getting through. These legacy tools aren’t cutting it.

    Informations sur le secteur
    Sécurité

  • Fastly/Signal Sciences: one year update | Fastly

    Dana Wolf

    When we acquired Signal Sciences, we put a stake in the ground as a company that cares about the complete delivery path and making it not just resilient and performant, but inherently secure as well. Here’s our update on that mission.

    Actualités de la société
    3 de plus

  • Introducing right-sized web app and API protection packages

    Brendon Macaraeg

    Today, we launched Fastly Secure packages, a unified web app and API security solution that provides “right-sized” protection for any organization at a spend level that works for a variety of budgets.

    Produit
    Sécurité

  • 4 Steps to Centralized Security Tooling

    Sean Leach

    Here are four repeatable steps that will help you pay down your security technical debt, make your apps and APIs more secure, and move you toward consolidated security tooling.

    Informations sur le secteur
    Sécurité
Fastly
© Fastly 2025