Call usTry Fastly free

Security blog

Security blogSecurity advisoriesReport a security issueSecurity documentation
September 13

4 tips for integrating security into your DevOps practices

Your organization may have operational and cultural roadblocks to overcome when it comes to integrating security and DevOps. These tips can help you ensure a smooth transition to more secure…

September 7

Legacy vs next-gen WAF: the differences matter

Many companies are still relying on legacy rules-based web application firewalls that can make scaling difficult and, in some cases, cause more problems than they solve with false positives…

September 3

The 6 essential features of modern web app and API security tools

Modern applications need modern security tools that include flexible deployment, DevOps support, and strong API protection. Here are the six most important characteristics of modern web app…

September 3

How we're helping protect our customers against the Atlassian Confluence OGNL injection vulnerability

Our Security Research Team has built and deployed a rule to help protect customers of our next-gen WAF against the recently announced Confluence Server OGNL injection vulnerability, CVE-202…

August 10

Legacy security tools: peace of mind at what price?

Companies using an average of 11 web application and API security tools should be able to rest easy, but the vast majority of them report successful attacks are still getting through. These…

August 2

One year later: an update on the Fastly/Signal Sciences story

When we acquired Signal Sciences, we put a stake in the ground as a company that cares about the complete delivery path and making it not just resilient and performant, but inherently secure…

July 27

Introducing right-sized web app and API protection packages for any organization

Today, we launched Fastly Secure packages, a unified web app and API security solution that provides “right-sized” protection for any organization at a spend level that works for a variety…

July 26

All together now: 4 steps toward centralized security tooling

Here are four repeatable steps that will help you pay down your security technical debt, make your apps and APIs more secure, and move you toward consolidated security tooling.

July 22

Why don’t your security tools work anymore?

As the internet landscape gets more complex, more API driven, and more distributed, many security and IT professionals are left wondering — why aren’t the security tools that were good…

July 12

New research shows security tooling is at a tipping point

We released a new report today in partnership with ESG Research that reveals some fascinating insights into the state of web application security tooling.

June 30

How to use request enrichment with our next-gen WAF to help identify compromised user information

Requests passing through Fastly can be transformed in many ways. In this example, we’ll show you how to use enriched requests and our next-gen WAF to help you make more informed security…

June 29

Introducing Response Security Service: expand your team for faster response times, better readiness, and increased expertise

Our new Response Security Service provides direct, 24/7 access to our Customer Security Operations Center to help you prepare for and respond when you suspect an attack.

Older posts