Security blog

Security blogSecurity advisoriesReport a security issueSecurity documentation
March 31

Spring has sprung: breaking down CVE-2022-22963 & Spring4Shell (CVE-2022-22965)

In this post, we review details for two RCE vulnerabilities impacting Spring Cloud and Spring Framework, including how Fastly customers can protect themselves from this vulnerability.
March 31

Introducing GraphQL Inspection for the Fastly Next-Gen WAF

GraphQL is fast gaining popularity, and we’re excited to announce that we now support GraphQL Inspection in our Fastly Next-Gen WAF (powered by Signal Sciences).
March 29

The Dept. of Know Live!: Ellen Körbes on how security should approach the developer experience

Ellen Körbes, Senior Product Line Manager at VMware Tanzu Kubernetes, joined hosts Kelly Shortridge and Bea Hughes on The Dept. of Know Live! to chat about how security falls short of…
March 28

New deployment option: the Fastly Next-Gen WAF is now the only WAF compatible with Arm at scale

The Fastly Next-Gen WAF is now the only WAF on the market to be Arm compatible at scale in any environment, allowing you to deploy our security solution in environments using Arm-based…
March 23

Fastly is now the only vendor to be named a Customers’ Choice for Web Application and API Protection four years in a row

With this year’s achievement, we are the only vendor to be named a Customers’ Choice in the Gartner Peer Insights™ “Voice of the Customer” Web Application and API Protection report for four…
March 22

The Dept. of Know Live!: Omar on how to build more secure modern applications by making the safe way the easy way

Betterment Staff Security Engineer Omar joined hosts Kelly Shortridge and Bea Hughes on The Dept. of Know Live! to chat about why building more modern applications means building secure ones…
March 15

The Dept. of Know Live!: Sounil Yu on why embracing the DIE security model means faster innovation

JupiterOne CISO and Head of Research Sounil Yu joined hosts Kelly Shortridge and Bea Hughes on The Dept. of Know Live! to chat about how to make security an enabler of innovation. In this…
March 8

Building a defense-in-depth security strategy for web applications

While there’s no magic answer to stop all cyberattacks, there are a number of principles used in a defense-in-depth strategy that can be put in place ahead of a possible attack to limit its…
March 7

The Dept. of Know Live!: 4 highlights from Rinki Sethi’s chat on success in modern security

Former Twitter CISO Rinki Sethi joined hosts Kelly Shortridge and Bea Hughes on The Dept. of Know Live! to chat about what success in modern security means. In this blog post, Rinki shares…
March 4

Gain more control with custom response codes for the Fastly Next-Gen WAF

With the introduction of custom response codes, our edge cloud network can now pick up response codes from the Fastly Next-Gen WAF and take custom action at the edge — without the need to…
February 25

Countdown to The Dept. of Know Live!: a web app and API security speaker series that goes beyond fear mongering

The Dept. of Know Live! is a virtual speaker series designed to make you think differently about web app and API security. Each episode in March will feature a different guest for a 1…
February 8

With the launch of edge deployment, the Fastly Next-Gen WAF is first in the industry to offer a fully unified web app and API security solution

The Fastly Next-Gen WAF (powered by Signal Sciences) protects apps wherever they live: on-premises, in containers, in the cloud, and — as of today — at the edge. This makes it the industry’s…
Newer postsOlder posts