Security blog

Security blogSecurity advisoriesReport a security issueSecurity documentation
August 10, 2021

Legacy security tools: peace of mind at what price?

Companies using an average of 11 web application and API security tools should be able to rest easy, but the vast majority of them report successful attacks are still getting through. These…
August 2, 2021

One year later: an update on the Fastly/Signal Sciences story

When we acquired Signal Sciences, we put a stake in the ground as a company that cares about the complete delivery path and making it not just resilient and performant, but inherently secure…
July 27, 2021

Introducing right-sized web app and API protection packages

Today, we launched Fastly Secure packages, a unified web app and API security solution that provides “right-sized” protection for any organization at a spend level that works for a variety…
July 26, 2021

All together now: 4 steps toward centralized security tooling

Here are four repeatable steps that will help you pay down your security technical debt, make your apps and APIs more secure, and move you toward consolidated security tooling.
July 22, 2021

Why don’t your security tools work anymore?

As the internet landscape gets more complex, more API driven, and more distributed, many security and IT professionals are left wondering — why aren’t the security tools that were good…
July 12, 2021

New research shows security tooling is at a tipping point

We released a new report today in partnership with ESG Research that reveals some fascinating insights into the state of web application security tooling.
June 30, 2021

How to use request enrichment with our next-gen WAF to help identify compromised user information

Requests passing through Fastly can be transformed in many ways. In this example, we’ll show you how to use enriched requests and our next-gen WAF to help you make more informed security…
June 29, 2021

Introducing Response Security Service

Our new Response Security Service provides direct, 24/7 access to our Customer Security Operations Center to help you prepare for and respond when you suspect an attack.
June 25, 2021

How to recognize and repel four high-risk attack types

After years of helping protect companies across a variety of industries, we’ve come to recognize four common risk attack types. Here’s how they work and how to counter them.
June 17, 2021

4 Ways Legacy WAF Fails to Protect Your Apps

The legacy WAF isn’t ubiquitous because it’s the perfect technology. Its success comes down to being mandated, despite four ways it often fails.
June 16, 2021

Suggestive signals: how to tell good bot traffic from bad

While some bots are benign search engine crawlers or website health monitors, others are on the prowl with nefarious intent, looking to execute account takeovers and compromise APIs. In this…
June 7, 2021

How we vetted Cranelift for secure sandboxing in Compute@Edge

Alongside the Bytecode Alliance, Fastly’s WebAssembly team recently led a rigorous security assessment of Cranelift, an open-source, next-generation code generator for use in WebAssembly to…
Newer postsOlder posts