Sydney, 7 August 2023 –ย Fastly, Inc. (NYSE: FSLY), a leader in global edge cloud platforms, has announced the publication of its first threat intelligence report, theย “Network Effect Threat Report”.ย ย Featuring data and insights gathered from the companyโs proprietary Network Learning Exchange (NLX), the Network Effect Threat Report showcases the industry-leading accuracy of Fastlyโs threat intelligence capabilities and the effectiveness of Fastlyโs unified security platform.
The security landscape is ever-evolving, with bad actors continually creating new attack vectors. To combat these threats, Fastlyโs Next-Gen WAF (NGWAF) uses SmartParse, a proprietary technology that can understand the content and context of attacks. SmartParse is able to quickly and accurately determine if a request will result in a malicious action. Snippets of confirmed malicious traffic are sent to Fastlyโs NLX, which then distributes information about offending IP addresses to every Fastly NGWAF customer. This capability enables customers to preemptively block confirmed malicious IPs before a request even reaches their network. The shared threat data fosters a network effect, where the collective intelligence of all customers contributes to stronger security for each organisation.
โBy continuously analysing the threat landscape and applying that knowledge to the technology, processes, and mitigations that Fastly offers to its customers, weโre offering valuable insights into the threat landscape and what to do about it,โ said Marshall Erwin, Fastlyโs newly-appointed Chief Information Security Officer. โWeโre leveraging multiple angles to provide actionable intelligence, including our own vulnerability research, strong intelligence partnerships with private/public partners, and data analysis of the activities seen against our customers.
Theย Network Effect Threat Report., published today, is the first in a planned ongoing series of threat intelligence reports from Fastly. The report captures information and insights based on the unique data from Q2 2023 from across Fastlyโs NGWAF customer base and tagged by NLX.
The findings of this report showcase the strength of the NGWAFโs SmartParse decision engine and NLXโs ability to provide preemptive protection across our customer base. The IP threat intelligence in NLX, which powers the NGWAF and the new threat report, are sourced from over 90,000 application and API endpoints and 4.1 trillion requests inspected per month1. Global traffic encompassed diverse industries, including High Technology, Financial Services, Commerce, Education, and Media & Entertainment. Top highlights from the report include:
- Multi-customer attacks:ย 69% of IPs tagged by NLX targeted multiple customers, and 64% targeted multiple industries.
- Targeted Industries:ย The high tech industry was targeted the most, accounting for 46% of attack traffic tagged by NLX.
- Trending Techniques:ย While SQL injection is a popular attack choice (27%), attackers are favouring traversal techniques, which make up nearly one-third (32%) of attacks analysed.
ย
โThis report directly reflects the benefits of NLXโs network effect for our customers, which ensures they gain immediate awareness of potentially threatening IPs,โ said Simran Khalsa, Staff Security Researcher at Fastly. โThese attacks are not as targeted or siloed as people might think. The breadth of our customer base and their traffic means we can offer a higher-quality threat feed that allows teams to respond with greater confidence, especially since itโs happening in near real-time.โ
The threat intelligence research and product capabilities featured in this report are just a few features of Fastlyโs unified security platform. In contrast to legacy and point product solutions, which can create challenges for security professionals that outweigh the protection they offer, Fastlyโs unified platform secures organisations through protection at the application layer along with a secure-by-design network layer and serverless edge compute environment. From DDoS and bot management to real-time platform-wide observability and Managed Security Services, Fastlyโs platform makes it easy for security professionals to protect their organisations without slowing them down, and for developers to safely innovate without barriers.
1- 6 month trailing average as of June 30, 2023
About Fastly
Fastlyโs powerful and programmable edge cloud platform helps the worldโs top brands deliver the fastest online experiences possible, while improving site performance, enhancing security, and empowering innovation at global scale. With world-class support that achieves 95%+ average annual customer satisfaction ratings, Fastlyโs beloved suite of edge compute, delivery, and security offerings has been recognised as a leader by industry analysts such as IDC and Forrester. Compared to legacy providers, Fastlyโs powerful and modern network architecture is the fastest on the planet, empowering developers to deliver secure websites and apps at global scale with rapid time-to-market and industry-leading cost savings. Thousands of the worldโs most prominent organisations trust Fastly to help them upgrade the internet experience, including Reddit, Pinterest, Stripe, Neiman Marcus, The New York Times, Epic Games, and GitHub.ย Australia and New Zealand customers include Freelancer, Kogan, Linktree, Nine, NRL, Radio New Zealand, Seven Network, Trademe and Vodafone.ย Learnย more about Fastly atย www.fastly.comย and follow us @fastly.
Source: Fastly, Inc.