Imunify360 and Imunify Sensor Blog

Imunify360 now protects against zero-day attacks, powered by the Wallarm machine learning engine

Imunify360 now protects against zero-day attacks, powered by the Wallarm machine learning engine

I am pleased to share that Wallarm’s technology now helps defend our Imunify360 customers’ web applications against zero-day attacks. It analyzes huge troves of Web traffic looking for anomalies and detects ongoing zero-day attacks before they even become known to the public. It then automatically creates rules that block those attacks in real-time.

Before going live with this technology, we have evaluated several vendors for this functionality and have conducted extensive testing with a subset of servers running Imunify360. We’ve seen multiple attacks blocked by Wallarm ruleset, with zero false positives. This ability to generate high-quality no-false-positives ruleset against zero-day attacks in an automated fashion, precisely why we selected Wallarm instead of other vendors, is truly impressive and will greatly benefit our customers.

Wallarm’s proprietary machine learning engine generates rules on-the-fly based on traffic patterns found on the Web. It continuously analyzes application calls and payloads to generate and update security rulesets, which are then used to inform mod_security blocking and monitoring rules. This distinguishes Wallarm from other offerings where the signatures are created manually.

Imunify360 combines Wallarm's signatures with its herd immunity engine to achieve significantly higher detection rate against web application attacks by botnets, while providing very low false positive rates. The technology allows to detect attacks that are yet to be known by other security vendors, against vulnerabilities in web applications that might not be even known to anyone but the attacker.

Imunify360 is already protecting hundreds of thousands of sites against many types of attacks, and now Wallarm will help greatly extend the number of websites Imunify360 will be defending.

You can learn more about Imunify360 here. To learn more about Wallarm, you can visit this page.

 

Topic: Imunify360 Blog , Tags: #news,

1604 people viewed this

Comments (4)

 
by Guest - Tommyk / Tuesday, 11 July 2017 21:54

Exciting stuff. Will this behave with cpnginx installed?

Exciting stuff. Will this behave with cpnginx installed?
by Guest - Sven / Wednesday, 12 July 2017 16:28

Are there any data that will Imunify send to Wallarm like IP-Adresses or anything else?

Are there any data that will Imunify send to Wallarm like IP-Adresses or anything else?
by Igor Seletskiy / Wednesday, 12 July 2017 17:49

No data is sent to Wallarm / Wallarms IP.

No data is sent to Wallarm / Wallarms IP.
by Guest - Juan Carlos Celaya / Monday, 24 July 2017 18:35

Sounds nice, 2 questions:

1. Does that feature work with litespeed web server?

2. Should we keep enabled CWAF for better detection rates? (Comodo WAF)

Regards,

Sounds nice, 2 questions: 1. Does that feature work with litespeed web server? 2. Should we keep enabled CWAF for better detection rates? (Comodo WAF) Regards,

Leave your comment

Guest, Tuesday, 26 September 2017

Captcha Image