Platform Support

dotDefender for IIS

dotDefender for Apache

Datasheets

Web Application Firewall

PCI DSS Compliance

For hosting providers

Facts & Figures

80% of IT practitioners report that their organization experienced 1 or more data breach

Gartner has stated that 75% of all attacks on web sites and web applications target the application level and not the infrastructure

IPS systems cannot even look into simple SSL
IPS operate at the network layers, not the application layers
Maintenance costs of the system should not be underestimated
read more

Web Application Security Solution for Enterprise

Internal Breaches are Biggest Threat to Corporate Data

In light of recent studies conducted in the United States and Europe, it is clear that the number one threat to corporate data is from internal breaches (i.e., company employees that either accidentally or maliciously compromise sensitive data on internal applications and/or databases).

80% of US-based organizations have had at least one data breach as of the first half of 2008 (Ponemon Institute, 2008 Study- Uncertainty of Data Breach Detection )
75% of organizations in US, UK, France and Germany have had data breaches caused by negligent insiders and 26% had a breach caused by a malicious insider. (Ponemon Institute, 2008 Study)

"This study shows that both personal and corporate information is flooding out of the organizations entrusted with its confidentiality"
Larry Ponemon, Ponemon Institute chairman and founder

Internal compromising -

The most urgent enterprise security threat

Gartner has stated that 75% of all attacks on websites and web applications target the application level and not the infrastructure.

"Enterprises should not experience a false sense of security simply because their mission-critical applications run on mainframes. ….. Most attacks on legacies come from inside the enterprises, committed by their own employees …Therefore, the “circled wagons' mentality" — all bad guys are outside the circle, while inside there are only good guys — is misleading. Applications should be protected from the inside out.”

Implementing Security for Mainframe Legacy Applications Worth the Investment

72% of enterprises cite internal security threats as greater or equal importance to external threats (www.TheInfoPro.net)

NTA Monitor's 2008 Annual Security Report has revealed that the average number of vulnerabilities found per test have increased to 21 compared with 19 in 2007. All of the top 10 high risk flaws are associated with services that are being made available to Internet users, demonstrating that with increased functionality comes the threat of reduced security. (http://www.governmentsecurity.org/forum/index.php?showtopic=29243)

Enterprise Security-

Securing Sensitive Corporate Data from the Inside Out

Businesses’ online presence and internal applications (e.g., CRM, ERP, HR, and internal information portals) are using web-based applications to access, store, transmit and manage information. Previously, firewalls, VPNs and associated enterprise security technologies were the first line of defense against information theft. Today, Internal attackers bypass network enterprise security measures, consequently the security configuration of internal applications has become the first and last line of defense against malicious attacks and confidential data leaks. A 2007 study estimates that more than 70 million records will be exposed, unprotected or compromised via cyber-attack.

Enterprise applications containing the most sensitive data include intranet/mail, file servers, collaborative development tools, Enterprise Resource Planning (ERP), Multimedia, and data warehousing applications.

In order to protect their valuable data, enterprises must secure the web applications which are often the conduit to sensitive data.

Secure your Enterprise Data, Ensure IT Governance and Maximize ROI

Applicure’s dotDefender Web Application Firewall solution runs as part of the web server, providing robust enterprise security for all types of internal applications. dotDefender monitors and blocks attacks coming from the web that target vulnerabilities in your internal applications. It detects unwanted activity transparently, blocks attacks and sends alerts automatically. As a result, security breaches are prevented and your corporate data remains secure.

dotDefender is built to meet enterprises’ application security needs:

No need to change network topology
Suitable for distributed architectures
Central management
Out of the box protection for all application types
Rapid deployment and easy maintenance for low TCO

Insider Threats a Nightmare For IT Directors, Says Survey

New Delhi - It is insider threats and emerging web-based attacks that are presenting nightmares for directors of IT firms than just the hacking menace, reveals a recent survey.