Accessibility Statement Skip Navigation
  • Why PRWeb
  • How It Works
  • Who Uses It
  • Pricing
  • Login
  • GDPR
  • Create a Free Account
Return to PRWeb homepage
  • News
  • Resources
  • Contact
When typing in this field, a list of search results will appear and be automatically updated as you type.

Searching for your content...

No results found. Please change your search terms and try again.
  • News in Focus
      • Browse News Releases

      • All News Releases
      • Multimedia Gallery

      • All Multimedia
      • All Photos
      • All Videos
  • Business & Money
      • Auto & Transportation

      • Aerospace, Defense
      • Air Freight
      • Airlines & Aviation
      • Automotive
      • Maritime & Shipbuilding
      • Railroads and Intermodal Transportation
      • Supply Chain/Logistics
      • Transportation, Trucking & Railroad
      • Travel
      • Trucking and Road Transportation
      • View All Auto & Transportation

      • Business Technology

      • Blockchain
      • Broadcast Tech
      • Computer & Electronics
      • Computer Hardware
      • Computer Software
      • Data Analytics
      • Electronic Commerce
      • Electronic Components
      • Electronic Design Automation
      • Financial Technology
      • High Tech Security
      • Internet Technology
      • Nanotechnology
      • Networks
      • Peripherals
      • Semiconductors
      • View All Business Technology

      • Entertain­ment & Media

      • Advertising
      • Art
      • Books
      • Entertainment
      • Film and Motion Picture
      • Magazines
      • Music
      • Publishing & Information Services
      • Radio & Podcast
      • Television
      • View All Entertain­ment & Media

      • Financial Services & Investing

      • Accounting News & Issues
      • Acquisitions, Mergers and Takeovers
      • Banking & Financial Services
      • Bankruptcy
      • Bond & Stock Ratings
      • Conference Call Announcements
      • Contracts
      • Cryptocurrency
      • Dividends
      • Earnings
      • Earnings Forecasts & Projections
      • Financing Agreements
      • Insurance
      • Investments Opinions
      • Joint Ventures
      • Mutual Funds
      • Private Placement
      • Real Estate
      • Restructuring & Recapitalization
      • Sales Reports
      • Shareholder Activism
      • Shareholder Meetings
      • Stock Offering
      • Stock Split
      • Venture Capital
      • View All Financial Services & Investing

      • General Business

      • Awards
      • Commercial Real Estate
      • Corporate Expansion
      • Earnings
      • Environmental, Social and Governance (ESG)
      • Human Resource & Workforce Management
      • Licensing
      • New Products & Services
      • Obituaries
      • Outsourcing Businesses
      • Overseas Real Estate (non-US)
      • Personnel Announcements
      • Real Estate Transactions
      • Residential Real Estate
      • Small Business Services
      • Socially Responsible Investing
      • Surveys, Polls and Research
      • Trade Show News
      • View All General Business

  • Science & Tech
      • Consumer Technology

      • Artificial Intelligence
      • Blockchain
      • Cloud Computing/Internet of Things
      • Computer Electronics
      • Computer Hardware
      • Computer Software
      • Consumer Electronics
      • Cryptocurrency
      • Data Analytics
      • Electronic Commerce
      • Electronic Gaming
      • Financial Technology
      • Mobile Entertainment
      • Multimedia & Internet
      • Peripherals
      • Social Media
      • STEM (Science, Tech, Engineering, Math)
      • Supply Chain/Logistics
      • Wireless Communications
      • View All Consumer Technology

      • Energy & Natural Resources

      • Alternative Energies
      • Chemical
      • Electrical Utilities
      • Gas
      • General Manufacturing
      • Mining
      • Mining & Metals
      • Oil & Energy
      • Oil and Gas Discoveries
      • Utilities
      • Water Utilities
      • View All Energy & Natural Resources

      • Environ­ment

      • Conservation & Recycling
      • Environmental Issues
      • Environmental Policy
      • Environmental Products & Services
      • Green Technology
      • Natural Disasters
      • View All Environ­ment

      • Heavy Industry & Manufacturing

      • Aerospace & Defense
      • Agriculture
      • Chemical
      • Construction & Building
      • General Manufacturing
      • HVAC (Heating, Ventilation and Air-Conditioning)
      • Machinery
      • Machine Tools, Metalworking and Metallurgy
      • Mining
      • Mining & Metals
      • Paper, Forest Products & Containers
      • Precious Metals
      • Textiles
      • Tobacco
      • View All Heavy Industry & Manufacturing

      • Telecomm­unications

      • Carriers and Services
      • Mobile Entertainment
      • Networks
      • Peripherals
      • Telecommunications Equipment
      • Telecommunications Industry
      • VoIP (Voice over Internet Protocol)
      • Wireless Communications
      • View All Telecomm­unications

  • Lifestyle & Health
      • Consumer Products & Retail

      • Animals & Pets
      • Beers, Wines and Spirits
      • Beverages
      • Bridal Services
      • Cannabis
      • Cosmetics and Personal Care
      • Fashion
      • Food & Beverages
      • Furniture and Furnishings
      • Home Improvement
      • Household, Consumer & Cosmetics
      • Household Products
      • Jewelry
      • Non-Alcoholic Beverages
      • Office Products
      • Organic Food
      • Product Recalls
      • Restaurants
      • Retail
      • Supermarkets
      • Toys
      • View All Consumer Products & Retail

      • Entertain­ment & Media

      • Advertising
      • Art
      • Books
      • Entertainment
      • Film and Motion Picture
      • Magazines
      • Music
      • Publishing & Information Services
      • Radio & Podcast
      • Television
      • View All Entertain­ment & Media

      • Health

      • Biometrics
      • Biotechnology
      • Clinical Trials & Medical Discoveries
      • Dentistry
      • FDA Approval
      • Fitness/Wellness
      • Health Care & Hospitals
      • Health Insurance
      • Infection Control
      • International Medical Approval
      • Medical Equipment
      • Medical Pharmaceuticals
      • Mental Health
      • Pharmaceuticals
      • Supplementary Medicine
      • View All Health

      • Sports

      • General Sports
      • Outdoors, Camping & Hiking
      • Sporting Events
      • Sports Equipment & Accessories
      • View All Sports

      • Travel

      • Amusement Parks and Tourist Attractions
      • Gambling & Casinos
      • Hotels and Resorts
      • Leisure & Tourism
      • Outdoors, Camping & Hiking
      • Passenger Aviation
      • Travel Industry
      • View All Travel

  • Policy & Public Interest
      • Policy & Public Interest

      • Advocacy Group Opinion
      • Animal Welfare
      • Congressional & Presidential Campaigns
      • Corporate Social Responsibility
      • Domestic Policy
      • Economic News, Trends, Analysis
      • Education
      • Environmental
      • European Government
      • FDA Approval
      • Federal and State Legislation
      • Federal Executive Branch & Agency
      • Foreign Policy & International Affairs
      • Homeland Security
      • Labor & Union
      • Legal Issues
      • Natural Disasters
      • Not For Profit
      • Patent Law
      • Public Safety
      • Trade Policy
      • U.S. State Policy
      • View All Policy & Public Interest

  • People & Culture
      • People & Culture

      • Aboriginal, First Nations & Native American
      • African American
      • Asian American
      • Children
      • Diversity, Equity & Inclusion
      • Hispanic
      • Lesbian, Gay & Bisexual
      • Men's Interest
      • People with Disabilities
      • Religion
      • Senior Citizens
      • Veterans
      • Women
      • View All People & Culture

  • Hamburger menu
  • Cision PRWeb provides efficient communication tools to continuously engage with target audiences across multiple online channels
  • Create a Free Account
    • ALL CONTACT INFO
    • Contact Us


      11AM ET Sunday – 8PM ET Friday

  • Send a Release
  • Sign up
  • Log in
  • Resources
  • RSS
  • GDPR
  • News in Focus
    • Browse All News
    • Multimedia Gallery
  • Business & Money
    • Auto & Transportation
    • Business Technology
    • Entertain­ment & Media
    • Financial Services & Investing
    • General Business
  • Science & Tech
    • Consumer Technology
    • Energy & Natural Resources
    • Environ­ment
    • Heavy Industry & Manufacturing
    • Telecomm­unications
  • Lifestyle & Health
    • Consumer Products & Retail
    • Entertain­ment & Media
    • Health
    • Sports
    • Travel
  • Policy & Public Interest
  • People & Culture
    • People & Culture
  • Send a Release
  • Sign up
  • Log in
  • Resources
  • RSS
  • GDPR
  • Send a Release
  • Sign up
  • Log in
  • Resources
  • RSS
  • GDPR
  • Send a Release
  • Sign up
  • Log in
  • Resources
  • RSS
  • GDPR

Case Study: About Shellshock, Traditional WAF Approach and Fish “Shoal Protection”
  • USA - English


News provided by

Fireblade

Oct 17, 2014, 03:00 ET

Share this article

Share toX

Share this article

Share toX


(PRWEB) October 17, 2014 -- As was first published on Fireblade's blog:

After the announcement of the recent Shellshock (CVE-2014-6271 and CVE-2014-7169) vulnerability, it becomes apparent again how fragile and dangerous a typical “dictionary based” WAF can be when it comes to websites security.

Besides the fact that dictionary based web application firewalls (WAF) need to be updated regularly to address new threat patterns through known attacks such as SQL Injections and XSS attacks, the main cause for concern is when a completely new attack vector is discovered.

Indeed, this is the classic definition of a Zero-Day Attack and when a threat like Shellshock pops up, it changes the dynamics of the entire web defense game

Post this

Obviously, until this vector is discovered, there is no active research assigned to inspect different angles of potential attack payloads. Such research and inspection is done only on known attack vectors, where research teams try to foresee new patterns or draw logical conclusions about new patterns through hacking tool updates or competitions.

Indeed, this is the classic definition of a Zero-Day Attack and when a threat like Shellshock pops up, it changes the dynamics of the entire web defense game. First, companies that rely on traditional WAFs are practically defenseless the entire time before vulnerabilities are publicly recognized since the technology relies heavily on known and preexisting threats. It is only after vulnerabilities are discovered and publicized that traditional WAF service providers will update new patterns to the firewall dictionary, add and update new WAF rules and distribute them accordingly. This is indeed what companies like Cloudflare and Akamai did. However, usually that will happen only after a significant number of exposed websites and businesses get hacked, penetrated and may have already suffered losses.

Upon deeper assessment and consideration, such a protection concept is also being used in nature by defenseless fishes, in what is known as “Shoal Protection”. For example, each fish in the shoal benefits from a phenomenon known as the ”Numerical Dilution Effect”, which suggests that simply being part of a group reduces the chances of being killed. In a shoal of one hundred fish, each individual has only a one-in-one-hundred chance of being killed during an attack. And so, when unfortunate fish on the outskirts of the shoal get eaten by a lucky predator, the whole group adapts and changes its course.

Relating that concept to the world of Internet Security, those companies that have automatic updates are provided with a reasonable defense to the upcoming surge of attacks that will happen when vulnerabilities are exposed. However, the biggest issue is really the fact that there is little knowledge about possible attack variations. Hence, the remedy provided by WAF directory updates are trivial and are rapidly becoming less effective. Therefore, in cases where there is a lack of experience and pattern history, the probability of malicious attacks breaking defenses is relatively high, and will remain so until the proper knowledge is acquired and implemented. As mentioned, such knowledge is usually being deduced from the unfortunate experience of some companies’ websites, where attacks already succeeded. For those, classic WAF updates will probably come too little, too late; similarly to those poor fishes who become prey within their shoal.

Behavioral Security

When additional behavioral properties are applied to WAF defenses, such as Fireblade’s innovative behavioral technology for website security, businesses are presented with more positive prospects for safety and mitigating attacks. Even with the Shellshock attack, a hacker will be required to explore many weak points like CGI’s that incorporate information coming from requests (like certain headers) into bash scripts, in a way that can trigger a code execution.

Indeed, this can also be done manually, but a hacker will want to test that on multiple CGIs and multiple domains, or to mount it on compromised servers in order to execute the attack. The hacker will probably be required to use automation in the hacking attempt which will certainly display predictable malicious behavior. Therefore, being equipped with Fireblade’s anti-automation defense, which is based on spotting behavioral anomalies, companies can be confident that it will block the automated process long before it can fully be executed, and detect system weaknesses for new individual attack vectors.

Shellshock treatment by Fireblade

Fireblade monitors both the web security industry as well as clients’ systems in real-time; and immediately after the Shellshock vulnerability was discovered and made public all systems were examined to determine their capacity to handle early exploit attempts. Unlike many other web security companies, it was pleasing to discover, post factum, that Fireblade’s multi-layered firewall had indeed identified and blocked numerous automated bot attempts at exploiting the Shellshock vulnerability. This was further proof that the innovative combination of rule-based, reputational and behavioral mitigation along with powerful web application firewalls (WAF) is a winning strategy and technique for protecting customers’ valuable assets against Zero Day Attacks.

As was first published on Fireblade's blog: http://www.fireblade.com/shellshock-traditional-waf-approach-fish-shoal-protection/

-----------------------

About Fireblade:

Fireblade empowers websites with uncompromising Security, Speed, Monitoring and Availability capabilities, in one cost-effective solution with its cloud based SaaS. The company was co-founded in 2009 by Shay Rapaport and Erez Azaria in response to the growing website security threats and malicious bot traffic. Fireblade protects billions of page-hits each month for a fast growing client-base, which includes some of the largest and busiest websites. Fireblade is privately funded, with its headquarters in Israel. More information can be found at http://www.fireblade.com.

Media Contact:

Eran Tsur
Eran.Tsur(at)fireblade(dot)com
+972 3 729 3100

Eran Tsur, Fireblade, http://www.fireblade.com/, +972 37293100, [email protected]

Modal title

About Fireblade's Technology
View PDF
About Fireblade's Technology
About Fireblade's Technology

Contact PRWeb

  • 11AM ET Sunday – 8PM ET Friday
  • Contact Us

About PRWeb

  • About PRWeb
  • Partners
  • Partnership Programs
  • Editorial Guidelines
  • Resources

Why PRWeb

  • Why PRWeb
  • How It Works
  • Who Uses It
  • Pricing

Accounts

  • Create a Free Account
  • Log in
  • Contact Us

Do not sell or share my personal information:

  • Submit via [email protected] 
  • Call Privacy toll-free: 877-297-8921

Contact Cision

Products

About

My Services
  • All News Releases
  • Online Member Center
  • ProfNet
Cision Distribution Helpline
888-776-0942
  • Legal
  • Site Map
  • RSS
  • Cookie Settings
Copyright © 2025 Cision US Inc.