Michael Buckbee
20 Mar 2024
We're working hard to deliver on our promise of adding more automatic security features to Wafris so that you can worry less about monitoring your site, letting you get back to the shipping code, and worrying less about your site's security.
Last week, we announced the launch of our integrated Geoblocking service. In just seven days, sites, on average, are automatically stopping tens of thousands of unwanted requests.
These requests:
It's a large decrease in the surface area that threats can target.
Machines rarely attack a single site - they launch attacks against thousands of sites simultaneously.
We track this attack behavior and maintain a continuously updated database of IP addresses known to participate in attacks.
Currently, the database contains roughly 29,171,087 IPs that identify:
Paid Wafris plans have this IP Reputation Ruleset applied to their inbound web requests. This automatically blocks a significant number of attacks without manual intervention.
If you're on a free plan, head to http://wafris.org/pricing to upgrade or feel free to book a time at https://app.harmonizely.com/expedited/wafris
This week, we're highlighting a resurgence in bots looking for Docker build artifacts. These can contain sensitive information like API keys, indications of how to gain further access or even potentially user data.
Spend a moment to verify whether your current deployment setup has any exposed build artifacts.
Want more web weirdness? Follow us on Twitter - https://twitter.com/wafrisorg or LinkedIn https://www.linkedin.com/company/wafris/
This week, we want to thank Francis Lavoie for reviewing our Wafris Caddy client and suggesting some smart improvements.
Follow him at: https://twitter.com/_francislavoie
Start blocking traffic in 4 minutes or less
