Banking and Financial Services
Eliminating DDoS False Positives
DDoS risk was reduced from 48% to 2% for a global, financial services enterprise that uses RADAR™ to gain better ROI on their DDoS protections.
The Customer
A global financial services organization was committed to providing reliable services and tools to its account holders. They had developed a system that made it easy for their customers to set up and use their services, and a complex, secure, and highly intelligent platform was behind the streamlined customer experience they developed. The platform included intricate applications and networks that worked together seamlessly. But a single incident spiraled into a hazardous DDoS attack. The company’s legitimate customers were blocked from accessing services.
Key Takeaways
Customer Challenges
- Understanding true DDoS exposure and risk
- Effectively securing rapidly expanding online services
Our Impact
- Drastically reduced risk from 48% to 2% – a 24x risk reduction
- Elimination of false positives
- Better ROI on DDoS protection investments
- Continuous DDoS testing with no service disruption
The Challenge
When the company added new services – designed to improve sales and increase customer engagement for their merchants – one of the applications inadvertently sent out a push request to the customer base. This resulted in a flood of legitimate responses. The company’s automated DDoS protection mistakenly identified the legitimate request as a DDoS attack and the end-users were blocked. As a result, thousands of their customers were denied access, which resulted in significant reputational damage.
The company sought a way to ensure that their DDoS protection would keep pace with any future changes introduced to their online services because of digital transformation processes, and that the DDoS protection would not cause false positives. The management needed assistance to:
- Understand their true DDoS exposure and risk
- Effectively secure their rapidly expanding online services
Our Solution
MazeBolt RADAR empowered the company to identify legitimate requests – running DDoS testing automatically, continuously, and nondisruptively. RADAR was incremental to the company’s existing DDoS protection to provide full visibility into legitimate requests that were blocked, for each web-facing IP/target in the network environment.
By harnessing RADAR’s thousands of vulnerability simulations, the company was able to work effectively with their DDoS protection vendor and fine-tune their DDoS protection configurations. As a result of continuously validating assets against both legitimate traffic and malicious DDoS attacks, two things happened:
- Minimized false positives – RADAR’s insights helped configure the company’s DDoS protection for maximum resilience, ensuring no legitimate traffic was being blocked.
- Maximized, continuous DDoS resilience – RADAR continuously tested, identified, and triaged DDoS vulnerabilities, preempting potential DDoS exposures and effectively eliminating risk.
Customer Benefits
Using RADAR, the company’s CISO gained visibility into DDoS vulnerabilities and was able to proactively secure online services – regardless of any changes that their digital transformation process required. This visibility was achieved quickly and effectively.
RADAR was deployed and complimented the company’s existing DDoS protection solution. Their security teams focused their efforts on prioritizing DDoS vulnerabilities, thereby saving valuable time and budgets – and achieving true DDoS resilience.
