Absolyut Bank implemented PT Application Firewall for protection of web applications against cyber attacks

2019: Implementation of PT Application Firewall

On December 17, 2019 the Positive Technologies company reported that Absolyut Bank selected PT Application Firewall for continuous protection of web applications against the attacks of the malefactors directed to decrease in availability of Internet resources (the website and online bank) and violation of integrity of information processed in them.

During testing of PT Application Firewall it was unrolled in the Sniffer mode: to minimize influence on operation of Web servers, a system analyzed the copy of the web traffic arriving on the protected server.

A system is successful passed test and showed the high accuracy of detection of the attacks on the Absolute of Bank web applications. During testing with its help more than 10,000 attacks were revealed. Up to 10% from them — the high level of danger, about 40% — the average level and about 50% — low.

At implementation of PT Application Firewall it was unrolled in the mode of the return proxy server when the firewall blocks the abnormal inquiries sent web applications. Thanks to a variety of protection gears, support of different operation modes and schemes of implementation the solution is flexibly built in IT infrastructure of bank, without breaking the existing business processes, and ensures continuous functioning of all applications.

Also PT Application Firewall allowed to provide management of SSL certificates and sets of ciphers in uniform command center with protection of HTTPS connections. Such functionality gives the chance to effectively protect self-written and small third-party services which developers often have no examination in the SSL setup.

Resources of financial institutions always in focus of malefactors. The safety of data and availability of our applications to clients therefore we pay special attention to protection of client web resources against cyber attacks are extremely important for us. Thanks to the PT Application Firewall firewall we can control security of the web applications "Absolute of Bank" and quickly react to relevant threats. PT Application Firewall confirmed the stated characteristics and proved as the reliable, productive and functional solution, noted Alexey Bulgakov, the head of service cybersecurity Absolute of Bank

According to our researches, on the websites of financial institutions the greatest number of the directed multistage attacks is made. Mechanisms of security of users and also a possibility of easy integration with monitors and protection are necessary for reflection of similar threats a comprehensive and continuous protection of the applications including which are constantly updated (SIEM, NTA, antivirus software), commented on results of implementation Maxim Lungu, the head of department of the systems of protection of the Positive Technologies applications