"The credit Europe the Bank" translated the website, online and mobile banking under protection of PT Application Firewall

2020: Implementation of PT Application Firewall

Credit Europe Bank increased security of the web resources using WAF (web application firewall) of Positive Technologies company. Under protection of PT Application Firewall bank transferred several tens of applications. The Positive Technologies company reported about it on August 13, 2020. On average in a month using WAF "Credit Europe Bank" reveals about 8500 events of security of a high risk (on own scale of PT AF), about 3000 — average and 10,000 low risk degrees.

JSC Credit Evropa Bank (Russia) renders services to retail and corporate clients and also the enterprises of small and medium business. For rendering of services the bank uses several tens of web resources: the official site, Internet and mobile banks for physical persons and legal entities, promostranitsa and other web applications.

The most vulnerable component of network perimeter of the companies are web resources. According to us, three quarters (77%) of vectors of penetration into local networks of the companies are connected with insufficient protection of web applications, unauthorized access to the application is possible for 39% of the websites, and the threat of leak of important data is present in 68% of web applications. The risks connected with storage and data processing of web resources mean increased requirements to means of protecting of web resources — Arseny Reutov, the head of research on protection of the Positive Technologies applications comments.

"Europe Bank" utilizes the credit the firewall of level of the PT Application Firewall web applications for preventive protection of several tens web resources: the official site of crediteurope.ru, Internet and mobile banks for physical persons and legal entities, different lendingovy pages and other information resources. For August, 2020 PT Application Firewall was succeeded to reveal and block such attempts of the attacks as collection of information about an internal configuration of a web resource, implementation of the SQL code, XSS (implementation in the page of a malicious code issued by a web system which will be executed on the user's computer when opening of this page by it and interaction of the code with the malefactor's Web server) and also attempts of selection of passwords and use of different scanners for search of vulnerabilities in web applications. On average for a month of WAF reveals about 8500 events of security of a high risk (on own scale of PT AF), about 3000 — average and 10,000 low risk degrees.

We considered WAF of different producers, but stopped the choice on PT Application Firewall. For us it was important to receive the product considering specifics of the attacks on resources of the financial industry — counteraction to the attacks directed to gaining access to the data containing payment information, to data of cards of clients and servers of web resources with the subsequent compromise criminals of corporate network first of all is relevant for any credit and financial organization. PT Application Firewall allows to reveal the events connected with similar types of the attacks on subjects to protection: databases, services of online payment, servers of web resources — Alexander Ivanovich Sagalakov, the chief of group of security of information systems of JSC Credit Evropa Bank (Russia) comments.

The DialogNauka company became the partner in implementation. The solution was deployed in the mode of the return proxy server — when the firewall blocks the abnormal inquiries sent applications. Thanks to a variety of protection gears, support of different operation modes and schemes of implementation PT Application Firewall it was flexibly built in infrastructure of bank, without breaking the existing business processes, and ensures continuous operation of applications. In further plans consecutive connection to WAF of all other applications of bank.

PT Application Firewall already on a pilot project proved to be as the reliable solution conforming to all stated requirements. The product was quickly and seamlessly integrated into infrastructure of bank, the possibility of flexible configuration of rules of protection of web applications and events and also a user-friendly interface of a dashbord of the administrator includes. Also it should be noted work of technical support of a product which helps us during creation of individual rules of detecting of events of information security for special cases — Andrey Viktorovich Shkonda, the senior specialist of group of security of information systems of JSC Credit Evropa Bank (Russia) tells.