Barracuda Firewall Integrates with Client ‘Fingerprinting’ to protect against DDoS attacks

Barracuda Web Application Firewall, version 7.8 firmware, increases protection for businesses against Distributed Denial of Service (DDoS) Attacks

KUALA LUMPUR, Malaysia, 18 June 2013 – Barracuda Networks Inc., a leading provider of security, networking and data protection solutions, today announced the latest Barracuda Web Application Firewall (WAF), version 7.8 firmware, specifically aimed at reducing the impact of automated attack attempts from botnets.

Thiban Darmalingam, the Regional Manager for Barracuda in Malaysia said “Automated botnet attacks have made headlines by striking high profile banks and web platforms like WordPress. More worrying is the dramatic increase in the ferocity and duration of these attacks.”

The latest release of the Barracuda WAF firmware Version 7.8 is designed specifically with these botnet attacks in mind, providing advanced DDoS attack protection that spans the network and application layer - without ever needing to touching the server infrastructure.

“WAF has the ability to control traffic based on geographic regions, IP addresses, and client types – allowing administrators to fight botnets effectively. It has new features such as client fingerprinting techniques that can distinguish botnets from real human users, so as to block malicious requests from botnets,” he adds.
“Securing applications against automated attacks can be tedious if done manually. With the Barracuda WAF, you protect your network from the latest hacker attacks, without adding configuration changes or upgrades to your network,” ends Thiban.

With functions that optimize application delivery and availability, Barracuda Web Application Firewall is essential for all secure and effective web-application delivery. Some new capabilities designed to secure applications against advanced DDoS attacks include:

• Enhanced Botnet Identification with Barracuda IP Reputation – Enhanced Barracuda IP reputation security provides the WAF with extensive data on infected devices spanning all major security vectors including network, web, and email traffic; enables administrators to identify and thwart botnets attempting any DDoS attacks.

• Client Fingerprinting – Using techniques such as injecting JavaScript challenges in website responses, Barracuda Web Application Firewall can distinguish botnets from human users and block malicious requests from botnets.

• Automated CAPTCHA Challenges – Barracuda Web Application Firewall can automatically insert CAPTCHA challenges to suspicious clients without requiring any changes to the application.

• New Client Browser Control – New client browser control allows the WAF to set client browser behavior to reduce the risk of malicious javascripts, drive-by-downloads, and other browser-based attacks.

In addition to these advanced security capabilities, a number of management and performance enhancements have been added to the firmware release, including:
• Increased throughput up to 4Gbps on Barracuda Web Application Firewall models 960 and higher on the current hardware platform
• Integration with the Kerberos security protocol for single sign-on across disparate backend Web services
• Support for Certificate Revocation Lists (CRLs) for enhanced SSL certificate management.

Availability and Pricing:
Barracuda Web Application Firewall version 7.8 is available immediately at no additional charge to existing customers on the current hardware platform with an active Energize Update subscription or with an active virtual appliance license. Barracuda Web Application Firewall pricing in North America ranges from US$4,999 to US$61,599 depending on model, with no per user fees. For more information, please visit www.barracuda.com/waf.