“We found out very quickly that we can truly rely on L7 Defense’s Ammune to detect Applicative DDoS threats on APIs with no additional overhead – Well done!”
A large bank
The bank’s web systems were constantly under applicative DDoS attacks targeting web systems APIs, causing severe maintenance overhead and significant degradation in service quality. High false positive / negative alerts rate of the existing applicative defense solutions led to an unacceptable workload for the SOC. The incumbent applicative solutions also required significant maintenance and were unable to block under the radar API DDoS attacks.
L7Defense’s Ammune™ API-DDoS solution was installed within two hours and became operational within the next hour. It was deployed in TAP mode – behind the incumbent solution and integrated into the upstream FW system, which performed the actual mitigation process as its proxy.
The DDoS protection is now highly improved, service quality has been restored, and security and IT overload due to DDoS attacks has been contained. A week after installation, Ammune™ detected and mitigated a major multi-APIs DDoS attack, targeting the bank’s main website. The bank’s web domains are now monitored by Ammune™ API-DDoS and the bank is evaluating additional API security modules from L7 Defense.