Identity theft, where personal information is stolen for fraudulent purposes, is a major security concern. Barracuda WAF-as-a-Service helps prevent this by safeguarding sensitive data within application responses.
How it Works
The Barracuda WAF-as-a-Service identifies patterns commonly associated with identity theft data types like credit card numbers, social security numbers, and directory listings. If a pattern match is detected in the response traffic, the WAF-as-a-Service takes action based on your configuration:
- Blocking: The response is blocked entirely, preventing sensitive data exposure.
- Cloaking: The data is masked or replaced with harmless characters, rendering it unusable to unauthorized parties.
Additional Protection Against Common Attacks
Barracuda WAF-as-a-Service goes beyond identity theft protection. It can also identify patterns associated with other security risks, such as:
- Cloud Misconfiguration: Patterns that expose sensitive information stored in cloud platforms like AWS and Microsoft Azure.
- Web Server Errors: Patterns that reveal internal server errors, potentially aiding attackers in exploiting vulnerabilities.
- Database Errors: Patterns that indicate database errors, potentially providing attackers with insights into your database structure.
By combining identity theft protection with these additional features, Barracuda WAF-as-a-Service offers comprehensive application security.
Customizable Protection
You can configure exceptions for specific patterns to avoid blocking legitimate responses. The provided table lists predefined patterns for various identity theft data types:
Identity Theft Group | Pattern Name(s) |
---|---|
credit-cards |
|
social-security-numbers |
|
directory-indexing |
|
aws-meta-checks |
|
microsoft-errors |
|
oracle-errors |
|
php-errors |
|
postgres-errors |
|
mysql-errors |
|