<div style="text-align: center; margin-bottom: 20px;"><picture><source media="(min-width: 500px)" srcset="https://content2.stormwall.network/or/images/blog/new-http-acl-functionality.png" /><img alt="new-http-acl-functionality.png" height="664" loading="lazy" src="https://content2.stormwall.network/or/images/blog/new-http-acl-functionality.png" width="1200" /></picture></div>

<p>StormWall has integrated a new feature HTTP ACL into its cloud DDoS protection services. It will help improve the quality of traffic filtering of a wide range of Internet applications, from ordinary websites and web services to applications running through the API, applications from mobile devices, various gadgets and other systems connected to the Internet.</p>

StormWall has integrated an HTTP ACL feature into its services. It will improve the quality of traffic filtering for a wide range of Internet applications.

New HTTP ACL Feature | StormWall

<p><em>April 24, 2022</em></p>

<h1>The new HTTP ACL functionality will allow you to filter HTTP traffic more accurately</h1>

<div class="events-post-page__wrapper">
<p>StormWall has integrated a new feature HTTP ACL into its cloud DDoS protection services. It will help improve the quality of traffic filtering of a wide range of Internet applications, from ordinary websites and web services to applications running through the API, applications from mobile devices, various gadgets and other systems connected to the Internet.</p>

<p>The HTTP ACL provides numerous options for controlling access to a protected Internet resource: the functionality allows not only to allow or block it, but also to perform quite complex checks comparing information from HTTP packet headers and the sequence of client requests to this resource.</p>

<div style="text-align: center; margin-bottom: 20px;"><picture><source media="(min-width: 500px)" srcset="https://content2.stormwall.network/or/images/blog/new-http-acl-functionality.png" /><img alt="new-http-acl-functionality.png" height="664" loading="lazy" src="https://content2.stormwall.network/or/images/blog/new-http-acl-functionality.png" width="1200" /></picture></div>

<p>HTTP ACLs in StormWall security services are not simply access control lists (ACLs), but sets of fairly complex, multivariate filtering rules. In fact, this is part of the functionality of WAF, which allows you to accurately and precisely edit the HTTP traffic of certain Internet resources: on the one hand, to adapt protection to their individual characteristics, on the other - to take into account the risks of DDoS attacks that can be made on them.</p>

<p>The benefits of the new feature will be appreciated by almost all StormWall customers. It will be especially useful for those of them who need to protect a complex application that works not only with browsers, but also with other software clients. In particular, it will increase the quality of protection of banking applications, multimedia services, online cinemas, IP TV services and other systems whose traffic cannot be effectively filtered with &quot;traditional&quot; types of control. The new functionality allows you to tune in to their traffic and validate it in an individual way.</p>
</div>

The new HTTP ACL functionality will allow you to filter HTTP traffic more accurately

<p>According to the study, the number of DDoS attacks on the financial, retail, gaming and education sectors increased significantly in 2021 compared to 2020.</p>

The experts found that the most frequently attacked industries in 2021 were the financial sector (43%), retail (31%) and gaming (18%).

2021 DDoS Report: the Most Attacked Industries | StormWall

<h1>In 2021, DDoS attacks were most often directed at the financial sector, retail and the gaming industry</h1>

<p><em>31 january 2022</em></p>

<p dir="ltr">StormWall experts have analyzed the indicators of DDoS attacks on companies in 2021. The experts found that the most frequently attacked industries last year were the financial sector (43%), retail (31%) and gaming (18%). Also last year, hackers attacked the telecommunications sector (4%), the education sector (3%) and others (1%). According to the study, the number of DDoS attacks on the financial, retail, gaming and education sectors increased significantly in 2021 compared to 2020. StormWall customer data was used for the analysis.</p>

<p>&nbsp;</p>

<p dir="ltr">According to experts, the number of DDoS attacks on the financial sector in 2021 increased by 84% compared to the previous year. The financial sector is always attractive for hackers and they are constantly looking for new tools to organize cyberattacks. In 2021, new botnets became such tools, with the help of which attackers were able to organize attacks on financial organizations with a capacity of up to 1.2 Tbit/s. The number of DDoS attacks on online retail increased by 75% in 2021 compared to 2020, with August and November being the most attacked months. The number of DDoS attacks on retail in August 2021 increased by 62% compared to the same period last year, and the number of attacks in November 2021 increased by 330% compared to November 2020, due to the incredible activity of hackers during Black Friday last year.</p>

<p>&nbsp;</p>

<p dir="ltr">The gaming industry was also hit hard by hackers last year. Experts compared the indicators of 2021 and 2020 and found that hackers&#39; interest in gaming companies increased significantly last year. The number of DDoS attacks on the gaming industry increased by 62% in 2021 compared to the previous year. To disable the resources of gaming companies, hackers used the most advanced tools for organizing attacks. The maximum capacity of DDoS attacks on the gaming industry has reached 2 Tbit/s, which is an absolute record in the history of cyberattacks. The number of DDoS attacks on the education sector has increased by 36% in 2021 compared to 2020, with most attacks organized by students last year.</p>

<p>&nbsp;</p>

<p dir="ltr">&quot;In 2021, the number of DDoS attacks has increased significantly compared to 2020. The problem is that cybercriminals have become more inventive, they use new tools to organize DDoS attacks, such as botnets, and it is difficult for companies to stop a powerful attack on their own. Attackers have also learned to combine botnets to make the attack even more destructive. In 2021, there were many attacks on the financial sector, although hackers attacked the entertainment sector most frequently in 2020. DDoS attacks are expected to target the financial, retail, telecom, and medical sectors in 2022 due to the ongoing pandemic and challenging economy. According to preliminary forecasts, this year could see an increase in peak attack performance to 2.5-3 Tbit/s,&quot; said Ramil Khantimirov, CEO and co-founder of StormWall.</p>

In 2021, DDoS attacks were most often directed at the financial sector, retail and the gaming industry

<p><img alt="" loading="lazy" src="https://content2.stormwall.network/or/articles/edu/why-stress-tests-so-important.jpg" /></p>

<p>Many companies that have protection against DDoS attacks believe that they are now invincible. In fact, that&#39;s not entirely true, to say the least. Even if your protection really works after being connected and has successfully repelled several subsequent DDoS attacks, it is by no means a fact that it will also repel attacks that may occur today or tomorrow.</p>

Many companies that have protection against DDoS attacks believe that they are now invincible. Learn why regular stress tests are so important.

Stress Tests Against DDoS Attacks | StormWall

<p><span>19 May 2022</span></p>

<h1>Why stress and other DDoS protection tests are so important?</h1>

<div class="events-post-page__wrapper">
<p>Many companies that have protection against DDoS attacks believe that they are now invincible. In fact, that&#39;s not entirely true, to say the least. Even if your protection really works after being connected and has successfully repelled several subsequent DDoS attacks, it is by no means a fact that it will also repel attacks that may occur today or tomorrow. And if you are really interested in reliably protecting your Internet resources from DDoS attacks, you should make sure that you perform systematic checks that will allow you to understand whether the protection you have chosen is working at the moment.</p>

<p><img alt="" loading="lazy" src="https://content2.stormwall.network/or/articles/edu/why-stress-tests-so-important.jpg" /></p>

<p>Stress tests of your Internet resources are an effective tool for such purposes. They allow you to learn a lot of new and interesting things about the level of their protection:</p>

<ul>
	<li>What can happen to your Internet resource in case of a real attack,</li>
	<li>are the provider&#39;s specialists ready to adjust their protection to the specifics of your resources and your requirements,</li>
	<li>how does the support of the anti-DDoS services you use work,</li>
	<li>what happens if the attack starts on Friday night or Sunday morning - will someone from the external provider help you,</li>
	<li>do you have access to the security settings and what can you do with them,</li>
	<li>what is the actual and not the stated capacity of the filtering system of your protection service,</li>
</ul>

<p>and so on.</p>

<p>It is especially important to check DDoS protection if you do not purchase anti-DDoS services directly from your provider, but, for example, from its partner. The fact is that companies that do not specialize in providing security services sell access to the web interface of some solutions without really understanding how these solutions work. This is the reason for almost all the possible problems that can occur when it comes to protection.</p>

<p>However, there is nothing wrong with an Internet provider reselling its partner&#39;s protection services. But it is important to understand in what quality and to what extent you will be supported in case of an attack: Do you have a direct connection to the anti-DDoS service provider and its support service, does the direct seller of anti-DDoS services have its own DDoS protection specialists, etc. It often happens that the protection is offered only on paper, but in reality it either does not work at all or turns out to be ineffective.</p>

<p>The recommendation in this case is simple: first of all, as a customer of anti-DDoS services yourself, you need to clearly understand what and how you are protecting yourself. To do this, you need to:</p>

<ol>
	<li>Create a list of resources that need to be protected: Websites, web applications, servers, IP addresses and services associated with them, networks, etc.</li>
	<li>Understand what exactly is on these resources or what works on their basis.</li>
	<li>Determine what kind of protection is needed to protect these resources from DDoS attacks:
	<ul>
		<li>Is it enough to filter packets at the L3 and L4 levels, or is traffic analysis required at the web application (L7) level,</li>
		<li>to evaluate which resources can be protected by exposing the SSL private keys and which cannot. In particular, it is not possible to disclose the keys of applications that enable the exchange of confidential (including personal) data, e.g. banking, processing and other applications for which it is necessary to comply with the requirements of the payment system standard PCI DSS.</li>
	</ul>
	</li>
</ol>

<p>&nbsp;</p>

<p>By creating a list of resources and protection requirements, you can greatly simplify both stress testing and interaction with an anti-DDoS service provider and its partner.</p>
</div>

The new HTTP ACL functionality will allow you to filter HTTP traffic more accurately

Read also articles: