Barracuda Adds AI-Based Automation to Its Web Application Security Platform
Barracuda Networks Inc. today released Cloud Application Protection 2.0, a new version of its software for securing websites and web applications, which can automatically adjust its configuration settings as needs change.
Barracuda is a leading manufacturer of cybersecurity software and appliances. The company traded on the Nasdaq until 2017, when it was acquired by private equity firm Thoma Bravo in a $ 1.6 billion deal.
Barracuda’s Cloud Application Protection platform blocks malicious traffic to websites and software-as-a-service applications, while also providing functionality to defend their application programming interfaces. The platform is the company’s entry into a product category expected to double in uptake within two years. According to a Gartner Inc. study cited by Barracuda, more than 30% of web applications will use cloud-based web applications and API protection software by 2023, compared to less than 15% today.
Cloud Application Protection 2.0 brings a so-called auto-configuration engine to manage the platform’s cybersecurity settings. These settings determine, among other things, when web traffic is considered malicious and under what circumstances requests should be blocked. The new automatic configuration engine uses machine learning to adjust how the platform filters traffic as operational requirements change.
There are many events, such as changes to a company’s infrastructure, that require one or more cybersecurity settings to be changed. The larger the company, the more custom settings there are and the more frequently they need to be updated. By automating the task, Barracuda’s automatic configuration engine can theoretically reduce the cybersecurity risks associated with human error.
The other major addition in today’s update is a client-side attack blocking mechanism. In client side attacks, cyber criminals download malicious scripts to user’s browser to steal data in the form of credit card details on websites they visit. Since the scripts run in users’ browsers and do not directly target websites, they can be difficult to detect. Barracuda says Cloud Application Protection 2.0 adds features that detect client-side malware attempts to compromise a company’s web pages and notify administrators.
The other enhancements announced today are designed to make the platform easier to manage. Cloud Application Protection is now available in a containerized version, which should make it easier to connect to applications created using software containers. Barracuda has also added an integration that will allow Microsoft Corp customers. View Cloud Application Protection security alerts in Microsoft’s Azure Sentinel breach detection platform interface.
Azure Sentinel integration also automates some common security operations. Organizations can connect the service to Cloud Application Protection and automatically intervene when the latter platform detects a possible cyberattack against a web application.