Are you currently experiencing an attack?
Are you currently experiencing an attack?
Coinberry (coinberry.com) is a crypto trading platform in Canada. As a large financial platform that has exceeded $1 billion in trading volume in a prominent market, it is a conspicuous target for attackers.
“Security is a number-one concern for any large site,” said Coinberry DevOps engineer Ishan Patel.
“Up until last year, we were using AWS WAF and AWS Shield. But we had some DDoS incidents, and I realized that we were paying for something that we didn’t have control over.”
“AWS Shield protects against DDoS, and AWS WAF protects against some other attacks. But they have limited customization, with very few options.”“And you cannot have direct access to the traffic logs. You have to send the logs to an S3 bucket, and then get them from there. Even though there are some queries available, it’s still a headache, and it’s not ideal. We had very limited visibility.” He continued:
“Whenever an incident happens, the AWS dashboard only shows its time and duration, and what it blocked. It has very limited information. So we’d have to go back into the logs and track those things down, which isn’t easy. And even when we upgraded, the problems remained.”At this point, Coinberry decided to seek a different security solution. A partner recommended Reblaze: a cloud-native WAAP platform that’s fully integrated with AWS.
“We found that the Reblaze solution was less expensive, it has more options for customization, and it has a good dashboard.”It also provides security technologies that AWS WAF and AWS Shield do not, such as biometric human/bot identification, advanced rate limiting, flow control, account takeover prevention, and more. “It looked good to us, so we decided to switch.” Since deploying Reblaze, Coinberry now has full control over incoming traffic. Mr. Patel said,
“It already came with good rules and signatures, and we can customize it even further—much more than AWS.”Reblaze’s traffic transparency is a key feature for Coinberry; the dashboard shows full details of all incoming traffic in real time, with the ability to drill down into specific time periods, all the way down to individual requests. Mr. Patel explained, “The dashboard is the most useful thing for me, where I can see day-to-day activities. The second most useful thing is the weekly reports. We can just walk through the reports and see if there were any flags or unusual activities.”
“If I have any questions, I can quickly raise a support ticket and they’ll explain what is going on. I feel that there’s always someone standing behind us, ready to help us.”
“There have been attacks where we didn’t even know about them until Reblaze informed us. The support team would say something like, ‘There is a DDoS from these IPs, we’ve already blocked it. If you want to see it in the logs, here is a query string.’”“At other times, Reblaze has come to us and said, ‘OK, there was an incident and we need to modify the rules to protect you guys.’ It’s nice to have someone who looks after you pro-actively like that.”