Blogs

Could your web app be under attack as we speak? Cyber attackers and automated bots are moving in the shadows, quietly looking for weak...

On March 24, 2025, WIZ Research disclosed critical vulnerabilities in the Kubernetes Ingress NGINX Controller that allow unsanitized user...

Payswiff Technologies' perspective and insights after one year with open-appsec WAF

In this blog we announce the availability of significant enhancements for managing the custom-resource-based configuration of open-appsec.

Developers have a lot on their plates, juggling feature development, bug fixes, and tight deadlines. Sadly, security often becomes an...

New devices, cloud services, and third-party applications connect to your network every single daily. Each new system and tool acts as a...

Unlike external attacks that try to break in, insider threats come from employees, contractors, or compromised accounts that already have...

"Keep your friends close and your enemies closer." Maybe this statement is uncomfortably close to the truth of insider threats—can you...

In this blog, we explain how to deploy Envoy with open-appsec WAF on Docker using docker-compose and provide insights about the integration.

This blog explains how to get the best threat prevention results and lowest false positive rate from open-appsec contextual ML engine.

In this blog, we announce the (beta) release of a new docker-compose-based deployment option.

With more than a half thousand NPM deployments protected with open-appsec WAF, we are moving this integration to "General Availability"!