Radware Provides Customers Protection From Heartbleed Vulnerability

Radware Offers Emergency Signatures and Mitigation System Against Recent Exploit


MAHWAH, N.J., April 14, 2014 (GLOBE NEWSWIRE) -- Radware® (Nasdaq:RDWR), a leading provider of application delivery and application security solutions for virtual and cloud data centers, announced its Security Operation Center with the assistance of Radware's Emergency Response Team (ERT) have provided full protection for its customers in response to the OpenSSL "Heartbleed" vulnerability (CVE-2014-0160).

To help its customers protect their businesses from information leakage, Radware suggests the following steps should be employed:

  • As part of Radware's Attack Mitigation System (AMS) and Attack Mitigation Network (AMN), customers using OpenSSL for Web applications are advised to use Radware's SSL-based attack mitigation solution, DefenseSSL. Current customers using DefenseSSL can continue to protect HTTPS applications without the need of an update.
     
  • To help block exploits of the OpenSSL vulnerability, Radware has created several vulnerability signatures that can be used by DefensePro®, Radware's real-time, behavioral based attack mitigation device. As an additional measure of security, Radware's ERT can also provide security assistance in real-time.
     
  • Radware advises its customers to employ protection tools that match their exact requirements and comply with security assessments as Radware's ERT has found recent protection tools could possibly cause both false negatives and false positives.

"Radware has taken a strong and defensive posture against this recent threat, making DefenseSSL available to help protect against this vulnerability," says Gabi Malka, chief operating officer, Radware. "This SSL-based solution uses sophisticated network behavioral analysis mechanisms that can protect against Heartbleed and can be used to protect Web based services that use SSL. We will continue our strong commitment to our customers by continually monitoring this situation in order to provide any necessary protection and support."

About Radware

Radware (Nasdaq:RDWR), is a global leader of application delivery and application security solutions for virtual and cloud data centers. Its award-winning solutions portfolio delivers full resilience for business-critical applications, maximum IT efficiency, and complete business agility.

Radware's solutions empower more than 10,000 enterprise and carrier customers worldwide to adapt to market challenges quickly, maintain business continuity and achieve maximum productivity while keeping costs down. For more information, please visit www.radware.com.

Radware encourages you to join our community and follow us on; LinkedIn, Radware Blog, Twitter, YouTube, Radware Connect app for iPhone® and our new security center DDoSWarriors.com that provides a comprehensive analysis on DDoS attack tools, trends and threats.

©2014 Radware, Ltd. All rights reserved. Radware and all other Radware product and service names are registered trademarks or trademarks of Radware in the U.S. and other countries. All other trademarks and names are property of their respective owners. 

This press release may contain statements concerning Radware's future prospects that are "forward-looking statements" under the Private Securities Litigation Reform Act of 1995. Statements preceded by, followed by, or that otherwise include the words "believes", "expects", "anticipates", "intends", "estimates", "plans", and similar expressions or future or conditional verbs such as "will", "should", "would", "may" and "could" are generally forward-looking in nature and not historical facts. These statements are based on current expectations and projections that involve a number of risks and uncertainties. There can be no assurance that future results will be achieved, and actual results could differ materially from forecasts and estimates. These risks and uncertainties, as well as others, are discussed in greater detail in Radware's Annual Report on Form 20-F and Radware's other filings with the Securities and Exchange Commission. Forward-looking statements speak only as of the date on which they are made and Radware undertakes no commitment to revise or update any forward-looking statement in order to reflect events or circumstances after the date any such statement is made. Radware's public filings are available from the Securities and Exchange Commission's website at www.sec.gov or may be obtained on Radware's website at www.radware.com.



            

Contact Data