DenyAll expands Web Application Security to the clients
Hackers also target Web applications through the PCs of connecting users. The goal remains to destroy or steal sensitive data from the targeted company. These attacks are based on a new generation of trojans and spyware, installed on the end user's machine without their knowledge, which insert themselves within the Internet browsers connecting to the applications. Zeus and Spyeye are the most famous examples of such "Man-in-the-Browser" malwares.
A firewall auscultating HTTP(S) traffic cannot secure the application in this kind of scenario. With its "Client Shield" module, rWeb 4.0 is the only WAF on the market capable of effectively protecting applications against "Man-in-the-Browser" attacks. Client Shield is an optional module of rWeb, which automatically installs an "agent" on the endpoint of the user connecting to the application. This agent's function is to control the normal execution of the browser, and to block any malware attempts to temper with it.
There are many advantages to this approach:
The benefits for organizations are the following:
Why use rWeb's Client Shield?