January 24, 2023
Posted by ReadMe API 6 days ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
Anti-Automation & Bot Protection | Automated Clients | Automation detection has been improved | Composite | Composite |
January 17, 2023
Posted by undefined 12 days ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
WAF & OWASP Top Threats | Code Injection | The policy now covers the Exchange Zero-Day vulnerability (CVE-2022-41040 and CVE-2022-41082) | Block | Block |
January 04, 2023
Posted by undefined 25 days ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
WAF & OWASP Top Threats | Open Redirect | This policy has been updated to detect and ignore false positives created by misconfigured sites | Block | Block |
Edge Rules | Tags Generating Rules | Introducing new reserved tags legitimate activity and malicious activity | Tag | Tag |
WAF & OWASP Top Threats | SQL Injection | This policy has been updated to improve the detection of SQL comment sequences | Block | Block |
WAF & OWASP Top Threats | XSS Attack | This policy has been updated to reduce false positives and now includes additional XSS filters detection | Block | Block |
December 27, 2022
Posted by undefined about 1 month ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
WAF & OWASP Top Threats | Local File Inclusion | The policy now covers additional methods of detecting Postgress, Apache, Logs, Boot, and Xampp patterns | Block | Block |
WAF & OWASP Top Threats | Sensitive Data Exposure | The policy now covers additional methods of detecting Postgress, Apache, Logs, Boot, and Xampp patterns | Block | Block |
WAF & OWASP Top Threats | Code Injection | The policy now covers additional Download/Upload injections | Block | Block |
December 20, 2022
Posted by undefined about 1 month ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
WAF & OWASP Top Threats | SQL Injection | This policy was updated to detect abusing JSON-Based SQL injections | Block | Block |
November 14, 2022
Posted by ReadMe API 3 months ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
IP Reputation | Traffic From Hosting Services | This policy has been updated with additional hosting services | JS Validation | JS Validation |
WAF & OWASP Top Threats | Web Shell Execution Attempt | This policy now covers additional PHP, ASP.NET, and Java execution methods | Block | Block |
November 08, 2022
Posted by ReadMe API 3 months ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
WAF & OWASP Top Threats | Obfuscated Attacks and Zero-Day Mitigation | Detection of injection attempts has been improved to reduce false-positives | Block | Block |
Protocol Validation | Prevent Malformed Request Methods | The policy has been updated to detect illegal range headers | Composite | Composite |
WAF & OWASP Top Threats | Common Web Application Vulnerabilities | The policy has been revised to reduce false-positives | Block | Block |
November 02, 2022
Posted by ReadMe API 3 months ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
Edge Rules | Tag Generating Rules | Introducing Tag Generating Rules, which are meant to simplify the handling of your rules and make their integration with the heuristics system simpler by defining registered/logged-in clients and login pages | NA | Tag |
October 12, 2022
Posted by ReadMe API 4 months ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
Anti-Automation & Bot Protection | Forced Browser Validation on Traffic Anomalies | The policy now detects heavy clients on Ajax endpoints | Composite | Composite |
Behavioral WAF | Probing and Forced Browsing | The policy now detects site mappers and heavy clients on Ajax endpoints | Composite | Composite |
October 06, 2022
Posted by ReadMe API 4 months ago
Ruleset | Policy | Description of Update | Previous Action | New Action |
---|---|---|---|---|
Allow Known Bots | Outbrain Bot | Outbrain bot was added to the Known Bots ruleset | NA | Allow |
Allow Known Bots | Comscore Crawler | Comscore crawler was added to the Known Bots ruleset | NA | Allow |
Protocol Validation | Prevent Malformed Request Methods | This policy has been updated to detect restricted Accept-Encoding header | Block | Composite |