New DDoS attack techniques and trends, including AI, application-level attacks, and cloud vulnerabilities, render traditional DDoS security inadequate against modern attacks.
At the same, DDoS attacks have increased by 94% in the last year, after rising by 48% the prior year. There has been an increase in politically motivated attacks, as well as large-scale tsunami campaigns.
Legacy DDoS solutions are often siloed from the rest of enterprise security and require independent management and monitoring. This often results in missed attacks and slow response times. Automating and distributing DDoS intelligence across the entire enterprise offers the strongest possible DDoS protection.
In partnership with Radware, Check Point has integrated DDoS security into its Infinity Platform to provide unprecedented visibility and protection. Intelligence from Check Point’s Quantum DDoS Protector appliances now extends across the entire enterprise network – even in locations that do not have DDoS appliances.
Teams can now streamline DDoS operations across their entire network. Network admins and security operations teams can establish effective policies to automatically block DDoS attacks in real-time or to receive alerts for immediate threat response.
Infinity Platform: Security Automation and Collaboration
Check Point’s Infinity Platform delivers threat prevention across the data center, network, cloud, endpoint, mobile and IoT. It provides unified management and security operations and leverages global, real-time threat intelligence to prevent cyber-attacks. Automated threat response is managed and orchestrated with Infinity Playblocks.
Playblocks offers out-of-the-box security and operational playbooks that are automatically triggered by the connected security products upon attack detection and operational related incidents. This prevents future attacks while keeping the SOC team alerted and informed.
Automated, cross-vector preventative actions immediately contain threats, prevent damage, mitigate lateral spread, and reduce operational overhead. The collaborative Playblocks approach is aimed at breaking the security silos that have resulted in manual policy management and slow incident response.
Unified DDoS Event Logging & Visibility
The new DDoS integration automatically sends updates of Quantum DDoS Protector logs to the entire Check Point network security ecosystem. These operational, security, and authentication events are reported in the Infinity Portal. In addition, messages are sent to management stations and specific users.
These actions provide administrators with comprehensive, unified visibility of the DDoS attack landscape in the same Infinity dashboard as the entire network and security stack.
Quicker & Wider DDoS Attack Response
The Infinity integration also triggers Quantum DDoS Protector devices to share information across an organization’s firewalls to proactively block destructive cyberattacks in real time from any firewall within the organization — even in branch locations where a DDoS protector appliance is not deployed. For example, threat alerts can trigger Playblocks to automatically carry out preventative actions, such as IP blocking, across the entire network.
Upgrade Your DDoS Protection
To learn more, watch a replay of our webinar.
Schedule a Demo