Waf Charm


Press release

New Enterprise-Grade WafCharm Release Eases Key Cybersecurity Burden Revealed by CSC 2021 Survey, Offers U.S.-based Customer Service

With 72% of developers overwhelmed by WAF rules, WafCharm SaaS uses AI to auto-optimize AWS WAF rule operations making WAF easy for improved web and API protection

TOKYO – November 4th, 2021 – Cyber Security Cloud, Inc. (CSC), the world’s leading innovator in cyber threat intelligence and AI-driven web security, today announced a major release of WafCharm, the SaaS that automates and optimizes AWS WAF rule operations to help address web-related cyber attacks against business and critical government infrastructure increasing worldwide. WafCharm eliminates frequent mistakes and eases the burden of complex WAF rule creation and modification shouldered by developers. The release is an enterprise-grade, production-ready, affordable SaaS now supported by U.S.-based customer service representatives.

Survey Reveals Cloud and Web Developers “Overwhelmed” by Key Cybersecurity Burden

A well managed WAF, or web application firewall, prevents web-based attacks at the application layer and protects against exploits directed at application programming interface (API) vulnerabilities. Software developers and security engineers can tune WAF rules to block malicious traffic from entering a site and can prevent data from being extracted as a result of an intrusion that finds a way through.
A recent 2021 CSC survey of developers found that almost three-quarters, 72%, at all WAF skill levels said they are overwhelmed with WAF rules and conditions—and a telling 71% of WAF experts said the same thing. A stunning 94% of developers are interested in automated managed rules for WAF operation, instead of managing the rules themselves.
“Effective WAF operation isn’t easy to figure out, even for cloud experts, but it’s critically necessary to protect applications and data,” said CSC CEO Toshihiro Koike. “Recently, WAF operation has become one of the most talked about topics in Japan. We’re confident that CSC’s U.S. customers will be extremely satisfied with WafCharm, which is used by the Chief Information Security Officer (CISO) of Japan, who rightfully demands consistent, high quality services.”

Among the developers surveyed, 85% said that their own team or their boss was typically held responsible for successful cyber attacks. And the stress they experienced was real: Over a third reported developing unhealthy habits from the impact of managing cloud or web applications, including drinking more alcohol, oversleeping, fighting more with family or friends, grinding their teeth at night, or overeating and eating unhealthy foods.
“Using WafCharm can reduce the stress, frustration, and blame that teams experience in a very concrete way,” added Koike. “It solves a major, real-world pain point. Companies won’t have to designate a security engineer just for managing WAF operation. And we’ve never had a case where a customer canceled WafCharm due to dissatisfaction. With this major release, I am very much looking forward to U.S. customers using WafCharm and experiencing the superb quality of the product. WAF has become an indispensable part of cybersecurity strategy for businesses of every size and across every vertical, and optimizing its rules is essential to its successful use.”

Enterprise-Grade Release Offers Ease of Use, U.S.-Based Reps and Affordable Pricing

While CSC headquarters is located in Tokyo, with this release, the company is now offering U.S.-based customer service representatives. Affordable pricing is tiered for individuals, SMBs and enterprises, and easy payment options include credit card or invoice payment. Customers can sign up online with a 30-day free trial.
WafCharm only takes a few minutes to implement, then all AWS WAF operations are supported, including the handling of new vulnerabilities that surface around the world and may impact customer deployments anywhere. WafCharm is built for ease of use, offering:

Easy installation and operation — It’s not necessary to install any special equipment or switch a DNS. WafCharm automatically selects the optimal rules/signatures*, but allows customers to fix those that they do not want changed automatically.

Optimal protection for everyone — For any deployment leveraging AWS WAF, Wafcharm enables automated selection of optimal rules/signatures from detection status*.

Better security with hundreds of signatures — Since there is a possibility of leakage with limited numbers of rules, WafCharm rematches access data with hundreds of rules/signatures; attack sources identified by rematching are blacklisted automatically.

Robust reporting and notifications — Via AWS Kinesis Data Firehose, S3 and Lambda, WafCharm support can help customers generate reports from the WafCharm management screen.

*For AWS WAF Version 1 only

WafCharm is the only service on the market that automatically builds, tests and tunes AWS WAF rules, and continuously defends against zero-day threats—while leveraging one of the most sophisticated threat intelligence and research teams in the world. WafCharm cyber threat intelligence analytics employ extremely fast vulnerability response speeds.

About Cyber Security Cloud Inc. (CSC)

Cyber Security Cloud’s mission is to create a secure cyberspace that people everywhere can use safely. In more than 70 countries, CSC provides web application security services that leverage the most effective cyber threat intelligence and AI-driven security technology available. As one of the very few Amazon Web Services (AWS) WAF Managed Rules Sellers in the world certified by AWS — the cloud giant that holds almost half of the global cloud market share — CSC uniquely optimizes and automates rules best suited to each customers’ AWS deployments as new cyber threats emerge. CSC also offers its powerful WAF solution for Microsoft Azure and other clouds. Leading cybersecurity improvements worldwide, CSC continues to develop and refine award-winning technologies and security solutions that contribute to the information revolution.