Banking Technology
  • NEWSLETTER
  • Home
  • News
  • Analysis
    • Back
    • Industry Comment
    • Features
    • Interviews
  • Publications
    • Back
    • Banking Technology Magazine
    • Supplements
    • Daily News at Sibos
    • Paybefore Magazine
    • Subscribe to Magazine
    • Request a Sample Copy
  • Intelligence
    • Back
    • White Papers
    • Case Studies
    • Survey Reports & Infographics
    • Podcasts
    • Videos
    • Webinars
  • Library
  • Awards
    • Back
    • Banking Technology Awards
    • PayTech Awards
  • Events
  • Jobs
  • Advertise
  • More
    • Back
    • About us
    • Contact us
    • Advertising / Media Kit
    • Editorial Calendar
    • FinTech Futures Newsletter
  • FinTech
  • BankingTech
  • PayTech
  • RegTech
  • WealthTech
  • LendTech
  • InsurTech


  • Home
  • News
  • Analysis
    • Back
    • Industry Comment
    • Features
    • Interviews
  • Publications
    • Back
    • Banking Technology Magazine
    • Supplements
    • Daily News at Sibos
    • Paybefore Magazine
    • Subscribe to Magazine
    • Request a Sample Copy
  • Intelligence
    • Back
    • White Papers
    • Case Studies
    • Survey Reports & Infographics
    • Podcasts
    • Videos
    • Webinars
  • Library
  • Awards
    • Back
    • Banking Technology Awards
    • PayTech Awards
  • Events
  • Jobs
  • Advertise
  • More
    • Back
    • About us
    • Contact us
    • Advertising / Media Kit
    • Editorial Calendar
    • FinTech Futures Newsletter
  • newsletter
  • FinTech
  • BankingTech
  • PayTech
  • RegTech
  • WealthTech
  • LendTech
  • InsurTech

bankingtech.com

bankingtech.com



Waratek wraps vulnerable Java code in security blanket

  • Written by FinTech Futures
  • 12th June 2014
  • submit to reddit
Brian-Web-215-x-323

Maccaba: legacy Java code is a huge problem for financial institutions

“According to industry sources, custom Java applications contain five to 10 security vulnerabilities per 10,000 lines of code, which is a huge problem since many of these programs are used by financial institutions and large enterprises to run key pieces of their business,” said Brian Maccaba, chief executive of Waratek.

Waratek Java Application Security effectively wraps the old code in a Java Virtual Machine, which Maccaba says “reduces the Java attack surface to a small well-defined space that allows us to monitor and protect against third party software vulnerabilities, internal threats and external attacks without making any changes to existing applications”.

The software operates at the JVM layer where it monitors every network packet, file system call and CPU instruction, while remaining transparent to both applications and network infrastructure. This also allows Waratek JAS to log/audit activity for compliance reporting, forensics and integration with security information event management systems

To protect applications against malicious activity including SQL Injection, abnormal file manipulation or unexpected network connections, Waratek JAS uses a small set of rules that provide broad coverage against attacks from outside the application and quarantine illegal operations inside the application. This approach also defends against Zero Day vulnerabilities since it traps the application behavior, independent of the threat vector, without having to wait for a patch to be coded, tested and implemented. A simple black list rule can be implemented to provide virtual patch protection against new vulnerabilities, without the need to stop the application or make any code changes.

To enable organisations to minimise the risk and operational overhead associated with applying critical application patches, Waratek provides “virtual patching” until updates can be installed. This capability not only enables controlled patching so updates can be properly tested, but also addresses legacy security threats. For example, third party Java code running in older applications may be end‐of-life and unsupported, leaving known vulnerabilities unpatched for months or years.

Tags: Cybersecurity, Financial Crime & Fraud Java, Waratek News

FinTech Futures

FinTech Futures

@FinTech_Futures


Leave a comment Cancel reply

To leave a comment login with your FinTech Futures account:

Log in with your FinTech Futures account

Or alternatively provide your name, email address below:

Your email address will not be published. Required fields are marked *


Magazine

Banking Technology February 2019 issue out now

1st February 2019

Banking Technology December 2018/January 2019 issue out now

5th December 2018

Banking Technology November 2018 issue out now

17th November 2018
view all

White Papers

White paper: The opportunities and data management considerations of hybrid cloud

12th February 2019

A guide to digital identity verification: the tech and trends

7th February 2019

Industry brief: FRTB and XVA – Addressing real-time regulatory and business needs with in-memory computing

1st February 2019
view all

Webinars

Webinar: defuse the ticking time bomb of data

8th February 2019

Live webinar: The ROI of AI – Converting conversational AI into revenue for banks

25th January 2019

Webinar: How to Kick-start Your Digital-First Banking Transformation

20th November 2018
view all


Events

Africa BFSI Innovation Summit

19th February 2019 - 20th February 2019

Webinar: The ROI of AI – Converting conversational AI into revenue for banks

20th February 2019

Global Private Banking Conference

21st February 2019
view all

Survey Reports

Infographic: the Italian payment landscape

4th February 2019

Infographic: the year of the crypto crash – 2018

  • 1
1st February 2019

Infographic: one year of open banking

11th January 2019
view all

Case Studies

Case study: 2ndQuadrant and tastyworks – boosting PostgreSQL database performance by 400%

13th February 2019

Case study: Isbank and FCase – fraud orchestration overhaul

23rd January 2019

Top ten banking tech case studies in 2018

27th December 2018
view all


Videos

Video: check out the PayTech Awards 2018 highlights!

7th February 2019

Video: fintech news weekly round-up – 4 February 2019

4th February 2019

Video: Banking Technology Awards 2018 highlights

1st February 2019
view all

Twitter

FinTech_Futures

Big deals and a Diamond. Top #fintech stories this week: bankingtech.com/2019/02/top-fi… https://t.co/OSEK0WGong

17th February 2019
FinTech_Futures

If you think your #fintech book should be in our library - get in touch! bankingtech.com/library/ https://t.co/hdCet8GmKF

16th February 2019
FinTech_Futures

To go boldly forth or why you should go hug your #innovation team: bankingtech.com/2019/02/to-go-… #fintech #finserv https://t.co/r5gC9669fC

16th February 2019
FinTech_Futures

#Fintech charms US state regulator into modelling: bankingtech.com/2019/02/fintec… #payments #bankingtech https://t.co/BI9IKnFMPT

16th February 2019
FinTech_Futures

TymeBank times South African launch for this month: bankingtech.com/2019/02/tymeba… #bankingtechnology #fintech #digital… twitter.com/i/web/status/1…

16th February 2019
FinTech_Futures

iSignthis muscles into Lithuania’s #paytech space with BBS acquisition: bankingtech.com/2019/02/isignt… #fintech… twitter.com/i/web/status/1…

16th February 2019
FinTech_Futures

Big banks bond with CommonBond for $750m lending spree: bankingtech.com/2019/02/big-ba… #funding #fintech #lendtech https://t.co/lAIsnXBPop

16th February 2019
FinTech_Futures

EU does cross-border #payments on the cheap: bankingtech.com/2019/02/eu-doe… #fintech #bankingtechnology #banking https://t.co/e8TccVMuca

16th February 2019

Newsletter

Sign up for the free daily newsletter and receive all the fintech goodness straight to your inbox.

EDITORIAL CALENDAR

Check out the upcoming editions of the Banking Technology magazine and the events it will be distributed at.

INTELLIGENCE

All the industry analysis, reports, white papers, webinars, infographics, videos and other contents in one place.

MEDIA PACK & ADVERTISING

Get your brand out there – explore commercial and advertising opportunities with FinTech Futures.

Fintech Futures

© BankingTech.com 2019. All rights reserved.

  • Cookie Policy
  • Privacy Policy
  • About us
  • Contact us
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X