New improvements at BitNinja - HTTPS solution
Nikoletta Szabo

New improvements at BitNinja - HTTPS solution

In this article, we would like to summarize our recently released developments, which impact the daily life of our clients. First of all, ... TheHTTPS Captcha: If you enable this feature in your agent, BitNinja will be able to present a Captcha on HTTPS. This will make the IP removal from our greylist possible just by one click not only on HTTP protocol but also on HTTPS. What results can be achieved by using it? Less complaint from your customers about the failure of removal, resulting in a lower load on your support staff Lower false-positive rate How does it work? T...
Read more
1.16.1 Version-645% performance improvement for SenseLog
Nikoletta Szabo

1.16.1 Version-645% performance improvement for SenseLog

This week we released a new version of BitNinja, which contains many significant performance improvements. But what are the changes exactly? We limited the SS usage of our Outbound WAF module. It will only use SS if a malicious request is caught. Its result will be a significant drop in BitNinja's CPU usage. Our SenseLog module has gone under serious optimization. From now on, it only scans logs stored from the last day.This way we can eliminate its slow loading and operation. Great news, this development increased its performance with 645%. Brilliant, isn't it? Multilingual texts...
Read more
New versions released
Eniko Toth

New versions released

Eniko Toth
In the last 2 weeks, we released 2 new versions of BitNinja. Let’s take a look at the novelties:    BitNinja version 1.12.10: CaptchaChallenge pages now use 403 status code instead of 200. Good bots will notice it and leave it. This means, that the good bots will recognize our captcha pages, and won’t walk around them. Causing that our already low false-positive rate will be further reduced. WordPress wp-login filter threshold increased to 100 attempt. Our log analyser module (SenseLog) perceives a wordpress page update as a wp-login.php request, so we increa...
Read more
Ransomware: what is it and why is it dangerous?
Nikolett Hegedüs

Ransomware: what is it and why is it dangerous?

Nikolett Hegedüs
Let’s start with the definition. Ransomware is a kind of malware that installs itself onto an unprotected computer, encrypts some files, and asks for a certain amount of money for decryption or to not publish certain sensitive information online. It is called a denial-of-access attack and it can be very frustrating because you know that the files are there but you can’t access them.   There are two types of ransomware attacks: Simple ransomware or lockscreen, where the system is locked. The attack is more serious if the files are really encrypted. It is called a file co...
Read more
Release note on 1.12.5 version
Nikoletta Szabo

Release note on 1.12.5 version

Nikoletta Szabo
Today (2016, 07 Nov) we released the newest version of BitNinja. Let’s see what has changed: SenseLog supervisors can be disabled in /etc/bitninja/SenseLog/config.ini CaptchaHttp now checks remote address at connection time From now on the BitNinja captcha is able to determine the performer of the connection in the exact moment when the connection has been established. DosDetection LocalIp filter undefined interface address bug fixed Turkish translation added to CaptchaHttp You can configure your own captcha with the use of our documentation site. Joomla Brute for...
Read more
Pi-Ninja-Security for RaspberryPi
Nikoletta Szabo

Pi-Ninja-Security for RaspberryPi

Nikoletta Szabo
The real geek escaped from one Ninjastic developer of ours lately, and in his freetime he decided to try to install BitNinja on his Raspberry Pi 2 model B. And guess what happened? He was successful! What is more, BitNinja also captured some attacks with its port honeypot module. Now, let me describe you the process of the installation and what he exactly found. So the tool is Raspberry Pi 2 model B, and he uses Linux: Raspbian GNU/Linux 8 on it.   The process: Bitninja is not available for arm architecture, so he was not able to install it from the Bitninja debian reposit...
Read more

Our port Honeypot module is out of Beta

Nikoletta Szabo
We are happy to announce that our developers officially released the port honeypot module. The port honeypot is a perfect way to fight against zero-day attacks and many of our customers are satisfied with it because the module catches and entraps hackers who attempt to break into or scan their servers making them aware of the incoming malicious traffic. The module sets up 100 honeypots chosen randomly from the 1000 most commonly used ports and is able to detect malicious port scanning conducted by hackers.For example, it gets installed on a port where usually there should not be in...
Read more

New feature on the dashboard to customize your account

Nikoletta Szabo
We have released a brand new feature on the user dashboard, which has been highly anticipated by most of our customers, because it will greately ease their job. From now on, you can add more users to the same dashboard, who will be able to access different settings. As one of the core values of our company is simplicity, this freshly-made feature is also a child’s play to handle. If you log into your dashboard, you will see the new Users menu point on the left hand side. Just click on the Add User button, and the clean-cut and easy-to-handle page appears....
Read more

New CloudFlare Integration

Nikoletta Szabo
Our CloudFlare integration has been released not so long ago, giving new opportunities and more automated, flawless service to our customers. Our developers worked this project out, because many of our ninja clients use CloudFlare in parallel with our services. The aim of this article is to describe why we needed this development and also to give you additional information about this new feature. The CloudFlare integration was primarily designed for those of our clients who use CloudFlare.     How does it work? Being a CDN (content delivery network) provi...
Read more

How to protect your company and yourself from insulters?

Nikoletta Szabo
There’s one thing in IT security that cannot be patched as many other vulnerabilities: human beings. And as far as the ‘human factor’ is much of a concern, it is our responsibility to educate and protect our employees, customers and businesses from hacks. Data Breach and Social Engineering   Data breach stands for the unsolicited phishing and stealing of companies and people’s most treasured data, such as personal information or bank account credentials. According to a research conducted by IBM there has been a 23% increase in the amount of data stolen from vulnerable an...
Read more