Release Notes of Cloudbric Rule Set for AWS WAF- Cloudbric

Console

KR
JP

Free Trial

WAAP

Public Cloud Security

ZTNA

Security Apps

CTI

Cloudbric Managed Rules for AWS WAF Release Notes

Cloudbric Managed Rule Groups update information for AWS WAF that you can subscribe through AWS Marketplace. To learn more about or subscribe to the Cloudbric Managed Rules, click each of the product buttons below.

Update 2024-08-23

Products: API Protection

Rule Name: ALL

Note: New Managed rule group, 'API Protection' released.

Provides security against the OWASP API Security Top 10 Risk by establishing a defense system against known API attacks and providing validation and protection for XML, JSON, and YAML data.

Update 2024-07-08

Products: OWASP Top 10 Rule Set

Rule Name: Cloudbric_ExtensionFiltering, Cloudbric_StealthCommanding_Execute

Note:

'Cloudbric_ExtensionFiltering' rule added to block access to file extensions that can be of risk if exposed on the web server.

Edited the rule name, 'Cloudbric_StealthCommanding_Execute'

Update 2024-06-24

Products: Anonymous IP Protection

Rule Name: ALL

Note: New Managed rule group, 'Anonymous IP Protection' released.

Blocks traffic originating from Anonymous IPs.

Anonymous IP traffic refers to the traffic originating from VPNs, Data Centers, DNS Proxies, Tor Networks, Relays, and P2P Networks.

Update 2024-04-30

Products:OWASP Top 10 Protection, Malicious IP Protection, Tor IP Protection, Bot Protection

Rule Name: ALL

Note:

Cloudbric Rule Set rebranded as Cloudbric Managed Rules.

- OWASP Top 10 Rule Set - Rebranded as OWASP Top 10 Protection

- Malicious IP Reputation Rule Set - Rebranded as Malicious IP Protection

- Tor IP Detection Rule Set - Rebranded as Tor IP Protection

- Bot Protection Rule Set - Rebranded as Bot Protection

Update 2024-01-19

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set, Tor IP Detection Rule Set, Bot Protection Rule Set

Rule Name: ALL

Note: Expanding the region for service provision following the new AWS Regions launched on March 09, 2023.

Created Rule group in new AWS Region: Tel Aviv (il-central-1)

Update 2023-12-11

Products: Malicious IP Reputation Rule Set, Tor IP Detection Rule Set, Bot Protection Rule Set

Rule Name: ALL

Note:

Pricing changed for Malicious IP Reputation Rule Set, Tor IP Detection Rule Set, Bot Protection Rule Set

New Customer - New pricing policy to be applied on Jan 1st, 2024

Current Customer - New pricing policies to be applied on Apr 1st, 2024

Update 2023-07-28

Products: Bot Protection Rule Set

Rule Name: ALL

Note: New Rule Set ‘Bot Protection Rule Set’ release

Launching a Rule Set designed to detect and block malicious bot-caused traffic.

A Bot is a computer program designed to automate repetitive tasks and perform specific tasks. Among them, malicious Bot can cause a variety of attacks, such as account takeovers(ATOs), scraping, and application DDoS attacks.

Update 2023-06-02

Products: Tor IP Detection Rule Set

Rule Name: ALL

Note: New Rule Set ‘Tor IP Detection Rule Set’ release

Launching a Rule Set based on Tor IP addresses, which can detect and block users accessing through the Tor Browser

Tor Browser is a web browser that provides anonymous network services. While it offers strong anonymity to evade censorship and surveillance, it can also be misused for illegal activities.

Update 2023-05-09

Products: OWASP Top 10 Rule Set

Rule Name: ALL

Note: Modified to automatically grant attribute value ‘Label’ to HTTP Request that matches rules in the OWASP Top 10 Rule Set

Assign a Label to each Rule in the OWASP Top 10 Rule Set

- Label name structure : awswaf:managed:cloudbric:owasp:[Rule Name]

- Label name example : ‘awswaf:managed:cloudbric:owasp:XSS_1‘

(When matched to ‘Cloudbric_XXS_1‘ Rule of OWASP Top 10 Rule Set)

In the event of a false positive, it is possible to create a label-based custom override rule to narrow the range of the override.

Update 2023-03-09

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set

Rule Name: ALL

Note: Due to the launch of new AWS Regions on March 09, 2023, expanding the scope of service provision.

Create Rule Set in AWS New Regions Zurich(eu-central-2), Hyderabad(ap-south-2), Spain(eu-south-2), and Melbourne(ap-southeast-4)

Update 2022-12-23

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set

Rule Name: ALL

Note: Due to the launch of new AWS Regions on December 15, 2022, expanding the scope of service provision.

Create Rule Set in UAE (United Arab Emirates), AWS New Region ‘UAE(me-central-1)’

Update 2022-11-11

Products: OWASP TOP 10 Rule Set

Rule Name: Cloudbric_RequestMethodFiltering

Note:

Modify ‘Cloudbric_RequestMethodFiltering’ Rule for use of Rest(ful) API (PUT, DELETE method allowed)

Does not affect WAF operation, PUT/DELETE/HTTP methods will not be blocked by WAF as of Nov 11th, 2022.

Update 2022-07-07

Products: OWASP TOP 10 Rule Set

Rule Name: Cloudbric_Log4j, Cloudbric_Unix_ShellScript, Cloudbric_StealthCommanding_Execute, Cloudbric_Invalid_URL

Note:

Add new rules for ‘Log4 vulnerabilities’ (CVE-2021-44228, CVE-2021-45046, CVE-202145105, CVE-2021-4104) and ‘Cloubric_Log4j’,’Cloudbric_Unix_ShellScript’ to prevent attacks through shell script commands.

Modify ‘Cloudbric_StealthCommanding_Execute’ Rule to improve false positives

Delete the existing ‘Cloudbric_Invalid_URL’ Rule to improve false positives.

‘Cloudbric_Unix_ShellScript’ and Cloudbric_Log4j’ Rule can affect WAF operation depending on the user environment. It is recommended to apply after testing with Count Action.

Update 2022-06-10

Products: Malicious IP Reputation Rule Set

Rule Name: Cloudbric_MaliciousIP_List

Note:

IP Reputation List improvement through Threat DB advancement

Update 2022-04-28

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set

Rule Name: ALL

Note: Due to the launch of new AWS Regions on April 28, 2022, expanding the scope of service provision.

Create Rule Set in Jakarta, AWS New Region ‘CGK(ap-southeast-3)’

Update 2021-11-12

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set

Rule Name: ALL

Note: Initial Product Release

Release Notes Content List

Update: Updated Date

Products: Updated Product Name

Rule Name: Updated Rule Name

Note: Updated Content

Add new rule and expand region

Modify existing rules

Errors and bug fixes

Delete the provided Rule

Precautions

Additional information

Learn more about Cloudbric WMS for systematic management for AWS WAF.

WAAP

ZTNA

CTI

Public Cloud Security

Security Apps

By Use Cases

WAAP

Public Cloud Security

ZTNA

Security Apps

CTI

Cloudbric Managed Rules for AWS WAF Release Notes

Update 2024-08-23

Products: API Protection

Rule Name: ALL

Note: New Managed rule group, 'API Protection' released.

Provides security against the OWASP API Security Top 10 Risk by establishing a defense system against known API attacks and providing validation and protection for XML, JSON, and YAML data.

Update 2024-07-08

Products: OWASP Top 10 Rule Set

Rule Name: Cloudbric_ExtensionFiltering, Cloudbric_StealthCommanding_Execute

Note:

'Cloudbric_ExtensionFiltering' rule added to block access to file extensions that can be of risk if exposed on the web server.

Edited the rule name, 'Cloudbric_StealthCommanding_Execute'

Update 2024-06-24

Products: Anonymous IP Protection

Rule Name: ALL

Note: New Managed rule group, 'Anonymous IP Protection' released.

Blocks traffic originating from Anonymous IPs.

Anonymous IP traffic refers to the traffic originating from VPNs, Data Centers, DNS Proxies, Tor Networks, Relays, and P2P Networks.

Update 2024-04-30

Products:OWASP Top 10 Protection, Malicious IP Protection, Tor IP Protection, Bot Protection

Rule Name: ALL

Note:

Cloudbric Rule Set rebranded as Cloudbric Managed Rules.

- OWASP Top 10 Rule Set - Rebranded as OWASP Top 10 Protection

- Malicious IP Reputation Rule Set - Rebranded as Malicious IP Protection

- Tor IP Detection Rule Set - Rebranded as Tor IP Protection

- Bot Protection Rule Set - Rebranded as Bot Protection

Update 2024-01-19

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set, Tor IP Detection Rule Set, Bot Protection Rule Set

Rule Name: ALL

Note: Expanding the region for service provision following the new AWS Regions launched on March 09, 2023.

Created Rule group in new AWS Region: Tel Aviv (il-central-1)

Update 2023-12-11

Products: Malicious IP Reputation Rule Set, Tor IP Detection Rule Set, Bot Protection Rule Set

Rule Name: ALL

Note:

Pricing changed for Malicious IP Reputation Rule Set, Tor IP Detection Rule Set, Bot Protection Rule Set

New Customer - New pricing policy to be applied on Jan 1st, 2024

Current Customer - New pricing policies to be applied on Apr 1st, 2024

Update 2023-07-28

Products: Bot Protection Rule Set

Rule Name: ALL

Note: New Rule Set ‘Bot Protection Rule Set’ release

Launching a Rule Set designed to detect and block malicious bot-caused traffic.

A Bot is a computer program designed to automate repetitive tasks and perform specific tasks. Among them, malicious Bot can cause a variety of attacks, such as account takeovers(ATOs), scraping, and application DDoS attacks.

Update 2023-06-02

Products: Tor IP Detection Rule Set

Rule Name: ALL

Note: New Rule Set ‘Tor IP Detection Rule Set’ release

Launching a Rule Set based on Tor IP addresses, which can detect and block users accessing through the Tor Browser

Tor Browser is a web browser that provides anonymous network services. While it offers strong anonymity to evade censorship and surveillance, it can also be misused for illegal activities.

Update 2023-05-09

Products: OWASP Top 10 Rule Set

Rule Name: ALL

Note: Modified to automatically grant attribute value ‘Label’ to HTTP Request that matches rules in the OWASP Top 10 Rule Set

Assign a Label to each Rule in the OWASP Top 10 Rule Set

- Label name structure : awswaf:managed:cloudbric:owasp:[Rule Name]

- Label name example : ‘awswaf:managed:cloudbric:owasp:XSS_1‘

(When matched to ‘Cloudbric_XXS_1‘ Rule of OWASP Top 10 Rule Set)

In the event of a false positive, it is possible to create a label-based custom override rule to narrow the range of the override.

Update 2023-03-09

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set

Rule Name: ALL

Note: Due to the launch of new AWS Regions on March 09, 2023, expanding the scope of service provision.

Create Rule Set in AWS New Regions Zurich(eu-central-2), Hyderabad(ap-south-2), Spain(eu-south-2), and Melbourne(ap-southeast-4)

Update 2022-12-23

Products: OWASP Top 10 Rule Set, Malicious IP Reputation Rule Set

Rule Name: ALL

Note: Due to the launch of new AWS Regions on December 15, 2022, expanding the scope of service provision.