Download PDF
Fastly > Case Studies > Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly
Fastly Logo

Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly

Technology Category
  • Infrastructure as a Service (IaaS) - Private Cloud
  • Infrastructure as a Service (IaaS) - Public Cloud
Applicable Industries
  • Finance & Insurance
  • National Security & Defense
Applicable Functions
  • Quality Assurance
Use Cases
  • Traffic Monitoring
  • Transportation Simulation
The Challenge
Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.
About The Customer
Remitly is an American online remittance service based in Seattle, United States. Founded in 2011, the company offers international money transfers to over 135 countries. Remitly's mission is to make the money transfer process faster, affordable, and more transparent. The company aims to transform the lives of immigrants and their families by providing the most trusted financial services on the planet. Remitly enables immigrant communities to send and receive money across borders more simply and at a lower cost.
The Solution
Remitly implemented Fastly's Next-Gen WAF to secure their web applications and APIs. This solution was able to block malicious traffic and allow good traffic through from the same network range or IP. This was particularly useful when a spike in activity from a small IP network segment on the Pacific coastline turned out to be legitimate requests from customers. Fastly provided the necessary visibility to help Remitly determine these were not attacks. To achieve PCI compliance and more, Remitly used Fastly's customizable rules, which allowed them to easily add in instrumentation and defense where needed without the complex regex rules found in other products. Fastly's flexible architecture also enabled Remitly to protect both public facing endpoints and applications for their customers as well as private endpoints for internal employees, without being limited by architectural designs that required chokepoints in networks.

Related Case Studies.

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.