Scaling Attack Detections with Immediate Impact: Vimeo's IoT Journey
- Cybersecurity & Privacy - Application Security
- Cybersecurity & Privacy - Intrusion Detection
- National Security & Defense
- Supply Chain Visibility
- Tamper Detection
- Testing & Certification
Vimeo, a leading professional video platform with over 150 million users globally, was facing a challenge in terms of visibility into production traffic and new merger and acquisition activity. The company's rapid scaling and recent acquisitions necessitated a robust application security program to prevent prevalent attacks like XSS, SQLi, API abuse, and account takeover. Additionally, Vimeo required a solution that would seamlessly integrate with their newly built AWS infrastructure without the need for extensive tooling and upkeep. The company also wanted all requirements to be consolidated under a single vendor for ease of use across multiple teams.
About The Customer
Vimeo is the world’s leading professional video platform, providing powerful tools for hosting, sharing, and streaming high-definition video. With over 150 million users globally and a number of recent acquisitions, Vimeo is scaling fast but remains highly focused on ensuring the creators and viewers have a seamless experience on their site. To support the company’s recent growth, the Vimeo team knew they had to strengthen their current application security program.
Vimeo implemented Signal Sciences for its comprehensive detection and blocking capabilities, ease of use, minimal configuration and maintenance, and extensive visibility into attacks on their applications. Within 30 days, Vimeo was able to install, test, and deploy the solution in production across all of a new acquisition's infrastructure. The solution provided immediate time-to-value across different functions and teams, including Engineering, SRE, Dev, and Security. The 'out of the box' configuration not only improved general visibility but also stopped a lot of bogus traffic from hitting their resources. Unlike other Layer-7 approaches to security, Signal Sciences' next-generation WAF required no rules or ongoing maintenance to stop OWASP Top 10 attacks.
Related Case Studies.
System 800xA at Indian Cement Plants
Chettinad Cement recognized that further efficiencies could be achieved in its cement manufacturing process. It looked to investing in comprehensive operational and control technologies to manage and derive productivity and energy efficiency gains from the assets on Line 2, their second plant in India.
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Digital Transformation of Atlanta Grout & Tile: An IoT Case Study
Atlanta Grout & Tile, a Tile, Stone & Grout restoration company based in Woodstock, Georgia, was facing challenges with its traditional business model. Despite steady growth over the years, the company was falling behind the web revolution and missing out on the opportunity to tap into a new consumer base. They were using independent software from different vendors for each of their department information and workforce management. This resulted in a lot of manual work on excel and the need to export/import data between different systems. This not only increased overhead costs but also slowed down their response to clients. The company also had to prepare numerous reports manually and lacked access to customer trends for effective business decision-making.
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
Revolutionizing Construction Equipment Rental: A Case Study on ProsRent and ENO8
ProsRent, a startup that won the 'Best Financial Opportunity' and 'Best Pitch' at CodeLaunch 2016, aimed to revolutionize the way construction professionals source and rent heavy equipment. In the construction industry, project managers and contractors typically rent heavy equipment from supply companies. However, predicting inventory can be challenging, and finding the required equipment at the right time and place can be a hassle. If the preferred vendor doesn't have the required equipment, it results in wasted time and money in searching for it, often leading to higher costs due to non-preferred rates and increased delivery costs if the vendor is located far from the job site. Suppliers, on the other hand, desired access to a wider base of trusted renters that they didn't have to vet themselves and wanted to offer dynamic rental pricing based on demand and availability in their market. ProsRent's challenge was to produce a minimum viable product that was fast and first to market but also strong enough to engender loyalty and repeat business from the target market.