Download PDF
Imperva > Case Studies > Smallpdf Enhances User Protection and Ensures Availability with Imperva Account Takeover Protection
Imperva Logo

Smallpdf Enhances User Protection and Ensures Availability with Imperva Account Takeover Protection

Technology Category
  • Sensors - Haptic Sensors
  • Sensors - Torque Sensors
Applicable Industries
  • Cement
  • National Security & Defense
Use Cases
  • Cybersecurity
  • Fraud Detection
The Challenge
Smallpdf, a Swiss company providing online PDF tools, faced a significant challenge in protecting its over a billion user accounts from sophisticated bot-driven brute force credential stuffing attacks. These attacks were not only a threat to the sensitive data held in user accounts but also posed a risk to the company's infrastructure. The brute force attacks could potentially impact website performance, causing slowdowns and disruptions for legitimate users. The company's security team was consistently dealing with large-scale botnets targeting their website, which could compromise user accounts if not effectively mitigated. The need to protect their users and maintain the performance of their authentication service was a top priority for Smallpdf.
About The Customer
Smallpdf is a Swiss company founded in 2013 that provides a range of online PDF tools, including conversion, compression, editing, e-signing, management, and more. The company serves over a billion users across 195 countries, catering to both individuals and businesses. With a growing user base, Smallpdf prioritizes the protection of user accounts and the sensitive data they hold. The company's security team is dedicated to mitigating cybersecurity threats and ensuring the smooth operation of their services.
The Solution
To combat the sophisticated credential-stuffing attacks, Smallpdf evaluated several solutions and ultimately chose Imperva Account Takeover Protection. This tool was selected for its high efficacy, ability to control mitigation by risk level, clear visibility provided by dashboards, powerful and flexible rules, and the ability to perform deep interrogation of incidents and investigate false positives. Imperva Account Takeover Protection was deployed to secure Smallpdf's login pages from bot-driven account takeover attacks, protect their customers’ accounts from theft, and mitigate the risks of account-based fraud. The solution also enabled Smallpdf to automate fraud detection and prevention through API integrations, allowing them to build tools that can protect an account flagged by Imperva as compromised.
Operational Impact
  • The implementation of Imperva Account Takeover Protection has brought about significant operational benefits for Smallpdf. The number of attacks has significantly reduced, allowing the security team to focus on other security-related initiatives and provide peace of mind to their customers. When an attack does occur, Imperva is able to mitigate it automatically, reducing the time spent on mitigating certain types of cybersecurity attacks. The solution has also enabled Smallpdf to automate fraud detection and prevention, freeing up resources for innovative projects. Furthermore, the company has been able to maintain the performance of their authentication service, ensuring the smooth operation of their services for legitimate users.
Quantitative Benefit
  • Significant reduction in the number of account takeover attacks
  • Mitigation of 8 million malicious login attempts during a recent brute force credential stuffing attack
  • Reduction in time spent mitigating certain types of cybersecurity attacks

Related Case Studies.

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.