Industry leaders trust us.

Challenge:

The previous Radware solution proved ineffective during a DDoS attack. Migration to Cloudflare by an external provider did not deliver the expected level of technical support within the managed service - Cloudflare recommended us as the partner to take over and optimize the environment.

Solution:

The In Cloud We Trust team carried out the migration to a dedicated Cloudflare instance, implementing WAF, DDoS, CDN, and DNS protection, and we continue to provide ongoing expert support and training for the client's team. Since the start of the cooperation, the client has maintained full service availability, and all attacks have been successfully neutralized.

Challenge:

A growing number of DDoS, API, and bot attacks, combined with the ineffectiveness of the existing protection solutions, posed a direct threat to a platform serving global payment providers. The client needed a partner capable of implementing effective protection - including WAF required for PCI DSS compliance while also meeting KNF and DORA requirements.

Solution:

In Cloud We Trust designed a security architecture based on Cloudflare Enterprise, selecting solutions tailored to the specifics of the payment platform: API Shield, Bot Management, Advanced WAF, DDoS protection, and Data Localization Suite ensuring compliance with data localization requirements

Challenge:

Bots were collecting information about prices and offers (scraping). Malicious bots were blocking product availability through inventory hoarding attacks, while scraping enabled the creation of fake copies of the client's stores - deceived customers directed complaints to the brand, directly impacting its reputation. With billions of requests per month and hundreds of terabytes of traffic, the lack of any protection generated additional infrastructure costs and degraded performance.

Solution:

In Cloud We Trust experts implemented Cloudflare Enterprise with Bot Management, WAF, Rate Limiting, DDoS protection, and CDN. Based on analysis, they identified bot patterns and implemented rules that autonomously block most malicious traffic - the remaining cases are eliminated by advanced rate limiting. The protections were configured to ensure continuity and fast content delivery for desired bots such as Google Bot and Bing Bot.

Challenge:

NIS2 requirements and the growing number of successful phishing attacks on the public sector made it necessary to implement phishing-resistant MFA. Authenticator apps did not meet this requirement, and the lack of corporate phones for a significant portion of employees ruled out mobile solutions.

Solution:

We conducted an analysis of available solutions and recommended YubiKey 5 with PIV support - market-leading phishing-resistant hardware keys, ensuring compatibility with the client's existing CMS environment. We coordinated the delivery of more than 500 keys within the required timeline and budget.