The Need For Proactive Security

By Evan Fromberg, Senior Director of Channel Sales and Business Development, Veracode

We are only half way through 2014, and I can already state with confidence that the number of security breaches making headlines this year will continue to increase. More than 50 percent of all breaches will be caused by an application-layer breach, and the most common form of application-layer breach is an attack on a website. Here, cyber-criminals focus on insecure web applications to gain access to company systems and data. The prevailing belief that only large organizations are targets of web-application attacks has been proven false. The recently released 2014 Verizon Data Breach Investigations Report states that one-third of all breaches occur in companies with fewer than 250 employees. As a result, code level insecurities in web sites are no longer an issue for only the largest organizations with dedicated information security teams; SMBs to large enterprises must take action to proactively secure their web sites.

Rackspace Cloud users should pay particular attention to vulnerabilities in web applications to ensure they protect their web sites; especially those that rely on commonly breached content management systems (CMS) such as Joomla, Drupal and WordPress. Security has evolved beyond detection and prevention technologies that traditionally helped protect the network. It is now more proactive. It is now the identification of code level flaws that is widely regarded as a proper first step in reducing risk and preventing vulnerabilities. Once the flaws are found, there are multiple mitigation options such as fixing the code, upgrading the CMS or deploying a Web Application Firewall (WAF).

At Veracode, we help our customers secure web and mobile applications they are building, as well as work with companies to secure the third party software they are procuring. We are passionate about helping secure the world’s software, and working with our customers and partners to achieve this goal. Veracode’s cloud-based service makes it easier for you to secure your web applications without having to deal with the complexity and expertise required to install and configure on-premises tools.

We are excited that we’ve been a Rackspace Marketplace partner for several years. Helping organizations ensure their most sensitive data and IP is secure will lead to a great cloud experience with Rackspace. Customers who rely on Rackspace have a variety of partners to help make that experience a secure one. Veracode is glad to be one of these options.

To learn more about application threats visit the Rackspace Marketplace at or Veracode at

This is a guest post written and contributed by Evan Fromberg, Senior Director of Channel Sales and Business Development at Veracode, a Rackspace Marketplace partner.

Rack Blogger is our catchall blog byline, subbed in when a Racker author moves on, or used when we publish a guest post. You can email Rack Blogger at


  1. A smaller organization isn’t going to have the hands-on IT staff dedicated to security, making them more vulnerable to security breaches simply because they don’t have the eyeballs! Most hackers work smarter, not harder, so why go up against a team of security professionals when you could go up against 1 IT guy that has a million other projects on his plate.


Please enter your comment!
Please enter your name here