Incapsula has released a tool that aims to detect and disable backdoor attacks.
Named Backdoor Protect, the company said that it detects and disables malicious backdoors for remediation of compromised websites and provides on-going protection from backdoor threats. According to Incapsula, it is a non-intrusive service that can detect and disable backdoors that are already installed on a website, this is done by profiling the website's traffic and comparing it against an extensive database of backdoors, enabling the detection to overcome file obfuscation and signature mutation.
The tool is also now a part of Incapsula's cloud-based web application firewall (WAF) that is activated through a simple DNS change and does not require installation of hardware, software or making any changes to the website, it claimed.
Marc Gaffan, co-founder and vice president of marketing and business development at Incapsula, said: “Searching for a website backdoor is like looking for a needle in a haystack. Backdoors can be installed anywhere on the server under any name or alias and are therefore undetectable by external scanners.
“Searching every directory in an effort to find a file that should not be there is virtually impossible, but Incapsula can now neutralise the impact of a compromise.”