Your Anti-Fraud Residential Proxy Detection Sucks
Your anti fraud IP Intelligence service is no longer fit for purpose. Learn about the challenges in detecting residential proxies and why traditional methods don't work.
Understanding Bot Management: From Basic Protection to Advanced Threat Mitigation
A comprehensive guide to bot management, differentiating between basic, intermediate, and advanced protection strategies against evolving bot threats.
Credential Stuffing - A Case For Disclosure?
An in-depth look at the growing threat of credential stuffing attacks on Australian businesses, including recent case studies, defense challenges, and practical recommendations.
The Australian epidemic of Account Takeover attacks
An in-depth look at the growing threat of credential stuffing attacks on Australian businesses, including recent case studies, defense challenges, and practical recommendations.
The Challenge of Proxy Detection: Limitations of Current Solutions
Examine why current security solutions fail to detect and mitigate threats from residential proxies, and the need for comprehensive protection strategies.
Residential Proxy Detection: Quantifying the Hidden Threat
Explore the complexities of residential proxy detection and its impact on organisational risk, with a focus on quantifying the threat and reframing security approaches.
Account Protection and User Experience in Web Applications
Explore strategies to enhance web application security without compromising user experience, focusing on contextual security and adaptive authentication measures.
The Cost of Credential Stuffing: How Account Takeovers Damage Business Reputation
Explore how credential stuffing attacks and account takeovers affect business reputation and customer trust.
2024 Survey Insights
Our 2024 survey reveals Australian businesses are increasingly recognising and addressing account protection challenges, with a focus on combating credential stuffing attacks and the emerging threat of residential proxies.
Why Multi-Factor Authentication Alone Can't Stop Account Takeovers
As cybercriminals employ AI and residential proxies to bypass multi-factor authentication, businesses must adopt a multi-layered security approach to protect against account takeovers.
How To Exclude Query String Parameters from Search Engine crawling using robots.txt
Double crawling of pages by search engines due to filtering options and query strings can be a massive drain on server resources. Learn how to control it using robots.txt.
Peakhour: Addressing Key Cloud Security Categories in the Post-Wiz Era
An analysis of Peakhour's role in addressing key cloud security categories identified in recent industry analysis, demonstrating its comprehensive approach to modern cloud security challenges.
Breached Credentials and Risk Profiling
Learn how breached credential databases and risk profiling provide advanced protection against credential stuffing attacks and enable contextual security measures.
Introducing Advanced Rate Limiting
In the age of proxy networks and IP sharing, traditional rate limiting is of limited use. Introducing Advanced Rate Limiting to protect your website and APIs.
The Iconic is the latest Account Takeover victim in the news
Popular Australian fashion website TheIconic recently suffered reputational damage from fraudsters placing orders after an account takeover. Learn how this happens and what you can do to stop it.
Protecting the browser, an HTTP security header overview
Client side attacks on your website can have devastating impact on business credibility. Learn how to protect your clients with these HTTP Headers.
RFC 9460: Enhancing Web Experience
Introducing SVCB and HTTPS records in DNS and their impact on web connectivity.
Dive into the CVSS Scores for CVE-2023-22515 and CVE-2023-22518
Understand CVSS by examining the Atlassian CVE-2023-22515 and CVE-2023-22518.
A Risk Based Approach To Vulnerability Scoring
An in-depth exploration of EPSS, its data-driven approach to assessing cybersecurity threats, and how it complements CVSS.
A Tale Of Two Scoring Systems - The Atlassian Confluence Vulnerabilities
Reviewing the CVSS an EPSS CVE scoring systems in light of the Atlassian Confluence-Aggedon
Introducing Magento 2 Plugin: Enterprise-Level Caching for All
Elevate your e-commerce with our newly released Magento 2 plugin. Experience enterprise-level caching features accessible to all Peakhour customers.
Navigating CDN Consolidation: Why Local Solutions Matter
Explore the complexities of switching CDN providers amid industry consolidation and how Peakhour can assist in the transition
Google Chrome's "IP Protection" vs Apple Private Relay
An exploration of Google Chrome's new "IP Protection" feature and a comparison with Apple's iCloud Private Relay.
An Overview of JA4+ Network Fingerprinting and Its Implications
An in-depth exploration of the JA4+ network fingerprinting method, its applications, and its role in cybersecurity.
Google Chrome's "IP Protection" and Online Privacy
An exploration of Google Chrome's new "IP Protection" feature, its promise of enhanced privacy.
ModSecurity’s End-of-Life: Implications for Peakhour and Customers
A deep dive into the end-of-life of ModSecurity, its impact on Peakhour, and what it means for the future of
APRA Recommendations for website security
While Essential 8 mainly deals with workplace cybersecurity, APRA has published the Information Security Manual with numerous references to internet services. Read on to find out more.
HTTP/2 Rapid Reset Attack Deepdive
The technicalities of the HTTP/2 Rapid Reset vulnerability and steps to fortify against DDoS threats.
Web scraping another Business' website, is it legal?
Scraping competitor websites is a common practice, but is it legal? Read on to find out.
Understanding the HTTP/2 Rapid Reset Attack: What It Means and How to Stay Protected
A comprehensive breakdown of the HTTP/2 Rapid Reset flaw and guidance on bolstering defences against potential DDoS attacks.
Introducing a new Core Web Vital, Interaction to Next Paint (INP)
Google is introducing a new Core Web Vital to replace First Input Delay, read on to learn all about it.
The Rise of OpenBullet: Automation Tool or Cybersecurity Threat?
A comprehensive look at OpenBullet, its capabilities, and the implications for cybersecurity in the face of its misuse.
A Secure Internet: Chrome's Push Towards HTTPS-First Mode
Google Chrome is advancing towards making the web secure by default through HTTPS-First Mode.
Content/Origin Mounting - Feature in focus
Content/Origin mounting allows you to seamlessly bring content together from multiple sources, on to your main website.
Cache Tags/Surrogate Keys - Enterprise or Essential?
Surrogate Keys, or cache tags, are a powerful mechanism for targeted flushing of content from a cache, not all CDNs support them though.
The Emerging Trends: Single Page Applications, Headless Commerce, and Security Threats
An exploration of the evolution in headless commerce and the corresponding security challenges.
Handling the Microsoft 365 outage - a lesson for future DDoS attacks.
Peakhour's take on the recent Microsoft 365 outages instigated by threat actor Storm-1359.
Maximising Website Speed: An Essential Strategy
How can maximising website speed boost your company's revenue, especially during an impending economic recession?
Down But Not Out - JXL Will Return on Safari
What Apple's announcement of JPEG-XL support means for the web ecosystem.
Understanding HTTP Link Headers
HTTP Link headers are a relatively unknown but powerful way to improve page load times.
The Rise of the Dragon
Residential proxy malware, and its implications for traditional cybersecurity measures, emphasising the need for evolving threat detection and mitigation strategies.
"Residential Proxies and MITRE Framework: A Comprehensive Analysis"
"This article delves into residential proxies within the context of the MITRE ATT&CK framework, highlighting the security implications and ethical considerations."
Residential Proxies, Friend or Foe?
This article explores the world of residential proxies, revealing the challenges and ethical questions they pose in our GeoIP-dependent digital landscape.
When Bots Break Bad
Even 'good' bots can end up abusing your site and impacting performance, learn why and how to stop it.
The Death of JPEG-XL
We bid farewell to JPEG-XL after its abrupt deprecation by Google, reinforcing the tech giant's domineering influence over the web and sparking a call for resilient alternatives.
Introducin' Automatic Cache Tags in the Updated Peakhour WordPress Plugin, Fool!
Read what Mr T has to say about our Wordpress Plugin update.
Layer 7 DoS attacks and Full Page Caching
Discover how Full Page Caching can help mitigate layer 7 DoS attacks.
Chrome's TLS Extension Randomisation Experiment: Assessing its Impact on TLS Fingerprinting
Does TLS extension randomisation assist in hiding Chrome?
TLS Fingerprinting: A Primer
What is fingerprinting, and in particular TLS fingerprinting?
Automatic Image Optimisation
Image optimisation saves you bandwidth and designer effort while reduces page load time.
Drupal full page caching module released!
We're excited to announce our Drupal 8/9 caching module, read on for more details.
Prestashop 1.6/1.7 full page caching plugin released!
Prestashop is the latest shopping cart we've made a plugin for, read on for more details.
IP Threat Intelligence
Discover and block threats through data enrichment using managed IP reputation lists
Origin shield
Origin shield is a CDN must have feature that increases your Cache Hit Rate by consolidating requests from POPs.
CVE-2022-26134 Atlassian Confluence vulnerability.
Peakhour clients are protected against CVF-2022-26134 Atlassian Confluence RCE
CDN Cache Keys - flexible caching
Cache keys allows the segmenting of the Peakhour.IO cache by elements of both the request and response, enabling effective and flexible caching of content.
Rate limiting
Rate limiting is a powerful way to control client behaviour and protect your origin. Flexible definition of limits and criteria allow precise targeting of client behaviours to limit.
Rate limiting - How it works
How can rate limiting protect your web application and the key items to consider when enabling.
Request collapsing
Request collapsing - saving your origin by reducing concurrent requests and re-using responses for resources.
Opencart 3 Full Page Caching Plugin Released: Boost Website Performance with Peakhour
Elevate your Opencart 3 store's performance with Peakhour's full page caching plugin. Learn how our features outperform LiteSpeed and Varnish Cache.
Cdn-Cache-Control A new way to control caching
CDN-Cache-Control is a proposed new header to augment the venerable Cache-Control. Its aim is to make controlling caching easier as CDNs become ubiquitous.
Cache-Status A new header for diagnosing CDN caching behaviour
Cache-Status is a proposed standard header to provide visibility into how caching providers interact and handle a request.
Fastly Outage - How to have a Plan B
Fastly, a major CDN provider, had a global outage last night which affected some of the world's largest websites and internet services. Why didn't they have a backup plan?
Google AMP - Put Out To Pasture
Google AMP has been controversial right from the get go. As part of its 'Page Experience Update' Google is removing its preferential treatment of AMP authored pages.
Website Optimisation - Eliminating Blocking Resources
Even if you have the fastest server in the world, your website might still seem very slow to end users if you have lots of render blocking resources, learn how to deal with them.
Setting Up A Chia Hobby Farm
Chia is a new blockchain aiming to one up Bitcoin that's taking the crypto world by storm. We decided to jump on the bandwagon.
What is the Google Chrome UX (CrUX) report, and why you should care.
Learn where Google gets the performance data it uses when ranking your website.
The CDN is Dead, Long Live the CDN! - Cache Partitioning in Firefox and Chrome
Firefox and Chrome are introducing cache partitioning to improve your privacy, from everyone except Google.
Dynamic Content Caching With A CDN
This article covers improving server performance by utilising Dynamic Content Caching, which Full Page Caching is a subset of. Caching Dynamic Content can supercharge your website and dramatically reduce load on a server.
Bad Bot Countermeasures
Bad bots can have significant impact to your website while being hard to detect and stop. Here we detail accepted best practise on how to combat the growing threat from bad bots.
Common Issues That Affect Website Performance
After covering testing we're going to get an overview of the common issues that impact website load times and how to check for them.
Are Australian Magento Stores Ready For Web Vitals?
Are Australian Magento stores prepared for the introduction of Core Web Vitals as a search signal? Read on to find out.
Introducing AVIF Support For Peakhour Image Optimisation
AVIF is a next generation image format with early support in Chrome and Firefox. Peakhour is pleased to offer AVIF as a supported format to our clients.
Test Your Website Performance With Google Lighthouse
This installment on website performance introduces Google Lighthouse as a measuring tool. Read on to see how we use it here at Peakhour.
Website Performance testing with WebPageTest.org
In this installment of our website performance series we're taking a look at webpagetest.org, one of the best tools you can use to analyse real world performance of your website.
Introduction to Website Performance Testing
Following on from our introduction to Web Vitals we're introducing why you should test your website speed and how best to do it.
Google Web Vitals
Google has introduced a new set of metrics for measuring website performance and ranking websites. Learn about these new measurements, how to use them to improve your customer's experience, and how they will affect your website ranking
The Threat From Bad Bots
Bad bots can cause significant financial damage to organizations in a variety of ways, ranging from overwhelming websites with internet traffic disrupting online operations, and stealing information including web content and ecommerce pricing data.
Instant Alerts
Introducing Instant Alerts, a new feature for receiving emails or SMS alerts when events happen on your site.
Boost Your Website Speed with Full Page Caching: A Focus on Magento
Our Magento 1 plugin is now available in the Magento Store. Discover how it improves website performance and capability.
Boost Your Website Speed with Peakhour's Full Page Caching
Experience a significant boost in website speed and performance with Peakhour's Full Page Caching feature, now easily accessible through our Wordpress plugin.