Trustwave has acquired Web application firewall (WAF) vendor Breach Security in a deal that will integrate the firewall into the vendor's core penetration testing and code review services offerings.
The terms of the deal were not disclosed. Breach Security's appliances protect Web applications against attacks by detecting anomalies. Chicago-based Trustwave said it would continue to support Breach's WAF and integrate it into its existing application security suite.
Trustwave's SpiderLabs sells penetration testing, secure code review, security-focused software development training as well as incident response services. The company said penetration testing combined with WAF technologies would better protect Web applications from attacks.
"This acquisition adds more truly innovative technology to Trustwave's product portfolio, significantly enhancing our ability to help our clients secure their information," said Robert J. McCullen, chairman and CEO of Trustwave in a statement. "Combining an industry leading WAF solution with our SpiderLabs services should make our application security capabilities unmatched in the industry."
Breach Security's WebDefend application firewall appliance features inbound and outbound inspection of web traffic for sensitive data, such as credit card and Social Security numbers. In addition, Breach Security has been the primary custodian of ModSecurity, the popular open source web application firewall in the world with more than 10,000 deployments.
Trustwave said it is committed to supporting ModSecurity and its diverse and widespread user base.
"Hackers increasingly target insecure web applications as their point of entry into an organization's network," Sanjay Mehta, CEO of Breach Security, said in a statement. "Adding WAF to Trustwave's application security suite provides customers with an unrivaled defense-in-depth solution to secure applications throughout the software development lifecycle."