How a DDoS Attack Helped Optimize the Bank’s Security Budget
06 July, 2026 | 4 min
In 2023, the bank faced a multi-vector DDoS attack that was unlike previous incidents.
"The DDoS attack we encountered was different because it also affected the application layer. At the time, we were using a solution that could only filter low-level L3-L4 flooding. The L7 attack was very powerful: our channel was flooded with malicious requests to our applications. This negatively affected the availability of banking services. Our main goal was to restore the ERP system so we could at least keep operating."
CISO, Bank
Challenge
The current security provider was unable to filter malicious traffic at L7. The bank urgently needed stronger DDoS protection at the application layer and a way to restore service availability.
Solution
To provide emergency protection, a GRE tunnel was set up with Strictera, which began sending DDoS-filtered traffic to the bank’s infrastructure.
"We noticed the first effect of filtering within a few hours of our request. A couple of hours later, with help from your technical support, we fine-tuned the service and successfully separated legitimate traffic from parasitic traffic: customer requests to the online banking, requests from remote employees, and traffic from various banking services."
CISO, Bank
After repelling a large-scale, multi-vector DDoS attack on the bank’s applications, the information security team decided to implement an anti-bot solution in addition to the anti-DDoS solution.
"Advanced bots were not a threat to us at the time. However, given the current risks in the financial industry, we decided to integrate WAAP to provide full coverage against web threats across our websites, applications and APIs."
CISO, Bank
Daily bot and suspicious requests to the bank's website
Results
During implementation, the bank identified major differences between the pricing models of the previous provider and Strictera.
"Today, you protect several of our /24 subnets across multiple data centers. For the same price, the previous provider protected only 20 hosts, in one data center, and only against L3-L4 attacks. In addition, Strictera protection solutions can be used around the clock without worrying about rate increases or unexpected price recalculations."
CISO, Bank
Since 2023, Strictera has protected the bank’s IT infrastructure and web applications from DDoS attacks and advanced bots across L3–L7 using its core solutions:
Strictera NDP for network-level DDoS protection with instant traffic filtering via secure IP transit.
Strictera WAAP for comprehensive protection against automated attacks on websites, mobile apps, and APIs.
Periodic bursts of illegitimate bank traffic blocked by Strictera
"Previously, DDoS attacks would often happen precisely when our information security specialists were away. But under your protection, there have been no incidents. Even if a short-term 15-minute DDoS attack occurs, your specialists immediately notify us when filtering of illegitimate traffic begins. Based on many years of cyber defense experience, we believe that Strictera is a more organized security vendor than our previous one. We can trust you and calmly go on vacation or attend a corporate event."
CISO, Bank
Book a demo to see Strictera NDP and Strictera WAAP in action