Challenge
B2W Digital brings together some of the most successful e-commerce brands in Latin America. Combined, their platforms receive more than 2 billion visits per year and serve approximately 17 million active customers who rely on B2W for convenient and secure online shopping.
With such a large volume of traffic and transactions, protecting customer data and ensuring the integrity of applications has become an increasingly complex challenge.
Among the main factors increasing risk for large-scale digital operations are:
- the rise in fraud and credit card data exposure since the beginning of the COVID-19 pandemic, with Brazil accounting for 53% of these incidents globally;
- sophisticated cybercriminal groups launching complex zero-day attacks targeting retail platforms;
- DDoS incidents, which increased by 151% in the first half of 2020 compared to the same period in 2019;
- malicious bots used for credit card fraud and credential stuffing attacks.
For B2W, security management was particularly challenging due to the complexity of operating multiple e-commerce platforms generating millions of daily connections and relying on several CDN providers.
Solution
To strengthen its security posture, B2W adopted distributed security capabilities from Azion Platform, expanding its ability to monitor, mitigate attacks, and analyze security events in real time.
Azion’s platform enables open integrations with existing systems and third-party tools, allowing B2W to automate application security through APIs and programmable workflows.
With this approach, the company implemented:
- automated monitoring and detection of complex and zero-day attacks;
- advanced blocking rules executed directly on Azion’s distributed infrastructure;
- real-time collection of security events for operational insights.
B2W uses Azion’s programmable Firewall to create and manage security rules automatically. With the Network Shield and Web Application Firewall modules, the company can protect both the network and application layers.
This model allows each new deployment to be automatically validated by security policies, simplifying the CI/CD pipeline and strengthening B2W’s DevSecOps culture.
In addition, B2W improved its observability practices by using Data Streaming to send real-time security events to its SIEM platform, providing a comprehensive view of the environment and enabling faster response to threats.
Results and Impacts
Implementing Azion’s security solutions delivered important benefits for B2W’s operations. The company automated its defense model through intelligent blocking rules based on risk scoring, which were later expanded to other areas of the organization.
Azion Platform’s programmability also accelerated software validation cycles and increased the autonomy of the Security and Infrastructure teams, allowing them to manage the environment independently.
Another important outcome was operational cost reduction. By applying containment rules in Network Shield before requests reach the WAF, the cost of blocking malicious requests was reduced by up to six times.
To control access to its e-commerce applications, B2W uses Network Lists integrated via API, combining lists provided by Azion with external threat intelligence sources. This enables the company to:
- collect data from all requests and send them to its SIEM platform;
- block, rate-limit, or monitor suspicious IP addresses;
- apply rules based on IP, geolocation, ASN, and Tor networks;
- enrich security lists with IP reputation data.
These actions are reinforced by the analysis of hundreds of terabytes of security events generated by the company’s e-commerce applications, enabling B2W’s security experts to:
- strengthen protection across network (L3/L4) and application (L7) layers;
- enhance observability practices;
- improve compliance auditing.
Separating firewall policies from business logic rules such as caching, cookies, and application configurations also made operations more efficient and simplified the implementation and maintenance of security policies.
About B2W Digital
B2W Digital, now part of Americanas S.A., brings together some of the most prominent e-commerce brands in Latin America. The company combines physical retail operations with a robust digital platform, delivering an omnichannel shopping experience to millions of customers.
With a strong focus on innovation, the company continuously invests in new technologies to accelerate its digital platforms, develop new business models, and expand its operational capabilities.
These initiatives are part of the so-called Americanas Universe, a digital ecosystem designed to be flexible, resilient, and capable of meeting the demands of an ever-evolving market.