Challenge
Millions of South American customers rely on Dafiti monthly to purchase fashion products in line with their styles through its e-commerce platform. In 2020 alone, the customer base totaled 7.7 million[1], a 31% growth compared to 2019.
Ensuring a fashion ecosystem 100% available to so many people in different countries is, in itself, a big challenge. The need to provide complete security in transactions, which implies complying with regulations such as PCI DSS, makes the mission even harder.
Attack techniques such as credential stuffing and phishing are also a threat to Dafiti, which carries out millions of transactions annually. According to a report by Axur[2], more than 2.8 million credit cards were exposed on the surface, deep, and dark web, with Brazil being the country with the most leaks.
In the midst of this scenario marked by breach of sensitive data and zero-day attacks, in addition to meeting requirements that encompass retail, Dafiti needed a firewall solution capable of taking its defense posture to the next level and thus protect its ecosystem and user data.
Solution
Dafiti started a partnership with Azion both to improve the performance of its applications and to increase the security level of its e-commerce platform. For this purpose, its team relies on Azion’s security stack, composed by edge-native firewall and observability solutions.
With Edge Firewall and features, Network Layer Protection, Web Application Firewall (WAF) and DDoS Protection, Dafiti has improved access control in its domains, including Kanui and Tricae stores, through:
- advanced firewall rules to protect desktop and mobile applications and APIs using arguments and block lists;
- mitigation of the most complex DDoS attacks that target network and application layers, which can be expanded to 20 Gbps occurrences or unlimited volume; and
- scoring algorithms that reduce false positives while catching emerging and sophisticated threats.
One of the requirements for building a zero-trust security model is cyber threat intelligence. Therefore, Dafiti implemented Data Streaming, Azion’s solution for collecting data from WAF and real-time events via connectors compatible with major analytical and SIEM platforms on the market.
Results and Impacts
After an implementation process that only took three days – with no complications nor interruptions – and supported by Azion engineers, Dafiti configured firewall rules covering APIs, container clusters, website, mobile application and payment systems, taking advantage of the highest level of protection that Azion Edge Platform offers.
Such flexibility in developing access control has helped Dafiti comply with important requirements such as PCI DSS, through advanced firewall configurations, and increase the protection of customers’ credit card data and credentials, making Dafiti Group’s online stores even safer environments for shopping.
One of the main impacts of using Edge Firewall was the simplification of security from the WAF rule sets, by which millions of threats are blocked automatically. Thus, Dafiti’s cybersecurity team is able to focus more on strategic tasks that require human intervention, increasing their productivity.
About Dafiti
Founded in 2011, Dafiti is a fashion e-commerce platform focused on transforming the way people buy clothes and accessories through the web and revolutionizing the fashion ecosystem. No matter your style or whatever you need, or if you are a young urban person or a contemporary mother, Dafiti offers a portfolio of 400,000+ products from over 6,000 brands to expand your fashion possibilities. Dafiti Group is also the biggest player in Brazil’s fashion industry, holder of the Kanui and Tricae brands, and the largest e-commerce platform in Latin America, operating in Argentina, Brazil, Chile and Colombia with the support of Rocket Internet group. Since 2014, Dafiti has been part of Global Fashion Group, a leading group of fashion markets present in 24 countries globally.