Challenge
Digimais is a digital bank that offers financial services in Brazil through a 100% online web and mobile platform. Beyond simplifying customers’ financial lives, Digimais must deliver an exceptional experience that is reliable, highly available, performant, and secure.
As its business expanded across the country, Digimais needed to achieve several objectives to support its growth plans, including blocking and mitigating security risks, monitoring and managing traffic growth with real-time protection, and automating cybersecurity defenses.
In addition, ensuring service continuity and strengthening contingency and recovery plans in the event of disruptive incidents is essential. This includes adopting a zero-trust security model for access control and implementing a robust DDoS mitigation solution.
Solution
The Azion Platform provides a comprehensive set of cybersecurity solutions and services designed to empower security teams with automation, intelligence, and mitigation capabilities against complex web application threats, including zero-day attacks.
To strengthen its security posture, Digimais implemented Azion Firewall, a powerful solution composed of the Network Shield, Web Application Firewall (WAF), and DDoS Protection modules. This enabled the team to:
- build advanced firewall rules that protect all elements of Digimais’s services, including its web applications and APIs;
- automatically monitor and block cyber threats using scoring-based algorithms and customized WAF rules;
- create Network Lists to protect applications from unwanted access, abusive users, and requests originating from specific countries or Tor networks; and
- mitigate large-scale network-layer and DDoS attacks before they reach the origin infrastructure.
Given the financial nature of its operations, protecting Digimais’s origin infrastructure from malicious traffic was essential to ensure service availability and maintain a secure environment for financial transactions.
To reinforce access control, Digimais also implemented Azion Origin Shield, which restricts backend access to authorized IP addresses within Azion’s network, preventing suspicious users from reaching its infrastructure.
Additionally, Digimais strengthened its encryption standards by implementing Azion Certificate Manager, which was deployed across its APIs and applications to ensure that information transmitted between users’ devices and the bank remains protected.
Results and impacts
With support from Azion engineers throughout the integration process, Digimais added its domains to Azion’s global network and deployed Firewall in just a few days, without impacting service performance.
Since then, Digimais has automatically blocked tens of thousands of complex cyberattacks, including SQL injection, cross-site scripting (XSS), and directory traversal attempts.
Using Azion WAF, Digimais’s cybersecurity team can automatically mitigate these threats, allowing them to focus on other strategic security initiatives.
With enhanced protection in place, Digimais’s web and mobile applications and APIs now better handle legitimate requests from customers and partners, while malicious requests are filtered within the distributed infrastructure.
By configuring Network Lists across both Firewall and Origin Shield, Digimais can block abusive users, brute-force attacks, and other threats, ensuring high availability and protecting customer privacy.
About Digimais
We were born as a traditional bank and today, more than 35 years later, we have become 100% digital. Time has brought us experience, solidity and credibility, fundamental assets that we have to offer you, together with the security of our financial products and personalized service. Join our time, it’s yours too.