By Harry Wan CISSP, CCSK, Director Cloud Security Professional Services, Verizon Media and Chris Hererra, CISSP, Senior Security Solutions Architect, Verizon Media

Web application security remains a top threat vector for organizations large and small. According to the Verizon 2020 Data Breach Investigations Report (DBIR), 43% of all data breaches involved a web application,¹ and 80% of all hacking vectors target web applications.²

In the fourth quarter of 2020, Verizon Media saw a marked increase in cross-site scripting (XSS) traffic on our content delivery network (CDN) compared to previous quarters. This blog explores some traffic data points and dissects one of the top attempted XSS payloads. We also share how to use this data to apply protective measures.

Use this content as…


By Anna-Katharina Reykowski, Senior Product Manager, Verizon Media

Online distributors of sports and other live streamed events need to engage and retain viewers for optimal monetization. Many streaming service providers utilize dynamic advertising, delivering a more personalized experience to viewers than traditional broadcasts. However, when leveraging this technology, providers may notice unanticipated increases in latency or unfilled ad spaces that can negatively impact revenue. More often than not, this is a result of mismatches between program ad breaks and the duration of individual ads sent by ad servers to fill those breaks. These inconsistencies may result in longer than desired ad breaks, which lead to increases in stream…


By Brian Pillsbury, Senior Manager, Solutions Engineering, Verizon Media and Tom Box, Senior Manager, Solutions Engineering, Verizon Media

In the past few years, studios and broadcasters have leveraged streaming technologies to create new direct-to-consumer services. While this provides an attractive opportunity to build an audience and profit from viewer data, it’s also a new risk to manage. Malicious actors are working hard to profit from this growing consumer database. Given the widespread knowledge of web application vulnerabilities, attackers are targeting new streaming services that are less experienced in managing web security. …


By Jake Hilton, Sr. Manager, Software Dev Engineering, Verizon Media

Content delivery networks (CDNs) are well-established as an integral part of streaming media workflows, enabling a high-quality video experience that scales globally. While most streaming services leverage the CDN to enhance video performance, they may be missing an opportunity to leverage the CDN’s full power in securing their OTT streaming infrastructure. In this article, we’ll review how a CDN can be deployed as a security layer in an OTT streaming infrastructure to mitigate DDoS attacks and other vulnerabilities. …


By Richard Yew, Principal Product Manager, Verizon Media

The threat posed by credential stuffing attacks to OTT streaming services became crystal clear recently. Within a few hours of a much-hyped launch of a popular streaming service, user accounts were hacked and offered for sale at a discount. This breach morphed into a PR challenge as thousands of subscribers turned to social media to vent their frustrations about locked account access and service accessibility issues.

As this experience illustrates, credential stuffing attacks are an emerging challenge for OTT security teams. Streaming service subscriptions, driven by free trials, cord-cutting and exclusive content…


By Derek Shiell, Director Engineering, Verizon Media, and Harkeerat Bedi, Senior Manager — Research, Verizon Media

The need to balance compute power with latency has made edge computing a hot topic, fueled in part by the emergence of the 5G Edge, which promises ultra-low latency. The 5G Edge’s <10 ms of latency is foundational to enable virtual reality, the Internet of Things (IoT), and autonomous vehicles. Without edge computing, these functionalities would be seriously constrained.

While 5G Edge is making rapid strides forward, content delivery networks (CDN) have enabled edge compute use cases for many years, offering massive network capacity…


By Muhammad Rehman, VP & Head of Product — Delivery, Security and Compute, Verizon Media

Demand for video streaming, gaming, telehealth, real-time inferencing and other applications has skyrocketed. Computing at the “CDN Edge” can provide enterprises with a high-performing, reliable, low-latency solution that is just 10–25 ms away from internet users in major U.S. metros. A centralized cloud architecture meets many of today’s use-case requirements for performance and Quality of Experience (QoE), but emerging use-cases demand much more. …


By John Bowers, Senior Software Engineer, Verizon Media, and Nate Cahoon, Product Manager, Verizon Media

Digital rights management (DRM) is an industry standard that gives content owners options for protecting premium content. An effective DRM solution must work with the vast majority of playback devices, integrate easily into the workflow, and appear transparent to users. If it can support advanced features like offline playback, so much the better. While DRM may not be a top priority for many streaming service operators, its impact on the viewer’s playback experience can’t be an afterthought.

The goal with any DRM system is to…


Nabil Kanaan Principal Product Manager, Video, Verizon Media
and Terri Allegretto, Product Marketing Manager, Verizon Media

As streaming video services mature and proliferate, so does the consumer expectation for flawless video delivery. Multi-CDN is a technique initially created to improve the viewer experience by dynamically balancing workloads across different CDN providers. But multi-CDN also has the potential to expose information that unlocks new possibilities in how, when, and why streams are delivered through different providers.

Some of these variables include CDN price commitments and preferences, content (live vs. VOD), device type, geographical footprint, and ISP. When the multi-CDN platform…


Harkeerat Bedi, Research Scientist, Verizon Media, and Scott Yeager, Software Engineer, Verizon Media

Live sports are exciting to watch. Especially during pivotal moments, like when a shot comes out of nowhere to win the game. These moments can also be exciting for the technical team responsible for delivering fluid, real-time action. Live sports streams, which must balance a number of technical considerations and trade-offs, average around 30 seconds behind the live game on the field. Why the delay?

While content delivery networks are essential, they cannot reduce the latency caused by other parts of the video workflow. For example, latency…

Verizon Media Platform

Verizon Media offers an industry-leading Media Platform to prepare, deliver, display & monetize online content. https://www.verizonmedia.com/media-platform

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store