Virtual Patching

Every security patch issued by Oracle, Microsoft, IBM, Apache or any other software developer starts a relay race.  One team is the malicious hackers who seek web applications containing the new vulnerability to steal an organization’s data. It may take attackers a few days or weeks to find a victim, but once inside a system, it will be nearly 200 days before the attack is noticed and another 60+ days before the attack is stopped. Source: Ponemon Institue 2017 Cost of Data Breach Study

The other runners are company application security and development teams.  Once a routine or emergency patch is issued, it may be weeks, months or years – if ever – before a patch is fully deployed across an enterprise application. The consequences of losing the race between the hackers and the security professionals can be disastrous.

of all malicious attacks are aimed at the application layer

(SOURCES: DHS, Verizon)

of all successful exploits until at least 2020 will be based on vulnerabilities known to security and IT professionals for at least one year

(SOURCE: Gartner)

Binary Functionality Without Code Changes


Traditional approaches to web application security like Web Application Firewalls and RASP solutions that rely on heuristics cannot help you win the race against attacks from known (or unknown) software flaws.

Waratek’s unique, virtualization-based approach to application security allows teams to apply routine and emergency security updates without taking an app out of production. Vulnerabilities are mitigated immediately and automatically – allowing Dev teams to focus on permanent fixes for the highest level vulnerabilities and determine if lower level vulnerabilities require code changes.

With Waratek you reduce the time and effort spent on patch updates, saving time and money.

And because the application code is never touched or restarted, there is no risk of disrupting a mission critical app.

Virtual Patching using RASP by Virtualization

A virtual patch can be applied within hours of the release of a routine or emergency patch, dramatically reducing your risk profile and attack surface.

Waratek Products for Virtual Patching

Waratek Patch

Waratek Patch

A lightweight plugin agent to apply custom security patches as well as current and historical virtual patches for instant protection.

  • Create and apply custom virtual patches
  • Virtual patches of Java and .NET critical patch updates
  • Library of past CPUs to Java 4

Waratek Enterprise

Waratek Enterprise

A plugin agent that provides the full suite of Waratek benefits:

  • Virtual Patching
  • Full Stack Security
  • Virtual Platform Upgrade for Java



Saving Time and Costs with Virtual Patching



Watch this short video to see how Waratek provides Virtual Patching

Play Video


Ghost in the Machine

The cyber ghost in the machine that puts organizations and society at-large at risk the most is vulnerability patching.   When cybersecurity teams are able to keep pace with the unrelenting flow of new vulnerabilities, no one notices.  Let an organization fall behind on their vulnerability patching schedule, allowing hackers to exploit a known vulnerability, and the results range from mildly annoying to harmful to life threatening.


Try A Demo
& Get Protected.

Get a free POC when you schedule now.