Reblaze

Reblaze, an Israeli cybersecurity firm founded in 2011 by Eyal Hayardeny and Tzury Bar Yochay, provides a cloud-native platform for web application and API protection (WAAP). The company originated when its founders, while working on a classified project for the Israeli intelligence community, recognized a significant gap in the security of commercial internet companies. Co-founder Tzury Bar Yochay, a former rabbinical student turned self-taught software engineer, brought a unique perspective that shaped the company's direction. His journey involved moving from religious studies to becoming a CTO and founding several companies before Reblaze. A key milestone for the company was its acquisition by the German cybersecurity provider Link11 in January 2024, a strategic move to combine strengths and expand their global market position.

The business operates on a Software-as-a-Service (SaaS) model, providing fully managed web security solutions to a diverse client base that includes enterprises, small and mid-sized businesses, and government entities in sectors like finance, gaming, and retail. Revenue is generated through subscriptions to its security platform, with pricing based on contract terms. Reblaze's core offering is a unified security platform that shields websites, applications, and APIs from a wide spectrum of digital threats. The platform is designed to be deployed in any environment, including public, private, or hybrid clouds, and can be run as a SaaS or directly within a customer's own cloud infrastructure for enhanced privacy.

Reblaze’s product suite is comprehensive, integrating multiple security layers into a single solution. Key features include a next-generation Web Application Firewall (WAF), multi-layer protection against DoS and DDoS attacks, advanced bot management, and robust API security. The system employs machine learning and behavioral analysis to dynamically detect and adapt to new threats. A distinct feature is its deployment within a dedicated Virtual Private Cloud (VPC) for each client, which isolates web assets from internet threats while ensuring low latency. This architecture, combined with services like account takeover (ATO) prevention, real-time traffic monitoring, and CDN integration, provides a robust defense against malicious activities such as data scraping and credential stuffing.

Keywords: Web Application and API Protection, WAAP, cloud-native security, DDoS mitigation, bot management, API security, next-generation WAF, managed security service, SaaS cybersecurity, account takeover prevention, Tzury Bar Yochay, Eyal Hayardeny, Link11, network security, web performance, virtual private cloud security, real-time threat detection, behavioral analysis, machine learning security, application security, data theft prevention, credential stuffing protection, cybersecurity Israel, enterprise security