10 Best Web Application Firewall (WAF) – 2024
A web software program firewall (WAF) presents security to web apps by developing some devices of strategies (firewall) and imposing its security by monitoring and filtering the online traffic.
The safety of web applications is a rising yelp because begin-source tool vulnerabilities own been the state off of many main data breaches.
In August 2022, streaming platform Plex suffered an data breach on account of an absence of WAF security, impacting most of its users, approximately 20 million. Hence, the set up of WAF in any organization is extremely instructed.
Table of Contents
What’s WAF Utter in OSI Mannequin?
10 Easiest Web Software program Firewalls (WAF) Aspects
10 Easiest Web Software program Firewall (WAF) Suggestions 2024
1.AppTrana Managed WAF
2.Imperva Cloud WAF
3.Cloudflare WAF
4.F5 Stepped forward WAF
5.AWS WAF
6.Akamai Kona Utter Defender
7.Fortinet FortiWeb
8.Barracuda Web Software program Firewall
9.Sucuri WAF
10.Azure WAF
Faq
Also Learn
What’s Utter in the OSI Mannequin?
In this time restrict, the quantity and scope of attacks against web applications own elevated and are already at an alarming stage. And on account of all these attacks, imposing a WAF becomes a must own.
Cloud-based entirely WAFs are cheap and offer protection to web applications from many known vulnerabilities that might well lead to data compromise.Due to the this truth, while it’s main to preserve your web software program servers extra stable, you might well per chance additionally fair mute implement a WAF to your community.
To offer protection to your applications and dwell attackers from exploiting this newly chanced on vulnerability, there are several of the most attention-grabbing WAFs that might well patch vulnerabilities as soon as they are chanced on.
10 Easiest Web Software program Firewalls (WAF) Aspects
Easiest WAF Suggestions | Key Aspects |
---|---|
1. AppTrana Managed Web Software program Firewall | 1. Rapid and Easy Setup 2. Active Bot Protection Administration 3. Constructed-in Ruleset 4. Customized Ruleset 5. Entire Chance Coverage |
2. Imperva Cloud WAF | 1. RASP(Runtime Software program Self-Protection) 2. API Security 3. Stepped forward Bot Protection 4. DDoS Protection 5. Attack Analytics |
3. Cloudflare WAF | 1. Denial-of-carrier attacks mitigated 2. Job log 3. Top events by source 4. Occasions by carrier 5. Occasions summary |
4. F5 Stepped forward WAF | 1. Entire F5 web software program security 2. Cost-efficient and straight forward-to-manage compliance 3. Streamlined out‑of‑the‑field security 4. Deployment flexibility for virtualized and non-public clouds 5. Stolen credential security |
5. AWS WAF | 1. Blocks Malicious Bots 2. Protection against commonplace Vulnerabilities 3. Easy and Rapid to implement 4. REST API 5. Vibrant Chance Mitigation |
6. Akamai Kona Utter Defender | 1. Excessive configurability 2. Zero-2d SLA 3. Actionable insights 4. API discovery & security 5. Flexible management |
7. Fortinet FortiWeb | 1. Web software program security 2. Bot defense 3. Api discovery and security 4. Soc operations 5. Regulatory compliance |
8. Barracuda WAF | 1. Cloud Native for stylish workload 2. Agile-friendly and DevOps ready 3. cell app security 4. End Sinful Bots 5. Be certain security from Web Attacks and DDoS |
9. Sucuri WAF | 1. Virtual Patching and Hardening 2. Block DDoS Attacks 3. Safe Pages 4. IP Allowlisting 5. Software program Profiling |
10. Azure WAF | 1. Easy Setup 2. REST API Enhance 3. Rapid and Easy Setup 4. Enhance visibility into security and analytics 5. Improves security and optimizes performance on the brink |
10 Easiest Web Software program Firewall (WAF) Suggestions 2024
- AppTrana Managed WAF
- Imperva Cloud WAF
- Cloudflare WAF
- F5 Stepped forward WAF
- AWS WAF
- Akamai Kona Utter Defender
- Fortinet FortiWeb
- Barracuda Web Software program Firewall
- Sucuri WAF
- Azure WAF
1. AppTrana Managed WAF
AppTrana Managed WAF equips you with intuitive dashboards and diversified functional data to better answer to incidents (attacks).AppTrana’s defenses against DDoS attacks, even the most sophisticated ones, are behavior-based entirely.
AppTrana is the engine that drives the advise material birth community to your web place of dwelling, with nodes strategically placed all the device in which during the enviornment.It lets you preserve an see on ability threats in accurate-time with its fixed scanning.
Scans, both automatic or manually performed, can even be bustle at a predetermined time.A enormous group of experts constantly shows AppTrana in expose to develop web software program security.
Salvage in line with PCI-DSS and diversified governance and compliance standards.Previous the OWASP Top 10, this resolution protects you from API misuse, abominable bots, and complex fee obstacles.
Aspects
- Incoming data is checked for dangers by AppTrana Managed WAF, and abominable requests are blocked to preserve web apps safe.
- The Commence Web Software program Security Project (OWASP) Top 10 lists the ten largest security complications with web apps.
- AppTrana Managed WAF keeps an see on web software program data the total time.
- Managed WAF programs can even be modified to work with diversified web apps.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Configuration is Very Straight forward, and it contains the total required aspects | customized strategies in the firewall can own extra aspects. |
Very cheap tag. | Pretend positives can happen when automatic programs designate legitimate traffic as threats. |
Easy setup and integration with out sophisticated setups. | |
Chance identification and mitigation utilizing AI. |
Demo video
tag
you might well per chance additionally catch a free trial and demo from right here…
2. Imperva Cloud Web Software program Firewall
With Imperva Cloud WAF’s automatic policy formulation and almost today rule propagation aspects, you might well per chance additionally form online applications safer and form it more straightforward for DevOps to work with third-event code. Mitigate.
Holding against the tool’s execution environment Web software program security is improved by accurate-time attack detection since it guards against exterior assaults and injections in accurate time.
All susceptible areas of your web app, in conjunction with API endpoints, are today and automatically secured.The appropriate strategy to ensure availability and industrial continuity with out sacrificing throughput is to block traffic on the brink.
Safeguard data kept in the community or in Amazon Web Services and products (AWS), Microsoft Azure, or Google Cloud Platform (GCP).
The Imperva WAF is on hand in two definite flavors:
- Waf SaaS
- In-Condo WAF or Hosted Cloud WAF
Instrument as a carrier firewalls can even be modified and deployed swiftly. Imperva handles it all, so you don’t must utilize any time or energy on it.
WAF through Gateway or Cloud WAF lets you deploy WAF anyplace you want it (as a bodily or digital appliance).Dynamic profiling and attack intelligence allow you to determine easy strategies to preserve your apps safe.
Aspects
- Imperva Cloud WAF protects against OWASP Top 10 flaws, SQL injection, XSS, and distant file inclusion in a solid device.
- It has gargantuan instruments for stopping bots.
- It shields online programs from DDoS attacks that are in line with quantity, software program layer, and protocol.
- Vital security analytics and reporting are phase of the answer.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Fewer Inaccurate Sure | Web Software program Firewall slows down customarily |
Strongly defends against many web software program exploits. | A third-event carrier’s downtime or difficulties might well per chance additionally fair set you at risk. |
Offers sophisticated security customization and rule-environment. | |
Scales neatly to traffic and software program requires. |
Demo video
tag
Which you might per chance additionally catch a free trial and demo from right here..
3. Cloudflare Web Software program Firewall
Cloudflare is positioned as a Leader in the Gartner® Magic QuadrantTM for WAAP, 2022.
There are four pricing tiers on hand on Cloudflare:
- free
- expert
- industrial
- endeavor
In expose to enhance WAF security, Cloudflare WAF lately applied machine finding out.Customers on the Endeavor, Pro, and Biz tiers can own early catch entry to to the unusual detections.Nonetheless this deal isn’t begin to the public ethical but.
You’ll must set your title on a list to rob perfect thing about this deal except it goes public.
The employ of machine finding out has vastly benefited security in three predominant strategies:
- Machine finding out algorithms are evaluated in line with the assaults that state to own been blocked.
- On condition that recognition is a sample- and feedback-based entirely route of, it naturally evolves and will get better with age. All of Cloudflare’s data and feedback are handled as neatly.
- This design that the protection features taken by every Cloudflare buyer are identical.
- Now not like human researchers, machine finding out engines can swiftly name outliers and ability treatments.
Aspects
- Cloudflare WAF guards against the high 10 OWASP vulnerabilities.
- Some of these are SQL attack, XSS, working code from afar, and others.
- These users can form their obtain strategies for retaining online apps.
- The utilization of behavioral analytics, it finds and stops behavior that looks irregular.
- Cloudflare WAF stops DDoS attacks as neatly as software program-layer security.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Load Balancing is expose. | Third-event Integration poses a yelp. |
Technical Enhance is almost today to response | The story might well per chance additionally very neatly be extra granular. |
Customizable security strategies. | |
Improves risk visibility with intensive insights and analytics. |
Demo video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
4. F5 Stepped forward WAF
Without requiring adjustments to the apps themselves, F5’s Stepped forward WAF prevents the wide majority of attacks.
The built-in policy templates in F5 AWAF present for added environment friendly and streamlined regulation of the most customarily weak applications’ security. In accordance to the data it collects, AWAF can generate security policies by itself.
To extra reinforce the safety of online apps, users can even state their very obtain policies. Security devices, both obvious and adverse, are blended in F5’s AWAF to remain attacks from both known and unknown sources.
SAAS F5 AWAF’s excessive availability is the final consequence of its artful employ of a load balancer all the device in which through a huge alternative of servers. Files is encrypted on the software program layer by F5 AWAF, making it proof against man-in-the-heart assaults and diversified forms of data exfiltration malware.
AWAF is care for minded with all of F5’s platforms, in conjunction with Virtual Version (VE) for securing Virtual Non-public Cloud applications and BIG-IP and VIPRION appliances working on multi-line card enclosures for on-premises deployments.
AWAF F5 prevents attacks on applications deployed on-premises, in the cloud, or in a hybrid environment.
Aspects
- F5 Stepped forward WAF stops XSS, SQL injection, session hijacking, and diversified OWASP Top 10 threats.
- Chance data feeds and IP reputation files are weak by F5 WAF products to form security better.
- With F5 Stepped forward WAF, you might well per chance additionally dwell bots that ship data automatically.
- These instruments can decode SSL/TLS data in relate that threats in encrypted traffic can even be chanced on and stopped.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
It is a truly lightweight tool. | Now not Compatible with a pair of cloud environments wants to be improved. |
Strongly defends against several software program-layer dangers. | Deployment of the tool is complex. |
Improves security with developed risk intelligence and machine finding out. | |
Offers customized security and policy preserve a watch on. |
Demo Video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
5. AWS WAF
Frequent threats care for SQL injection and XSS can even be blocked and bot traffic might well per chance additionally fair be managed with the support of AWS WAF. The AWS WAF console has a wizard for setting up a web ACL.
You might well per chance per chance employ AWS WAF to present REST APIs from Amazon API Gateway, Software program Load Balancers, GraphQL APIs from AWS AppSync, or User Pools from Amazon Cognito.
Applications working in Amazon ECS containers can even be safeguarded with the support of the AWS Web Software program Firewall.
Amazon Elastic Container Service (ECS) is a hasty and scalable container management carrier that makes working and stopping Docker containers in a cluster a lumber.
Vibrant risk mitigation is on hand in AWS WAF, and CAPTCHA strategies can even be state up as neatly. Anecdote Takeover Protection (ATP) in AWS WAF for Fraud Adjust
AWS WAF is able to controlling both valid and nasty bots. Rule devices administered by Bot Adjust offer mandatory performance.
Validating the buyer session and getting the buyer’s AWS HTTP Software program Firewall token in the HTTP quiz
Aspects
- XSS and SQL attack can happen in online apps, but AWS WAF stops them.
- This presents you managed rule devices that dwell commonplace threats.
- You might well per chance per chance state limits on the choice of requests that come from definite IP addresses or groups in AWS WAF. Abuse and DoS attempts can’t happen now.
- It lets you form your obtain security strategies to preserve your web apps safe.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Web Traffic is managed properly. | Technical strengthen is costly |
Robotically adjusts to online traffic and software program seek data from. | Technical strengthen responds leisurely |
Permits customized strategies to filter and dwell infamous communication. | |
Making unusual customized strategies are easy to form and implement. |
Demo video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
6. Akamai Kona Utter Defender
For the sixth yr in a row, Akamai has got recognition from Gartner® as a WAAP Magic QuadrantTM Leader. Akamai Kona’s automatic, adaptive, cloud-agnostic security is the answer to his latest WAAP woes.
Akamai Kona uses machine finding out for automatic tuning and accurate-time security, cutting backtrack on unnecessary processing and unfaithful positives. One in all the earliest WAAPs to employ API detection is Akami’s.
This lets you be taught about and employ the most stylish APIs as they become on hand. This WAF aspects accurate-time, continuously-on monitoring with customizable dashboards and instantaneous notifications.
All safeguards are easily automatable. DDoS attacks on networks can even be today halted. React swiftly to threats on the software program layer. Flexible operation makes it straightforward and efficient to administer and navigate annoying settings.
Aspects
- Due to the Akamai’s enormous edge computer community, Kona Utter Defender can present security companies and products all the device in which during the enviornment that might well per chance also be scaled up or down.
- You might well per chance per chance’t discontinuance a DDoS attack with Kona Utter Defender.
- It keeps folks that employ online companies and products safe from a alternative of security strategies and rules, equivalent to the OWASP Top 10.
- With bot security applied sciences, it stops traffic from nasty bots.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Can invent customized strategies. | Excessive Cost. |
The scalability of the tool is extremely valid. | The technology of the Advise might well per chance additionally very neatly be improved. |
Contains accurate-time risk intelligence and proactive mitigation. | |
Permits software program-particular security policy customization. |
Demo video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
7. Fortinet FortiWeb
Fortinet’s Web Software program Firewall, FortiWeb, can fend off attacks that exploit both important and previously undisclosed flaws to your software program’s infrastructure.
From straightforward hardware appliances to developed digital machine choices that might well per chance also be integrated into the most cutting back-edge cloud architectures, FortiWeb has a form yelp that will suit your requires.
Dwelling Electronics:
The multi-core processor technology and hardware-based entirely SSL instruments weak in FortiWeb appliances allow for speedier processing events.
Emulated Laptop programs:
FortiWeb’s digital machine (VM) implementation is portable all the device in which through many VM environments.
Commence Cloud:
Every main public cloud carrier, in conjunction with Google Cloud, Oracle Cloud, and Amazon Web Services and products (On Set a matter to), presents FortiWeb.
Dwelling equipment in containers:
FortiWeb container appliances are on hand to present centralized security to your workload and data in a container environment.
SAAS:
FortiWeb Cloud WAF-as-a-Service is a tool-as-a-carrier cloud web software program that protects against a huge collection of software program layer assaults, in conjunction with the OWASP Top 10 and zero-day threats. Since it’s a SAAS, getting it up and working takes subsequent to no time.
FortiWeb presents PCI-DSS and diversified regulatory compliance wants for public-facing apps. FortiWeb consolidates raw match data correct into a definite image of the largest dangers.
FortiWeb can even will let you safeguard the software program programming interfaces (APIs) that form your cell app’s B2B communication that you might well per chance additionally imagine.
It prevents the utilization of malicious bots with out interfering with the operation of valid bots that an organization might well need. Without requiring reasonably just a few administrative work, FortiWeb can form out and dwell attacks from both commonplace and uncommon sources.
Aspects
- FortiWeb protects against all web software program errors, equivalent to SQL injection and XSS, that are in the OWASP Top 10 list of weaknesses.
- These can witness at SSL/TLS data and decrypt it to get hidden threats.
- The utilization of behavioral diagnosis, it finds abnormal patterns in the traffic to web applications.
- It has instruments to get and dwell bots, which makes it more straightforward to employ.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
The story is neatly-defined. | GUI is diminutive. |
Setup is fundamentally easy. | Enhance group delays in replying. |
PCI compliance is followed neatly. | |
Helps trim traffic with out sacrificing performance. |
Demo video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
8. Barracuda WAF
With Barracuda WAF-as-a-Service, you might well per chance additionally fair own elephantine uncover. With WAF-as-a-Service, you might well per chance additionally fair own catch entry to to all the pieces you want for foolproof software program security.
Barracuda WAF-as-a-Service protects your complete attack floor, in conjunction with REST APIs and API-based entirely applications. API Discovery minimizes handbook labor by generating the considerable rule devices for the API by itself.
Barracuda’s cloud-based entirely web software program firewall (WAF) protects APIs from threats equivalent to parser and distributed denial of carrier attacks (DDoS).
Stepped forward Bot Protection is a characteristic of Barracuda WAF-as-a-Service that employs machine finding out to enhance its detection and prevention of malicious bots.
Entire DDoS security is included at no extra tag in our Web Software program Firewall, which defends against attacks on Layers 3 through 7.
Barracuda WAF-as-a-carrier’s sophisticated vulnerability scanners constantly show screen your elephantine deployment for vulnerabilities. Apps that own vulnerabilities can own them fastened automatically or with a single click while they are mute in pattern.
Barracuda WAF-as-a-carrier solves the topic of unveiling compliance and the time spent doing so by automatically generating intensive logs and offering tailor-made experiences on seek data from.
The flexibility to deem about software program traffic at a granular stage lets you preserve tabs on any relevant task and act or strategize accordingly.
Aspects
- Barracuda WAF stops XSS, SQL injection, and diversified web software program flaws almost today.
- It will get risk experiences in accurate time from Barracuda Central and diversified honest sources.
- To get and dwell bot task, it’s a ways weak for “bot mitigation.”
- It might well per chance be taught and decode SSL/TLS-encrypted data to get and dwell threats that are hidden.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Magnificent Response Time | Reporting can even be a puny bit sophisticated. |
Detects and mitigates threats utilizing machine finding out and behavioral diagnosis. | Preliminary setup can even be a puny bit sophisticated. |
Easy configuration for rapid implementation. | |
Spam Emails are blocked in the event that they don’t high-tail the diagnosis |
Demo video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
9. Sucuri WAF
Patches and firewall strategies retaining your place of dwelling against intrusion are continuously as a lot as this level. With a Web Software program Firewall and a international Anycast community, you’ll never expertise any downtime.
The holes might well per chance additionally fair be closed and the threats stopped with the support of WAF’s intrusion prevention design. There might be an option for making some pages extra stable by adding passwords, a captcha, 2FA or IP whitelisting, and just a few extra.
Before reaching your server, every HTTPS data is analyzed. We dwell infamous requests and attacks by utilizing heuristic and signature-based entirely strategies.
Malicious requests are acknowledged and banned in line with signatures and heuristics, that are applied to all HTTP and HTTPS traffic. Your place of dwelling’s profile and applied sciences are weak to filter incoming requests; any that don’t conform will be denied.
Aspects
- Sucuri WAF stops a alternative of threats to web applications. These form of are SQL attack, XSS, adding files from afar, and extra.
- Sucuri WAF lessens the anxiousness that DDoS attacks discontinuance to web sites on a huge scale.
- Virtual fixing permits it to swiftly offer protection to against flaws in web applications.
- It might well per chance get spyware and spyware and catch rid of it.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Enhances the escape of the online place of dwelling utilizing CDN escape enhancement | The strengthen group responds leisurely. |
Sucuri has Site Backups | Chat Enhance just will not be wise. |
Setup is Easy | |
Better logging with the utilization of the free plugin |
Demo video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
10. Azure WAF
As a cloud carrier, Azure WAF might well per chance additionally fair be up and working in below 2 minutes. Prevent cyberattacks and stare your environment with complete readability.
Your software program will be safe from SQL injection and nasty-place of dwelling scripting threats now. The lack of supplementary tool agents makes Azure WAF Security incredibly straightforward to implement.
After that, you might well per chance additionally alter present strategies or invent imprint unusual ones to better match your requirements. Enhance app security, develop scalability, and escape up app birth for users in every single situation by developing Azure WAF on Azure Entrance Door.
Your web app will catch pleasure from the elevated uptime. Azure Web Software program Firewall logs and experiences can even be centralized, and straightforward text data can even be mild for added debugging.
When it comes to automating DevOps procedures, Azure WAF has you lined with its comprehensive REST API strengthen. Inaccurate positives can even be lowered by utilizing the Azure WAF detection engine along side a lately as a lot as this level rule state.
Autoscaling, zone redundancy, and static VIP strengthen are one of the necessary necessary aspects on hand in the Azure Software program Gateway WAF v2 SKU.
Besides to to enhanced performance, these gateways present speedier deployment and configuration change events, header rewriting, and individualized WAF strategies.
Aspects
- The Azure WAF stops the OWASP Top 10 flaws, which consist of XSS and SQL injection. These flaws are all state.
- It lets you state security strategies for cyber web apps that are unheard of to them.
- DDoS attacks can’t happen with Azure WAF and Azure DDoS Protection.
- This can additionally fair get bot task and dwell it.
What’s Magnificent? | What Might per chance per chance Be Better? |
---|---|
Automation and preserve a watch on are very easy to employ. | Proxy forwarding might well per chance additionally very neatly be improved. |
The dashboard is interactive. | Deployment is complex. |
Scales dynamically to meet traffic and software program wants. | |
Guards against conventional web vulnerabilities and assaults. |
Demo Video
Trace
Which you might per chance additionally catch a free trial and demo from right here..
Faq
A firewall in the online software program is purely a vogue to present security to servers by developing a state of strategies that might well support in filtering the traffic.
In total, WAF will dwell from folks entering/penetrating your web software program and, preserve the data on the server stable.
They tend to be weak as an extra layer between web sites and the cyber web in relate that traffic can even be intercepted and inspected sooner than it reaches the online place of dwelling.
Easiest Web Software program Firewall prevents the online software program(server) from a huge diversity of attacks, most recurrently the “OWASP Top 10“.
The strategies are pre-defined in WAF to remain frequent attacks, and also you might well per chance additionally additionally customise the foundations and add your obtain strategies as neatly.
There are three kinds of WAF:
Network-Based entirely WAF: This form of WAF is state up between the cyber web and your server to show screen traffic for malicious task. Network-based entirely WAFs are primarily hardware-based entirely, with some tool-based entirely exceptions.
Hardware-based entirely requires a bodily tool and fees extra, so you might well per chance additionally resolve one or the diversified in line with your budget.
Cloud-Based entirely WAF: Cloud-based entirely WAFs show screen traffic flowing through cloud-based entirely firewall suppliers and reside in the cloud.
It’s the least expensive and perfect to state up because it’s cloud-based entirely and largely supplier-managed.
Besides to, since it’s a ways managed by a third event (supplier), it’s a ways automatically as a lot as this level on a customary basis.
Host-Based entirely WAF: A community-based entirely WAF shows traffic coming into the server, while a bunch-based entirely WAF shows traffic flowing during the server.
And since host-based entirely is primarily tool-based entirely, it will also be customized for any server but requires extra configuration. Whereas it’s a ways a cheap option, it might per chance in reality be sophisticated to implement.
Also Learn
- Easiest Free Web Software program Penetration Attempting out Instruments
- AWS Security Instruments to Give protection to Your Atmosphere and Accounts
- SMTP Test Instruments to Detect Server Points & To Test Email Security
- On-line Penetration Attempting out Instruments for Reconnaissance and Exploit Search
- Stepped forward Endpoint Security Instruments
- Easiest SysAdmin Instruments
- Easiest Free Penetration Attempting out Instruments
- 10 Harmful DNS Attacks Kinds and The Prevention Measures
- Free Forensic Investigation Instruments
- Malicious program Bounty Platforms for Every White Hat Hackers
- Easiest Search Engines That You Can Use Rather than Google
Source credit : cybersecuritynews.com