Lucene search
K

504 matches found

Imperva Blog
Imperva Blog
added 2023/10/11 10:46 p.m.176 views

Recent Vulnerabilities in Popular Applications Blocked by Imperva

Multiple vulnerabilities in popular and widespread applications have been disclosed recently, tracked as CVE-2023-36845, CVE-2023-40044, CVE-2023-42793, CVE-2023-29357, and CVE-2023-22515. These vulnerabilities, which affect several products and can be exploited to allow arbitrary code execution,...

7.5CVSS10.6AI score0.99979EPSS
Exploits95
Imperva Blog
Imperva Blog
added 2023/10/11 10:29 p.m.70 views

Atlassian CVE-2023-22515 Blocked by Imperva

Atlassian, an Australian software company, has released emergency security updates to address a severe zero-day vulnerability in its Confluence Data Center and Server software. This vulnerability is actively being exploited, allowing attackers to create unauthorized Confluence administrator...

7.5CVSS7.3AI score0.99156EPSS
Exploits39
Imperva Blog
Imperva Blog
added 2023/10/10 12:24 p.m.122 views

Protecting Against HTTP/2 Rapid Reset: CVE-2023-44487

Today, Google disclosed a zero-day vulnerability in the HTTP/2 protocol. Imperva collaborated proactively with Google to gain advanced insights into this vulnerability. After a comprehensive inspection of this vulnerability by Imperva’s Product Development and Threat Research teams, we can confir...

5CVSS8.4AI score0.99999EPSS
Exploits19
Imperva Blog
Imperva Blog
added 2023/09/19 1:14 p.m.23 views

Elevate Your Cybersecurity with Imperva Cloud WAF: More Than Just a Checkbox

In the world of digital modernization, having a web application firewall WAF isnt an option - its a necessity. But in the endless sea of security solutions, how do you choose the right one? How do you ensure that youre not merely checking a box, but genuinely fortifying your digital fortress? Whi...

6.9AI score
Exploits0
GithubExploit
GithubExploit
added 2023/08/31 1:25 p.m.546 views

Exploit for SQL Injection in Progress Moveit_Cloud

MOVEit Exploit an exploit of POC for CVE-2023-34362 affe...

9.8CVSS10AI score0.99934EPSS
Exploits15
Imperva Blog
Imperva Blog
added 2023/08/28 8:19 p.m.19 views

Imperva Clinches 2023 SC Media Trust Award for Best Database Security Solution: A Back-to-Back Victory

Imperva, a global leader in cybersecurity, is proud to announce that we have once again been honored for our industry-leading database security solutions, earning the prestigious 2023 SC Media Trust Award for Best Database Security Solution. This accolade marks the second consecutive year that...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/08/24 2:25 p.m.33 views

How to Secure All Your APIs Through Multiple Deployment Options

Imperva has invested in strengthening our API Security offering to meet the needs of customers since the acquisition of CloudVector in 2021. Since then, the product’s capabilities have expanded, positioning it as a leader in the growing API Security market. What makes Imperva API Security unique ...

6.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/07/23 9:46 a.m.58 views

CVE-2023-3519: NetScaler (Citrix) RCE Blocked By Imperva

On July 20, CISA warned about the exploitation of an unauthenticated remote code execution vulnerability affecting NetScaler formerly Citrix Application Delivery Controller and NetScaler Gateway. Attackers first exploited this vulnerability in June, when unidentified hackers used this as a zero-d...

7.5CVSS8.1AI score0.99445EPSS
Exploits16
Imperva Blog
Imperva Blog
added 2023/07/23 1:11 a.m.48 views

Adobe ColdFusion vulnerabilities mitigated by Imperva

Several vulnerabilities in Adobe ColdFusion have been discovered recently, tracked as CVE-2023-29300, CVE-2023-38205, and CVE-2023-29298. These vulnerabilities, which can be exploited to allow arbitrary code execution and bypass access controls, affect several ColdFusion versions since 2016...

7.5CVSS8.1AI score0.99984EPSS
Exploits0
Imperva Blog
Imperva Blog
added 2023/07/10 3:50 p.m.133 views

New MOVEit vulnerability CVE-2023-36934 blocked by Imperva

On July 5, Progress Software released a security advisory for a new critical vulnerability in the MOVEit Transfer software, CVE-2023-36934. With a critical score of 9.1, this bug is a SQL injection vulnerability in the MOVEit Transfer web application with the potential to allow unauthorized acces...

7.5CVSS10AI score0.99934EPSS
Exploits15
Imperva Blog
Imperva Blog
added 2023/07/10 3:27 p.m.17 views

Imperva Offers New Features to Simplify PCI DSS Compliance

The Silent Threat of Client-Side Attacks As more transactions move online, a silent threat is lurking in the deepest, darkest shadows of websites, threatening to steal your sensitive data. This rapidly evolving threat, known as client-side attacks such as Magecart, formjacking, and online skimmin...

6.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/06/15 7:13 p.m.26 views

Anonymous Sudan, MOVEit, and Cl0p

There are three concurrent events of significant concern: 1. An Anonymous Sudan group chat on Telegram has revealed imminent threats from Russia to the US financial system, specifically targeting the SWIFT network. The motive behind this attack is disruption. By attacking SWIFT and inducing...

6.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/06/06 3:55 p.m.55 views

CVE-2023-34362 – MOVEit Transfer – An attack chain that retrieves sensitive information

MOVEit Transfer is a popular secure file transfer solution developed by Progress, a subsidiary of Ipswitch. At the moment, there are more than 2,500 MOVEit Transfer servers that are accessible from the internet, according to Shodan. On May 31, 2023, Progress released a security advisory affecting...

7.5CVSS8.7AI score0.99934EPSS
Exploits15
Imperva Blog
Imperva Blog
added 2023/05/10 11:59 a.m.20 views

What We Learned from the 2023 Imperva Bad Bot Report

The 2023 Imperva Bad Bot Report is now available. The 10th edition of the annual report takes a deep dive into the latest bad bot statistics and trends from the past year, providing meaningful information and guidance about the nature and impact of bots. Understanding the risks of unmanaged bot...

7.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/05/04 1:19 p.m.54 views

CVE-2023-29552: Abusing the SLP Protocol to Launch Massive DDoS Amplification Attacks

On April 25, 2023, researchers at Bitsight and Curesec jointly discovered a high-severity vulnerability — tracked as CVE-2023-29552 — in the Service Location Protocol SLP, a legacy Internet protocol. What is SLP protocol? Service Location Protocol SLP is a network protocol designed to simplify th...

5CVSS7.4AI score0.65873EPSS
Exploits1
Imperva Blog
Imperva Blog
added 2023/05/03 4:58 a.m.27 views

With Imperva’s DRA and ServiceNow, you can avoid burning out your cyber security employees

In todays world, CIOs and CISOs are facing a tough reality when it comes to the security staff shortage situation. With the deflating economy, nationalism, cybercrime, and nation-led adversaries, the demand for security personnel has increased, making it challenging for organizations to find and...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/05/01 6:45 p.m.26 views

Imperva Continues to Innovate With New Features for Online Fraud Prevention

Last year, Imperva embarked on a mission to help organizations combat the growing threat of digital fraud. We introduced a new solution and a range of innovative features to help detect and prevent online fraud at its earliest stages. Imperva Online Fraud Prevention stops fraud ranging from...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/04/27 5:10 p.m.24 views

Imperva® and Fortanix Partner to Protect Confidential Customer Data

Imperva Data Security Fabric and Fortanix Data Security Manager combine to provide end-to-end data security. Imperva, Inc., @Imperva the cybersecurity leader that protects critical applications, APIs, and data, anywhere at scale, and Fortanix, Inc. @Fortanix, the Data Security company powered by...

6.3AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/04/19 1:47 p.m.31 views

Imperva and Kong Partner to Bring API Security to the Gateway for Enhanced API Management

Imperva is delighted to announce a new partnership with Kong Inc, provider of the leading cloud-native API platform, to offer best-in-class API Security to users of the Kong platform. Through the new partnership, Kong Enterprise customers can protect their business applications and data by...

7.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/04/18 2:42 a.m.11 views

Imperva is an Overall Leader in the 2023 KuppingerCole Leadership Compass Data Security Platforms Report

Imperva is a leader in every category – Market, Innovation, and Product Imperva, Inc., @Imperva the cybersecurity leader that protects critical applications, APIs, and data, anywhere at scale, is an Overall Leader in the 2023 KuppingerCole Leadership Compass for Data Security Platforms. Previousl...

6.7AI score
Exploits0
Rows per page
Query Builder