Lucene search
K
ImpervablogMost viewed

1025 matches found

Imperva Blog
Imperva Blog
added 2022/12/27 3:27 p.m.23 views

81% Increase in Large-Volume DDoS Attacks

Since 2021, distributed denial of service DDoS attacks have trended upwards, both in volume and frequency. Layer 7 DDoS attacks of at least 500,000 requests per second RPS increased 81% in the past year. In addition to greater frequency, attack sizes were larger in 2022 than in 2021. The largest...

0.4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/11/29 12:8 p.m.23 views

The 5 Core Principles of the Zero-Trust Cybersecurity Model

When even the US Government concludes that to ensure baseline security practices are in place and to realize the security benefits of cloud-based infrastructure while mitigating associated risks, they must migrate to a zero-trust model, every organization should be actively moving in that...

0.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/07/19 12:56 p.m.23 views

Multiple Imperva Products Earn 2022 Fortress Cyber Security Awards

In June, the Business Intelligence Group announced that three Imperva products have earned the 2022 Fortress Cyber Security Awards. The mission of this prestigious award program is to identify and reward leading companies and products globally that are successfully keeping data and electronic...

Exploits0
Imperva Blog
Imperva Blog
added 2022/07/14 2:6 p.m.23 views

Top Challenges to Implementing Data Privacy: Nailing Down Discovery and Classification First is Key

Why Discover and Classify is so critical Ice hockey goal-scoring great Wayne Gretzky is reported to have said, “You miss 100 percent of the shots you don’t take.” The data security version of this quip is “you protect zero percent of the data you can’t see” and the data privacy version is “if you...

Exploits0
Imperva Blog
Imperva Blog
added 2022/04/07 4:53 p.m.23 views

Why Customers Asked us for a Data Security Fabric (Even When They Didn’t Know to ask for it by Name)

Our journey to the data security fabric started a while back when we built the industry’s first data security platform based on what customers said they needed and working with customers as design partners. The concept of a software platform has been around for a long time. Like all platforms, we...

7.3AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/03/21 7:58 p.m.23 views

A Search for API Security in the Operator’s Tool Box

Much has been written about modern application security tools and solutions from the provider’s perspective about their functionality and security features. When I was asked to write a blog about API Gateways and API Security, I felt it may be more useful to think about the subject from the user’...

Exploits0
Imperva Blog
Imperva Blog
added 2022/03/17 2:26 p.m.23 views

How to use the Gartner® 2022 Strategic Roadmap for Data Security Platform Convergence

“It is not the strongest species that survive, nor the most intelligent, but the ones most responsive to change.” – Charles Darwin Evolution and innovation form the basis of most modern business mission statements. However, the same organizations pursuing growth and change often do not put...

0.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/02/10 4:7 p.m.23 views

Is it Easier to Turn Cloud Professionals into Security Practitioners or Vice Versa?

Insights into the cybersecurity skills gap In a poll taken at a recent Imperva webinar, What’s New in ‘22? Cybersecurity Trends and Predictions, participants said it’s easier to turn security practitioners into cloud professionals by a margin of 65-35. Three Directors in Imperva’s Office of the C...

7.5AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/11/17 3:55 p.m.23 views

How Imperva Leverages AWS to Help Customers Prevent Attacks

At Imperva, we’re passionate about being a trusted security partner for our customers, so we continually invest in the availability, resiliency, and scalability of our global network. We’ve made significant investments over the past year to expand our cloud footprint, including rebuilding and...

6.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/04/13 12:2 p.m.23 views

Bad Bot Report 2021: The Pandemic of the Internet

The 8th Annual Bad Bot Report is now available from Imperva. Created using data from Imperva’s Threat Research Lab, it provides a comprehensive look at the bad bot landscape and the impact that this malicious traffic has across multiple industries. Bad bot traffic amounted to 25.6 percent of all...

0.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/10/23 4:1 p.m.23 views

Monitor More, Worry Less. Outpace Threats With Machine Learning.

In the past two years, enterprises have created more data than has been created in the entire history of humankind. At scale, securing this amount of data requires a re-think of how we grant and revoke access to sensitive files and, more importantly, how we identify and track the inevitable acces...

7.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/06/22 3:30 p.m.23 views

Are All Ransom Attacks Considered Ransomware?

Ransomware has loomed large in the news of late. It seems to be around every turn, and it’s not going anywhere. The untraceability of Bitcoin payments, coupled with new blackhat tools available to anyone at little if any cost, means extortion attempts will continue to grab headlines worldwide. Bu...

7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/05/04 3:30 p.m.23 views

Native Auditing Tools – Performance, Cost, and Compliance Issues

As we covered in a previous post, data-centric security measures need to be implemented to meet compliance requirements and protect against complex, ever-evolving attacks. There are two primary approaches to implementing these measures: Native auditing, which uses a database server's built-in too...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2026/06/07 8:40 a.m.22 views

The Clock Is Already Ticking: Why Post-Quantum Cryptography Can’t Wait

There is a question I have been hearing more and more from CISOs, compliance officers, and security architects over the past year. It does not start with "we had a breach" or "we failed an audit." It starts with something that sounds almost philosophical: " Are we quantum-safe?" A year ago, that...

5.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2025/07/11 5:39 p.m.22 views

CVE-2025-5777 Exposes Citrix NetScaler to Dangerous Memory Leak Attacks

The cybersecurity community is once again sounding the alarm over a new vulnerability in Citrix NetScaler devices- this time, it’s CVE-2025-5777 , also dubbed CitrixBleed 2. Following in the footsteps of the high-profile CitrixBleed vulnerability CVE-2023-4966 disclosed in 2023, this newly...

9.4CVSS9.5AI score0.99999EPSS
Exploits29
Imperva Blog
Imperva Blog
added 2024/05/17 11:33 p.m.22 views

The Importance of Bot Management in Your Marketing Strategy

Marketing teams need a comprehensive bot management solution to address the challenges posed by bot traffic and protect marketing analytics. Bot management is designed to protect marketing efforts from bot-generated invalid traffic by accurately and efficiently classifying traffic and stopping...

7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2024/02/28 7:9 p.m.22 views

Navigating the Waters of Generative AI

Part I: The Good and the Bad of AI Few would argue that 2023 was the year AI, specifically generative AI Gen AI like ChatGPT, was discussed everywhere. In October, Forrester published a report about how security tools will leverage AI. The findings in that report showed that Gen AI would augment...

7.4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/08/16 3:33 a.m.22 views

Applying Data Ontology Concepts to Protect Data

Data breaches continue to be the thorn for most organizations despite the sophisticated and innovative cybersecurity tools that are used to stop what is now the inevitable cost of doing business in a hyperconnected world. In this blog post, I’ll explain how organizations can increase the...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/12/07 9:0 a.m.22 views

2023 Predictions: API Security the new Battle Ground in Cybersecurity

The adoption of application programming interfaces, more commonly known as APIs, has increased dramatically in recent years. In many ways, APIs are now the backbone of the Internet. The reason? APIs are an essential component of digital transformation, enabling applications, containers, and...

Exploits0
Imperva Blog
Imperva Blog
added 2022/10/27 1:38 p.m.22 views

Imperva Stops Hordes of Bots from Hijacking Financial Accounts in Largest Recorded Account Takeover Attack

Consider for a moment that an army of bots is setting their sights on your website. They target your login page and hammer it with millions of requests in an ongoing attack that lasts days, raising your infrastructure and fraud prevention costs. Would this frighten you? What if this barrage of bo...

0.3AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/10/20 3:18 p.m.22 views

The Global DDoS Threat Landscape – October 2022

Every month in this space, we will post the Global DDoS Threat Landscape blog on behalf of the Imperva Threat Research team. As DDoS attacks continue to pose a significant risk to businesses it is critical that we regularly communicate our Threat Research team’s findings to help the cybersecurity...

0.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/10/19 1:12 p.m.22 views

Gain Control of Rapidly Securing Your Critical APIs Without Worrying About Your Backend Stack

Imagine trying to protect your web application farm, while needing to integrate with all the different web servers backend stacks on a one-to-one basis. This requires a WAF that understands systems such as Nginx, Apache, IIS, and Tomcat. You will effectively start a project that will never end du...

0.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/10/11 1:30 p.m.22 views

Why a Resilient Content Delivery Network (CDN) is Key to Website Performance

Today’s online users have built-up certain standards of quality when visiting a website. They expect a high performance website with fast page load times and easily accessible, fresh and dynamic content. They also expect to enjoy a seamless and secure experience without downtime or limitations to...

0.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/09/29 3:30 p.m.22 views

How Scanning Your Projects for Security Issues Can Lead to Remote Code Execution

The Imperva Red Team recently discovered and disclosed CVE-2022-40764, a command injection vulnerability affecting Snyk CLI. Snyk is a security company best known for its dependency vulnerability management software. The disclosed command injection vulnerability affects the Snyk command-line...

0.00529EPSS
Exploits1
Imperva Blog
Imperva Blog
added 2022/09/19 12:24 p.m.22 views

Record 25.3 Billion Request Multiplexing DDoS Attack Mitigated by Imperva

On June 27, 2022, Imperva mitigated a single attack with over 25.3 billion requests, setting a new record for Imperva’s application DDoS mitigation solution. While attacks with over one million requests per second RPS aren’t new, we’ve previously only seen them last for several seconds to a few...

1.4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/09/06 1:22 p.m.22 views

Imperva Is a Magic Quadrant Leader for Web Application and API Protection (again)

With the summer coming to a close we are now entering into “Magic Quadrant” season for the application security market and this means the latest edition of the 2022 Gartner® Magic Quadrant for Web and API Protection. Well, we are pleased with the result because once again Imperva has been...

0.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/08/09 11:37 a.m.22 views

Why Cybersecurity Needs to be a Part of Your ESG

What is an ESG? Environmental, social, and corporate governance ESG documentation is a way to visualize and evaluate how an organization is working for the betterment of social goals and how that organization is responding to the cry for greener, more aware, and more responsible, sustainable...

0.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/08/02 11:25 a.m.22 views

US Websites Targeted by 40% of the Bad Bot Traffic Worldwide

Bad bot attacks are often the first indicator of fraudulent activity targeting your website. This activity may be over-the-top, like validating stolen user credentials and credit card information to later be sold on the dark web or scraping proprietary data to gain a competitive advantage. Bot...

0.3AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/07/27 1:7 p.m.22 views

Imperva Reaches New Heights as it Opens PoPs in Cape Town and Rio

Imperva is reaching new heights as we expand our global network of data centers with new points of presence PoPs in Rio de Janeiro, Brazil and Cape Town, South Africa. The two cities, often compared to each other for their many similarities including their breathtaking coastlines, white sandy...

0.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/05/19 2:56 p.m.22 views

3 Recommendations to Ensure Your API Security Solution can Drive Data Visibility and Quality

Today at least 90% of developers are using APIs in cloud-native web application development. According to new data collected by Forrester Research and presented in their report, Improve API Performance with a Sound API Security Strategy, 62 percent of IT decision makers believe the value they gai...

Exploits0
Imperva Blog
Imperva Blog
added 2022/03/28 3:44 p.m.22 views

API Security Explained

As enterprises continue on their digital journeys, security teams are preparing for the good, the bad, and the ugly of APIs. We’ll explain in plain language what APIs do, how they are attacked, and how API security works either as a stand-alone solution or with Web Application Firewalls and DDoS...

0.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/02/09 3:25 p.m.22 views

What is Shift-Left Testing and What are the Benefits?

Back in the infancy of software creation, certainly up until the mid-90s when we still used more traditional software development practices, most testing was conducted at the end of the production cycle on a graph, this would be to the right on the development timeline. Shift-left takes this...

0.3AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/11/10 1:42 p.m.22 views

With SLAs for DDoS Mitigation, the devil is in the details

When it comes to choosing the right DDoS protection there are many factors to consider including Network Capacity, Reliability, Service, Price and Time to Mitigation TTM. In a recent survey, we asked participants what factor they considered most critical when choosing a DDoS protection solution...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/11/08 7:41 p.m.22 views

Best practices in WAF gateways to meet the demands of digital transformation

Every day, digital transformation is changing every organization’s threat landscape. As a result, they are facing a dilemma about where and how to deploy their application security solution. One of the most common approaches that organizations take is to deploy a reverse proxy security solution i...

7.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2020/10/06 4:54 p.m.22 views

DDoS Attacks Grow More Sophisticated as Imperva Mitigates Largest Attack

Only a few months ago Imperva reported mitigating against two of the largest DDoS attacks of 2020. However, in the past few weeks we’ve observed a rise in the number of DDoS attacks against our customers where both the volume of attacks and their level of intensity have increased significantly. O...

7.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2020/10/01 12:39 p.m.22 views

Imperva to acquire jSonar: A New Generation of Data Security

I’m thrilled to announce that Imperva has entered into an agreement to acquire jSonar! We view jSonar’s incredible product and technology as perfectly aligned with our mission to protect data and all paths to it. Together, we will be able to deliver a fundamentally new approach to data security t...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/07/27 3:20 p.m.22 views

A Quick-Start Introduction to Database Security: An Operational Approach

The recent SingHealth data breach incident exposed around 1.5 million patients’ records. In its aftermath, the Cyber Security Agency of Singapore published a set of security measures aimed at improving the protection of Personally Identifiable Information PII data. The recommended security measur...

7.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/05/23 2:9 p.m.22 views

Healthcare IT Leaders Most Concerned about Ransomware and Insider Threats: Survey

Just over a year ago, the WannaCry ransomware attack wreaked havoc on the UK National Health Service NHS, ultimately disrupting a third of its facilities and causing a rash of canceled appointments and operations. Breaches are always a concern in healthcare, but this incident brought to light its...

6.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/01/18 5:59 p.m.22 views

Cloud Migration: Technical and Business Considerations

If you’re like many businesses, you’re moving applications into public and private cloud infrastructures. You’ve seen how the cloud’s agility, resiliency, and scalability drives business growth. Fortunately, rolling out new apps in the cloud is easy when you have containers, microservices, and...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2025/05/16 11:21 p.m.21 views

Beware! A threat actor could steal the titles of your private (and draft) WordPress posts with this new vulnerability!

As of today, almost a billion sites have been built using WordPress, powering businesses and organizations of all sizes. That makes any newly discovered vulnerability especially concerning—like the one recently found and reported by Imperva researchers, which could affect any WordPress site. In...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2024/12/02 9:44 p.m.21 views

Imperva Defends Against LLM Hacking

In the evolving landscape of cybersecurity, the advent of large language models LLMs has introduced a new frontier of challenges and opportunities. Research has shown advanced LLMs, such as GPT-4, now possess the ability to autonomously execute sophisticated cyberattacks, including blind database...

9.8CVSS7.3AI score0.97301EPSS
Exploits15
Imperva Blog
Imperva Blog
added 2024/02/19 1:30 p.m.21 views

XSS Marks the Spot: Digging Up Vulnerabilities in ChatGPT

With its widespread use among businesses and individual users, ChatGPT is a prime target for attackers looking to access sensitive information. In this blog post, Ill walk you through my discovery of two cross-site scripting XSS vulnerabilities in ChatGPT and a few other vulnerabilities. When...

6.3AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/12/07 2:11 p.m.21 views

2024 Predictions for Cybersecurity: The Rise of AI Brings New Challenges

The emergence of generative AI has put new resources in the hands of both attackers and defenders, and in 2024, Imperva believes the technology will have an even greater impact. Understanding how attackers are leveraging the technology will be critical for organizations seeking to keep...

7.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/10/31 12:7 p.m.21 views

Why Bad Bots Are the Digital Demons of the Internet

In the dimly lit corners of the internet, where shadows flicker and eerie silences prevail, there lurks entities of malevolent intent. They are not the stuff of old wives tales or campfire ghost stories. We’re talking about bad bots, the digital bogeymen of the digital age. These nefarious beings...

7.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/03/07 11:26 p.m.21 views

Why Healthcare Cybercrime is the Perfect Storm

Its Friday night. You, your husband, and your two children are settling in for a fun pizza and movie night together. Unexpectedly, your elderly neighbor, Anne, calls in a panic. Her husband Steve is having severe chest pains. While Anne has already called emergency services, she asks that you com...

0.5AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/12/08 9:0 a.m.21 views

2023 Predictions: The Data Security Shake-up

The move to the cloud continues to create complexity around data security. In 2023, Imperva believes the increasingly diverse data landscape will drive a fundamental shift in the people, processes, and technology in cybersecurity. Imperva’s data security leaders explain how IT environments will...

7.3AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/12/06 9:0 a.m.21 views

Ten Reasons a Website Needs a CDN

Today’s website visitors expect a fast and efficient user experience with no delays or site performance issues. However, high traffic volumes and global reaching websites mean website managers are faced with the challenge of added latency and slow page load times, which can result in lost busines...

7.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/12/01 9:0 a.m.21 views

How the Modern Data Landscape Made the Traditional Cybersecurity Approach Obsolete

From the news headlines, we know that data breaches are on the rise - both in frequency and scale. While this reality is unsettling, it’s not surprising. That is because the volume of data being collected and stored by organizations continues to grow exponentially each year. Every day, the global...

0.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/11/18 11:48 a.m.21 views

How DevOps can protect cloud applications from cyberattacks

Many organizations today are moving away from centralized on-prem operations and towards highly scalable cloud solutions such as Amazon’s AWS Lambda functionality. This provides cost-saving benefits and reduces the overall management of an enterprise tech stack. Cloud computing architecture also...

1.5AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/10/13 4:47 p.m.21 views

Imperva Threat Research Shows Cyber Attacks on the Rise in Australia

Every year, cyber attacks increase. Attackers get smarter, tools get better, and incentives to target sites grow. Over the last year, Imperva Threat Research detected a large increase in attacks targeting Australian sites, more than the global rise over the same timeframe. Australian attacks rose...

1AI score
Exploits0
Total number of security vulnerabilities1025