Collaborate Disseminate
Imperva research shows an increase in the volume of data stolen every year. In 2020, we started to see more and more breaches that exfiltrate records in billions. Based on the analysis of thousands of data breach details published on dbdigest, we made … Continue reading Lessons Learned from 100 Data Breaches: Part 4, Trends in Average Volumes of Stolen Records
In the first two parts of this series, we gained insight into what specific types of data get stolen and what the root causes of breaches are, based on data breach information that Imperva’s Security Labs’ gathered, studied, and analyzed over the last … Continue reading Lessons Learned from 100 Data Breaches: Part 3, Securing Public Cloud Services
Nations around the world are racing to acquire COVID-19 vaccines and assemble digital infrastructure and web applications to enable appointment booking. As they do this, Imperva Research Labs has monitored a staggering 372% increase in bad bot traffic … Continue reading Bad Bot Traffic on Healthcare Websites Rises 372% As Vaccines Become Available Globally
Introduction Apache Zeppelin is a Web-based, open source, notebook system that enables data-driven, interactive data analytics and collaborative documents with SQL. At Imperva Research Group we use it on a daily basis to query data from the Threat Rese… Continue reading Install Apache Zeppelin and connect it to AWS Athena for data exploration, visualization and collaboration
As the first vials of COVID-19 vaccines were disseminated in December, Imperva Research Labs monitored an astounding 51% increase in web application attacks on healthcare targets. The activity concludes an unprecedented year of cybersecurity activity. … Continue reading Web Application Attacks on Healthcare Spike 51% As COVID-19 Vaccines are Introduced
December 2020 was an eventful month in cyber security. This blog recaps three of the major security events we saw towards the end of last year. December began with FireEye’s breach announcement that included a leak of its red team tools arsenal. Quickl… Continue reading 2020 Ends With A Bang
Extortionists Claim Connection to Fancy Bear and Lazarus Group In the past weeks the number of serious Ransom Denial of Service (RDoS) threats has ramped-up considerably, with extortion campaigns targeting thousands of large commercial organizations in… Continue reading Major Global Ransom Denial of Service Campaign Continues Rising Trend in Global DDoS Attacks
These days, our focus is on spoiling our customers. For example, we give our DDoS Protection customers the peace of mind that their network traffic is routing through Imperva’s cloud for consistent volumetric attack protection. That protection wo… Continue reading Fast, Furious, and Scalable: Designing a High-throughput, Real-time Network Traffic Analyzer
Alert fatigue – introducing false positives in WAF All WAF experts know what it’s like handling massive amounts of alerts. They’re also very likely wasting a lot of time fishing false positives out of all these alerts. The WAF’s… Continue reading Avoid Alert Fatigue: Web Application Firewall Installation, Configuration and Best Practices
During 2020 between June 18 and June 24 Imperva mitigated massive 200K RPS (Request Per Second) attacks on a daily basis. Here at Imperva we investigate major attacks we mitigated in order to gain a better understanding of their anatomy and allow for s… Continue reading The Anatomy of Massive Application Layer DDoS Attacks