Tag: Web application firewall

The cloud represents a gamechanger in the way businesses access and use technology, but it’s also brought with it major implementation challenges. The most fundamental of these is simply that the cloud comprises multiple services and platforms, which …

Bad Bots and the Commoditization of Online Fraud

by Erez Hasson • May 25, 2022

Fraudsters will stop at nothing to exploit your websites and customers, and with the accelerated shift to digital payments, online fraud has never been more profitable. This shift, catalyzed by the pandemic, really gained traction in 2021 as the popularity of digital payments exploded. In fact, compared to 2020, online payments more than doubled in […]

The post Bad Bots and the Commoditization of Online Fraud appeared first on Blog.

Evasive Bots Drive Online Fraud – 2022 Imperva Bad Bot Report

by Erez Hasson • May 18, 2022

The 2022 Imperva Bad Bot Report is now available. The report is the ninth annual in-depth analysis of bot traffic, created with data collected from Imperva’s global network throughout the past year by the Imperva Threat Research Team. Bad bots are soft…

A New Security Approach for the New Age of Multi-Cloud

by Eyal Arazi • April 7, 2022

Most organizations today deploy web applications across multi-cloud and hybrid environments. However, existing models for application security are obsolete and no longer up to the task of providing high-grade, consistent, and frictionless application …

Imperva Protects from New Spring Framework Zero-Day Vulnerabilities

by Daniel Johnston • March 31, 2022

New zero-day Remote Code Execution (RCE) vulnerabilities were discovered in Spring Framework, an application development framework and inversion of control container for the Java platform. The vulnerability potentially leaves millions of applications at risk of compromise. In two separate disclosures, zero-day RCE vulnerabilities were revealed in the Cloud and Core modules of Spring Framework. Spring […]

The post Imperva Protects from New Spring Framework Zero-Day Vulnerabilities appeared first on Blog.

API Gateway or not, You Need API Security

by Bruce Lynch • March 24, 2022

To build and deploy apps in a fast-paced, iterative process, cloud-native developers in organizations on the digital transformation journey rely on APIs for communication. With at least 90% of developers using APIs in cloud-native web application development, organizations are reviewing their API security strategies to ensure that security moves in lockstep with innovation. Organizations need […]

The post API Gateway or not, You Need API Security appeared first on Blog.

5 Ways to Determine if you do Cybersecurity or Cybersecurity Theater

by Bruce Lynch • March 2, 2022

For a sentient species, humans, in general, have curious ideas when it comes to reckoning and responding to risk. For example, studies show using seat belts when driving in automobiles save lives. Studies also show when cyclists use helmets more cyclists’ lives are saved. This research drives prolific seat belt and helmet use among auto […]

The post 5 Ways to Determine if you do Cybersecurity or Cybersecurity Theater appeared first on Blog.

Salt Security Survey Surfaces API Security Weaknesses

by Michael Vizard • March 2, 2022

A survey of more than 250 security, application and DevOps executives and professionals published today by Salt Security found 95% of respondents experienced a security incident involving application programming interfaces (APIs) in the last 12 months…

What is Shift-Left Testing and What are the Benefits?

by Nik Hewitt • February 9, 2022

Back in the infancy of software creation, certainly up until the mid-90s when we still used more traditional software development practices, most testing was conducted at the end of the production cycle (on a graph, this would be to the right on the de…

Log4Shell log4j Remote Code Execution – The COVID of the Internet

by Vitaly Simonovich • January 6, 2022

The Log4Shell zero day vulnerability is truly one of the most significant security threats of the past decade and its effects will be felt far into 2022 and beyond. Imperva has observed over 102M exploitation attempts across thousands of sites protected by Imperva Cloud Web Application Firewall (WAF). In the days following, the team at […]

The post Log4Shell log4j Remote Code Execution – The COVID of the Internet appeared first on Blog.

2021 in Review, Part 4: 5 Cybersecurity Topics to Watch in 2022

by Bruce Lynch • January 4, 2022

One of the core principles of cybersecurity is not letting things “slip through the cracks”. An effective security posture depends on visibility. The more visibility you have into the environments where your data is, the more successful you will be in applying your organization’s security protocols and identifying suspicious behavior. Here are five cybersecurity issues […]

The post 2021 in Review, Part 4: 5 Cybersecurity Topics to Watch in 2022 appeared first on Blog.

2021 in Review, Part 2: 5 Top Cybersecurity Stories

by Bruce Lynch • December 29, 2021

Ransomware may have dominated headlines in 2021, but it’s only one of many threats security teams must protect against. We’re taking a look back at 5 top cybersecurity stories of 2021 that practitioners wanted to learn more about. 5. The State of Security in eCommerce Why you should learn more about this The global pandemic […]

The post 2021 in Review, Part 2: 5 Top Cybersecurity Stories appeared first on Blog.

Protecting today’s web applications requires more than a firewall

by Bruce Lynch • November 16, 2021

The way organizations build web applications has changed dramatically over the last several years. As a result, many organizations are considering additional security strategies to augment the Web Application Firewall (WAF) on which they have relied to protect critical digital business operations from vulnerabilities. New technology has created a development environment where the web application […]

The post Protecting today’s web applications requires more than a firewall appeared first on Blog.

Best practices in WAF gateways to meet the demands of digital transformation

by eyalgur • November 8, 2021

Every day, digital transformation is changing every organization’s threat landscape. As a result, they are facing a dilemma about where and how to deploy their application security solution. One of the most common approaches that organizations take is …

The Risks Of False Positives With Web Application Firewalls

by Ritika Singh • September 8, 2021

In order to stay abreast with the pace of web application development in the current age, automated tools are required for vulnerability testing in order to help with finding such.
The post The Risks Of False Positives With Web Application Firewalls ap…

Financial Services: Web Application Attacks Grow by 38% In First Half of 2021

by Terry Ray • August 19, 2021

During his career in the middle of the last century, professional bank robber Willie Sutton made off with an estimated $2 million in stolen money. Urban legend has it that when a journalist asked Sutton why he robbed banks, he replied, “That’s where the money is.” In later interviews, Sutton disclaimed the quote. Regardless, the […]

The post Financial Services: Web Application Attacks Grow by 38% In First Half of 2021 appeared first on Blog.

Brace yourselves: Holiday shopping season is coming

by Erez Hasson • August 17, 2021

The E-commerce market has seen tremendous revenue growth during the pandemic. Along with that good news for E-business, there has been an increase in fraudulent activities online that may cost retailers over $20 billion in losses by the end of 2021. According to eMarketer, worldwide retail E-commerce sales posted a 27.6% year-over-year growth rate in […]

The post Brace yourselves: Holiday shopping season is coming appeared first on Blog.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Europe, Global Security News, North America

by Radware • May 27, 2022

by Erez Hasson • May 25, 2022

Europe, Global Security News, North America

by Erez Hasson • May 18, 2022

Europe, Global Security News, North America

by Eyal Arazi • April 7, 2022

by Daniel Johnston • March 31, 2022

by Bruce Lynch • March 24, 2022

by Bruce Lynch • March 2, 2022

Europe, Global Security News, North America, Vulnerabilities

by Michael Vizard • March 2, 2022

Europe, Global Security News, North America

by Nik Hewitt • February 9, 2022

by Vitaly Simonovich • January 6, 2022

by Bruce Lynch • January 4, 2022

by Bruce Lynch • December 29, 2021

by Bruce Lynch • November 16, 2021

Europe, Global Security News, North America

by eyalgur • November 8, 2021

Europe, Global Security News, North America

by Ritika Singh • September 8, 2021

by Terry Ray • August 19, 2021

by Erez Hasson • August 17, 2021