Imperva Blog|Login|中文Deutsch日本語

ADC Hacker Intelligence Initiative

The Imperva Hacker Intelligence Initiative goes inside the cyber-underground and provides analysis of the trending hacking techniques and interesting attack campaigns.

Selected Tag: Application Security | Show All

Download Report

PHP SuperGlobals: Supersized Trouble


In the most recent Hacker Intelligence Initiative report, Imperva analyses vulnerabilities found in the SuperGlobal parameters of the PHP platform. Imperva finds that hackers are packaging higher levels of sophistication into simpler scripts and that a multi-step attack requires a multi-layered application security solution.

Tags: Application Security, SuperGlobals, PHP, Web Application Attacks


Download Report

Imperva's Web Application Attack Report (July 2013)


Examining today's application security threat landscape, Imperva finds that retailers suffer 2X as many SQL injection attacks as other industries. Report also shows that most applications are attacked more than four times a month, and the US retains its rank as the #1 source of web attacks in the world, among many other findings.

Tags: Application Security, SQL Injection, SQLi, Data Security, Web Application Attacks, Trends


Download Report

Get What You Give: The Value of Shared Threat Intelligence


Imperva's ADC analyzed real-world traffic from sixty Web applications in order to identify attack patterns. The report demonstrates that, across a community of Web applications, early identification of attack sources and attack payloads can significantly improve the effectiveness of application security. Furthermore, it reduces the cost of decision making with respect to attack traffic across the community. Here's how, based on the traffic analyzed by the ADC:
  • Multiple target SQL attackers generated nearly 6x their share of the population.
  • Multiple target comment spam attackers generated 4.3x their share of the population.
  • Multiple target RFI attackers generated 1.7x their share of the population (this amounted to 73% of total attacks).


Tags: Hackers, Hacking, Web Application Security, Database Security, Application Security, Remote File Inclusion, Local File Inclusion, Comment Spam


Download Report

Lessons Learned From the Yahoo! Hack


On December 2012, a hacker claimed to have breached Yahoo!'s security systems and acquired full access to certain Yahoo! databases, leading to full access on the server for that domain. Technically, we found that the hacker was able to determine the allegedly vulnerable Yahoo! application and the exact attack method, a SQL injection. This attack underscores the security problem posed by hosting third-party code – as is often done with cloud-based services. Our report explains:
  • How to protect third-party Web applications against SQL injection and other Web attacks.
  • Why security should always assume third-party code – coming from partners, vendors, mergers and acquisitions – contains serious vulnerabilities.
  • Putting in place legal requirements in a contract for what you will and will not accept from a security perspective and incorporating security due diligence for any merger or acquisition activity.


Tags: Data Security, Database Security, SQL Injection, Web Application Security


Download Report

Monitoring Hacker Forums


Imperva's second annual hacker forum analysis detects black market for social network fraud. By examining what information hackers seek out or share in forums, security teams can better understand where hackers are focusing their efforts. One thing is unmistakable: If organizations neglect SQL injection security, we believe that hackers will place more focus on those attacks.

Tags: Hackers, Hacking, Trends, SQL Injection, Web Application Security, Database Security, Application Security


Download Report

Denial of Service Attacks: A Comprehensive Guide to Trends, Techniques and Technologies


On hacker forums, denial of service remains the most discussed topic. Hackers continue to develop tools to optimize this attack method. Why? DDoS attacks do not seek to breach data integrity or privacy; they can be conducted without the requirement of identifying vulnerabilities to exploit the application. This report catalogs the latest trends, techniques and technologies deployed by hackers and gives security professionals specific steps to mitigate the threat.

Tags: Application Security, DDoS, DoS, Denial of Service, Web Application Attacks, Trends


Download Report

Imperva's Web Application Attack Report (July 2012)


Imperva's ADC finds that the median annual attack incidents was 274 times a year. The average attack incident for the observed Web applications lasted seven minutes and 42 seconds, but the longest attack incident lasted an hour and 19 minutes.

Tags: Application Security, SQL Injection, SQLi, Data Security, Web Application Attacks, Trends


Download Report

The Anatomy of an Anonymous Attack


This ADC report details the never-before-seen details on an attack by hacktivist group 'Anonymous' against a high-profile unnamed target during a 25 day period in 2011. The Hacker Intelligence Summary Report - The Anatomy of an Anonymous Attack offers a comprehensive analysis of the attack including a detailed timeline of activities from start to finish, an examination of the hacking methods utilized as well as insights on the use of social media to recruit participants and coordinate the attack.

Tags: Anonymous, Web Application Security, Web Application Attacks, SQL Injection, Data Security, Database Security, Hacktivist, Hacking


Download Report

Imperva's Web Application Attack Report (January 2012)


Imperva monitored and categorized attacks across the internet targeting 40 different enterprise and government web applications. The WAAR outlines the frequency, type and geography of origin of each attack to help security professionals better prioritize vulnerability remediation.

Tags: Application Security, Remote File Inclusion, RFI, SQL Injection, SQLi, Local File Inclusion, LFI, Cross Site Scripting, XSS, Directory Traversal, DT, Data Security, Web Application Attacks


Download Report

Security Trends 2012


Hacking is inherently innovative and constantly changing. As 2012 approaches, security team will need to adapt to a changing threatscape as cyber security remains one of the most dynamic and fluid disciplines worldwide. Imperva's Application Defense Center (ADC), led by Imperva CTO Amichai Shulman, is exclusively focused on advancing the practice of data security to help companies shield themselves from the threat of hackers and insiders. For 2012, the ADC has assembled a comprehensive set of predictions designed to help security professionals prepare for new threats and attacks in cyber space.

Tags: Data Security, Security Trends, DDoS, Social Media, Compliance, HTML 5, SSL, Database Security, Application Security, SQL


Download Report

Monitoring Hacker Forums


As a part of Imperva's hacker intelligence initiative, we monitor hacker forums to understand many of the technical aspects of hacking. Forums are the cornerstone of hacking - they are used by hackers for training, communications, collaboration, recruitment, commerce and even social interaction. Forums contain tutorials to help curious neophytes mature their skills. Chat rooms are filled with technical subjects ranging from advice on attack planning and solicitations for help with specific campaigns. Commercially, forums are a marketplace for selling of stolen data and attack software. Most surprisingly, forums build a sense of community where members can engage in discussions on religion, philosophy and relationships.

Tags: Hackers, Hacking, Trends, LulzSec, Hacktivist, DDoS, SQL Injection, Web Application Security, Database Security, Application Security


Download Report

Imperva's Web Application Attack Report (July 2011)


As a part of our ongoing Hacker Intelligence Initiative, the Imperva Application Defense Center (ADC) monitored and categorized individual attacks across the internet over a period of six months, December 2010 through May 2011. This research encompasses attacks witnessed via onion router (TOR) traffic as well as attacks targeting 30 different enterprise and government Web applications.

Tags: Application Security, SQL Injection, RFI, XSS, Cross-Site Scripting, Data Security, Web Application Attacks

Selected Tag: Application Security | Show All