Imperva: Protecting the Data that Drives Business Blog|Login|中文Deutsche日本語

Webinars

Year: 2013 2012 2011 2010 2009 2008 2007 2006 All Hide Descriptions
Selected Tag: Data Security | Show All
4 Security Guidelines for SharePoint Governance
May 22, 2013
REGISTER NOW

Upcoming: 4 Security Guidelines for SharePoint Governance


82% percent of organizations use SharePoint to store secure content. Over half worry that their deployments do not meet security or compliance requirements. This sentiment is indicative of the growing concern among organizations that their SharePoint deployments are a security disaster waiting to happen.

SharePoint governance can seem like a daunting task and leave many organizations wondering where to start. This webinar provides a four step program for establishing SharePoint governance and security.This webinar will:
  • Identify drivers for governance, including regulatory compliance, Web attack protection, and data security
  • Provide four steps for securing SharePoint through governance efforts
  • Outline a risk-based approach for aligning priorities and investments
Presenters: Carrie MacDaniel, Imperva File Security Team

Tags: SharePoint, SharePoint Governance, SharePoint Security, Compliance, Web Attacks, Data Security

Date: May 22, 2013
Time: 11:00 AM PDT | 2:00 PM EDT
  
The Value of Crowd-Sourced Threat Intelligence
May 1, 2013

The Value of Crowd-Sourced Threat Intelligence


On April 3, CNBC reported the details of a large-scale attack campaign targeting the banking industry. As a result of this campaign, multiple U.S. banks experienced website outages totaling 249 hours over a six week period. Would the damage from the attack campaign have been reduced if the banks had the ability to share crowd-sourced threat intelligence?

Imperva's Application Defense Center (ADC) recently analyzed real-world traffic from sixty Web applications to identify attack patterns. The results of the study demonstrate how sharing attack patterns across a community of Web applications can significantly mitigate the risk of large-scale attack campaigns. This webinar will:
  • Identify how cross-site information sharing (crowd-sourcing) creates security intelligence
  • Demonstrate the value of adding crowd-sourced intelligence to Web application security
  • Provide real-world examples of attack patterns that can be shared for community defense
Presenters: Amichai Shulman, CTO, Imperva

Tags: Data Security, Database Security, Data Theft, Database Threats, Hackers

Play Webinar  

Top 10 Database Threats
March 27, 2013

Top 10 Database Threats


96% of all records breached are stolen from databases, according to a 2012 Verizon Data Breach Report. Why do databases have the highest rate of breaches among all business assets? The answer is simple: they house the sensitive business data that malicious insiders and hackers want most.

The risk of a database breach can be mitigated by implementing internal controls and following industry best practices - but you must first understand the shifting threat landscape. This webinar will:
  • Present the top 10 threats to your database in 2013
  • Define a layered defense strategy for preventing database breaches using industry best practices
  • Demonstrate a successful defense against data theft with a customer case study
Presenters: Raphael Reich, Director Data Security Solutions, Imperva

Tags: Data Security, Database Security, Data Theft, Database Threats, Hackers

Play Webinar  
Lessons Learned From the Yahoo! Hack
February 20, 2013

Lessons Learned From the Yahoo! Hack


In December 2012, Yahoo! Inc. suffered a high profile data breach at the hands of a lone hacker. Using SQL injection attacks, the hacker gained full access for the server of the affected domain. Alarmingly, the exploited vulnerability likely belonged to a third party application that was neither coded nor hosted by Yahoo!.

Yahoo! was responsible for the third party application's security, yet it only had limited control of the code. Join Imperva's Amichai Shulman as he discusses the key lessons learned from the Yahoo! breach. This webinar will:
  • Analyze the tools and methodology employed by the attacker to bypass security
  • Explore the dangers of hosting third party code inherited from partners, vendors, or via acquisitions
  • Provide procedural and technical steps for securing third party code
Presenters: Amichai Shulman, CTO, Imperva

Tags: Data Security, Database Security, Web Security, Web Application Security, Hackers

Play Webinar  
Assessing the Effectiveness of Antivirus Solutions
January 23, 2013

Assessing the Effectiveness of Antivirus Solutions


According to a recent study conducted by Imperva's research arm and students from The Technion – Israeli Institute of Technology, as little as 5% of newly created viruses are detected by antivirus solutions. Moreover, it can take as long as four weeks after the introduction of a virus before it is detected by antivirus solutions.

How well do antivirus solutions defend against newly created viruses? The answer may surprise you. Join us in a live webinar as we examine the effectiveness of antivirus solutions. This webinar will:
  • Evaluate the ability of antivirus solutions to react to newly created viruses
  • Explore the window of opportunity created before antivirus solutions begin to detect new viruses
  • Illustrate how targeted malware of limited distribution can elude detection for months or years
  • Explain how misguided compliance mandates create over-investment in antivirus solutions within security budgets
Presenters: Amichai Shulman, CTO, Imperva

Tags: Antivirus, Data Security, Malware, Hackers

Play Webinar  

Top Security Trends for 2013
December 19, 2012

Top Security Trends for 2013


Looking at the security landscape for 2013, we predict that previous security investments made by larger, well-funded organizations will serve as a partial deterrent to hackers. However, those same hackers, armed with sophisticated malware and cloaked in a dangerous anonymity provided by the Cloud, will turn their collective eyes to a new, more vulnerable target: small companies.

Join Imperva Senior Vice President Mark Kraynak as he reveals the four super-sized security trends that will impact business security practices across the globe in 2013. Below is a sneak peak at each trend:
  • Government Malware Goes Commercial: tactics historically tied to "state sponsored" attacks move to the mainstream
  • Black Clouds on the Horizon: profit-driven hackers leverage the Cloud to unleash fraud and business logic attacks
  • Security Strength in Numbers: business and government will combine individual protection data to create collaborative defenses
  • APT Targets the Little Guy: cyber criminals employ traditional, enterprise-size APT methods to pillage smaller businesses
Presenters: Mark Kraynak, SVP WW Marketing, Imperva

Tags: Trends, Data Security, Malware, APT, DDoS, Web Security, Web Application Security, Hackers

Play Webinar  
How Targeted Attacks Evade Anti-virus Software
November 14, 2012

How Targeted Attacks Evade Anti-virus Software


Are your employees unknowing victims of targeted attacks? Sophisticated attacks now leverage social engineering techniques and malware to compromise those individuals already on the inside of your enterprise. The objective of these attacks is clear: target and compromise specific individuals within an institution to obtain high-value data. Even though these threats are not mass automated attacks, the effects on a compromised organization can be long-lasting. This webinar will:
  • Discuss the rise in malware and targeted attacks
  • Highlight why anti-virus software is powerless against sophisticated attacks
  • Provide mitigation strategies for the compromised organization
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: Social Engineering, Anti-Virus, Malware, Insider Threat, Data Security

Play Webinar  
Applications Under Siege - Defending Against Attack Outbreaks
August 15, 2012

Applications Under Siege - Defending Against Attack Outbreaks


"The typical Web application experiences attack incidents 274 times per year, with one target experiencing as many as 2,766 attack incidents. While under attack, the average Web application attack incident lasts 7 minutes and 42 seconds with the longest attack incident reaching one hour and 19 minutes," Imperva Web Application Attack Report, 2012. Planning protection based on the average Web application attack can leave your organization exposed to a crippling upper limit attack. Like a flood bursting through a levy, a large scale Web application attack will overwhelm and immobilize the unprepared organization. Based on the findings of our semi-annual Web Application Attack Report, this webinar will discuss:
  • Cumulative characteristics of Web application attack vectors, such as SQLi, XSS, RFI and LFI
  • Seasonal trends in Web application attacks
  • Intensity of attacks and how organizations can prepare for "battle days"
  • Proven defense solutions and procedures to combat attack bursts
Presenters: Amichai Shulman, CTO, Imperva

Tags: Web Security, Web Application Attacks, Data Security, Hackers

Play Webinar  
Shaping-Up SharePoint Security in Five Steps
July 25, 2012

Shaping-Up SharePoint Security in Five Steps


The use of Microsoft SharePoint is growing rapidly inside most enterprises; however, native functionality fails to address critical security risks. For organizations, this shortcoming poses a tremendous challenge: How do you balance the need for collaboration with the need for security? Join Imperva CTO, Amichai Shulman, as he addresses the key technical aspects of SharePoint security. In particular, this webinar will identify the most important steps to securing SharePoint, including:
  • How SharePoint is architected and the inherent security gaps
  • How to protect SharePoint from insider threats
  • How to stop hackers from breaking externally facing SharePoint deployments
Presenters: Amichai Shulman, CTO, Imperva

Tags: SharePoint Security, Insider Threats, Data Security, Hackers

Play Webinar  
The Insider's Guide to Insider Threats
May 23, 2012

The Insider's Guide to Insider Threats


Did you know 70% of employees plan to take sensitive business data with them when they leave their job? Further, did you know over 50% feel they have rights to this data? If you think your organization has avoided the insider threat, you may need to look deeper.

Pinpointing the source and scope of data theft is often hard to quantify, especially since your largest internal threat may actually be one of your most loyal employees. This webinar presents the findings of the first-ever global insider threat study that catalogs common practices used by leading organizations across numerous verticals. This presentation will:
  • Define the insider threat
  • Quantify the prevalence of the problem
  • Uncover controls that have proven most effective at minimizing the risk of insider threats
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: Insider Threat, Data Security, Data Theft, Database Security, File Security

Play Webinar  
Unmasking Anonymous: An Eyewitness Account of a Hacktivist Attack
March 21, 2012

Unmasking Anonymous: An Eyewitness Account of a Hacktivist Attack


What do you see when you take the Guy Fawkes mask off? In 2011, Imperva witnessed an assault by the hacktivist group, Anonymous, which included the use of social media for communications and, most importantly, their attack methods. Since Anonymous' targets vary, security professionals must learn how to prepare their organization for a potential attack.

This webinar will walk-through the key stages of an Anonymous campaign, including:
  • Recruitment and communication: Learn how Anonymous leverages social networks to recruit its members and select a target
  • Application attack methods: Understand the sequence of steps Anonymous hackers use to take data and bring down Web sites, including the frequent DDoS attack
  • Mitigation strategies: Gain knowledge of key tactics organizations can take if they are targeted by Anonymous
Presenters: Amichai Shulman, CTO, Imperva

Tags: Data Security, Anonymous, Web Application Attacks, Web Application Security, Hacking, Database Security

Play Webinar  
Stopping Fraud - Getting Rid of the Man in Your Browser
February 15, 2012

Stopping Fraud - Getting Rid of the Man in Your Browser


As attacks on customers expand beyond banking and popular retail applications, organizations cannot sit on the sidelines and expect the average consumer to avoid infection and mitigate attacks on their own. Fraud is a key--and evolving--challenge facing security teams today. In order to thwart the impact of client-side attacks, such as man-in-the-browser, businesses must take charge of securing the interaction with their clients. This webinar will:
  • Highlight tactics organizations can deploy to dramatically reduce incidents of fraud.
  • Provide a high-level, technical overview of client-side attacks and demonstrate how man-in-the-browser attacks operate.
  • Reveal two techniques that can be used by a Web application to detect infected clients.
  • Discuss practical aspects of implementing these two methods and how to use the output of the detection process in the application.
Presenters: Rob Rachwald, Director Security Strategy, Imperva | Noa Bar Yosef, Senior Security Strategist, Imperva

Tags: Data Security, Man-In-The-Browser, Client-Side Attacks, Web Application Security

Play Webinar  
CISO's Guide to Securing SharePoint
January 25, 2012

CISO's Guide to Securing SharePoint


One analyst ominously declared..."SharePoint is like a virus growing inside the organization." SharePoint's rapid adoption is undeniable but it raises one important question: What security capabilities did Microsoft implement to ensure that SharePoint--and the data it houses--remains secure?

SharePoint's functionality was built for business users to share information. However, business users don't typically recognize critical security considerations. This leaves security teams with the task of layering security onto SharePoint well after deployments, or worse, after a data breach. This webinar will:
  • Highlight SharePoint use cases and potential security issues
  • Offer best practices for SharePoint security planning and management
  • Provide key mitigation steps that enterprises implement to minimize the odds of a data breach
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: Data Security, SharePoint, SharePoint Security, SharePoint Use Cases, Web Application Security, CISO, Data Breach

Play Webinar  
Top 9 Data Security Trends for 2012
December 14, 2011

Top 9 Data Security Trends for 2012


With the Epsilon mega-breach, malicious mobile apps on the rise, Lulzsec, Anonymous, APT and the collapse of News of the World all within the past 12 months, 2011 was a good year if you were a hacker.

Join Imperva CTO, Amichai Shulman, as he reveals the Imperva Application Defense Center's top nine security predictions for 2012 as well as key changes in the legal/compliance landscape.

Here is a sneak peek at our expert's forecast:
  • HTML 5 Goes Live: Expect hackers to shift their focus from vulnerabilities in browser add-ons to vulnerabilities in the browsers themselves due to the recent adoption of HTML5 standard.
  • DDoS Moves Up the Stack: Expect attackers to increase the sophistication and effectiveness of distributed denial-of-service attacks (DDoS) by shifting from network level attacks to application level attacks, and even business logic level attacks.
  • Internal Collaboration Meets its Evil Twin: Expect to see a growing number of data breaches from internal collaboration platforms used externally.
Presenters: Amichai Shulman, CTO, Imperva

Tags: Data Security, Database Security, Web Application Security, Hackers, LulzSec, Cybercrime, Data Breaches, HTML 5, DDoS

Play Webinar  
Top 11 Ground-Breaking Data Breaches of 2011
November 16, 2011

Top 11 Ground-Breaking Data Breaches of 2011


"Website defacements and stolen passwords are not a new feature of the online security landscape. But the ease, frequency and profile of such attacks have all risen sharply in the past year, thanks to the antics of Anonymous, Lulzsec..." - Financial Times

Every year, motivations, tactics, and technologies shift as defenses change and attackers are forced to readjust. This webinar will investigate what made 2011 data breaches different, novel, and innovative. The discussion will:
  • Examine the top eleven data breaches of 2011
  • Compare data breach trends in 2011 versus 2010
  • Provide guidance for 2012 data security initiatives based on lessons from 2011
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: Data Security, Database Security, Web Application Security, Hackers, LulzSec, Cybercrime, Data Breaches

Play Webinar  
SQL Injection - The Unknown Story
October 26, 2011

SQL Injection - The Unknown Story


"What makes you think a hacker isn't silently sitting inside all of these [applications] right now, sniping out individual people...? You are... a toy. A string of characters with a value." -- LulzSec

Organizations of all sizes, and even Lady Gaga, are under SQL injection (SQLi) attack. According to Privacyrights.org, SQLi has contributed to 83% of successful hacking-related data breaches since 2005. Can your organization afford this type of attack? How will you guard your Web sites and databases? And more importantly, how will you ensure your customers do not become victims of cyber attack. This webinar, based on nine months of attack vector research, will investigate the anatomy of SQLi attacks, including:
  • Detail into new SQLi attack variants that allow the evasion of simple signature-based defense mechanisms
  • Summary of easily accessible, automated SQLi tool kits, such as Sqlmap and Havij
  • Recommendations for a three-fold approach to defeat SQLi attacks
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: Web Application Security, Hackers, Data Security, LulzSec, SQL injection, SQLi

Play Webinar  
Data Security on Campus: A Case Study with Virginia Commonwealth University
October 13, 2011

Data Security on Campus: A Case Study with Virginia Commonwealth University


Universities and colleges face a serious test when it comes to protecting their data, their students, and their reputation. The Data Security challenge is exacerbated by a unique set of factors: thousands of students accessing personal records through online, public-facing applications, multiple departments developing and maintaining their own systems, and a disparate network of developers and administrators that must implement these critical security initiatives.

Join Gregory Pendergast, Information Security Analyst for Virginia Commonwealth University (VCU), as he provides a first-hand account into one school's Data Security strategy. The webinar will include detailed insight into a number of issues, including: VCU's most crucial Data Security projects and initiatives
  • VCU's most crucial Data Security projects and initiatives
  • Tactics for protecting confidential student data
  • Steps for identifying - and securing - all critical Web applications
  • Comparing and contrasting the "Malicious Insider" vs. the "Curious Insider"
Presenters: Gregory Pendergast, Information Security Analyst, VCU | Steve Champi, Sr. Marketing Manager, Imperva

Tags: Case Study, Web Application Security, Data Security, Data Security Strategy, Malicious Insider, Higher Education

Play Webinar  
The State of Application Security: What Hackers Break
September 14, 2011

The State of Application Security: What Hackers Break


Companies of all sizes face a universal security threat from today's organized hacking industry. Why? Hackers are decreasing costs and expanding their reach with tools and technologies that allow for automated attacks against Web applications. The hacker's arsenal includes armies of zombies (i.e. global networks of compromised computers) that access large amounts of personal and corporate data that can be sold on the black market.

As part of Imperva's ongoing Hacker Intelligence Initiative, we monitored and categorized individual attacks across the Internet over a period of six months. This webinar will detail the results of this research, which encompasses attacks witnessed via onion router (TOR) traffic as well as attacks targeting 30 different enterprise and government Web applications. The research includes:
  • Insight into how automation allows hackers to generate 7 attacks per second
  • Overview of the top vulnerabilities exploited by hackers: directory traversal, cross-site scripting (XSS), SQL injection, and remote file inclusion (RFI)
  • Detail into which countries generate the most malicious activity
  • Recommendations, both technical and nontechnical, for security teams and executives
Presenters: Amichai Shulman, CTO, Imperva

Tags: Web Application Security, Hackers, Data Security, XSS, RFI, SQL injection

Play Webinar  
5 Ways to Lockdown Your Sensitive Files with DLP and FAM
August 24, 2011

5 Ways to Lockdown Your Sensitive Files with DLP and FAM


A single gigabyte of data in your data center contains thousands of folders and a massive amount of files. Which files contain sensitive data? Who owns and has access to these files? How do you protect this data? When faced with an audit or forensic investigation, most organizations are left scrambling for answers to these questions. If you are ready to eliminate the guess work, panic, and risks associated with protecting sensitive data in files, then join Imperva and RSA in this informative webinar as we share five steps that will put you in control of your data center. Our five step plan includes automating processes to:
  1. Discover sensitive data
  2. Identify data owners
  3. Communicate with business owners
  4. Implement policy controls
  5. Remediate excessive access
Learn how the unique combination of File Activity Monitoring (FAM) and Data Loss Prevention (DLP) technologies simplify and accelerate these processes, reducing the time to remediate and protect sensitive data.
Presenters: Raphael Reich, Dir. File Security Solutions, Imperva | Ash Devata, Sr. Manager, DLP Products, RSA

Tags: FAM, File Security, File Activity Monitoring, Data Loss Prevention, DLP, Data Security, RSA

Play Webinar  
Cyber Vigilantes: How Security Teams are Turning the Tables on Hackers
July 27, 2011

Cyber Vigilantes: How Security Teams are Turning the Tables on Hackers


With control-and-command servers out in the open and key players in the hacking industry behind bars, are the tables beginning to turn on the underground world of cybercrime?

Today's security practitioners are taking an aggressive approach to data security and applying defenses that stop hackers in their tracks. This proactive approach to security has uncovered ground-breaking hacker activities, including: full-fledged attack campaigns (XSS and server-generated DDoS), data collections that contain millions of consumer passwords, and cloud-based technologies used by hackers.

This webinar featuring Imperva Director of Security Strategy, Rob Rachwald, will provide insight into the following:
  • Techniques utilized by the security community to tap into hacker activity
  • Research on hacking campaigns, such as the recent Lulzsec attacks
  • Technologies, methods, and models driving the business of cybercrime
  • Recommendations for effective security controls to protect against next generation attacks
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: Lulzsec, Data Security, Web Application Security, DDoS, Hackers, Hacking, XSS

Play Webinar  
The Missing Piece: Securing File Repositories with FAM
June 29, 2011

The Missing Piece: Securing File Repositories with FAM


In recent years, organizations have adopted tools, such as Data Loss Prevention (DLP), to detect leaks of defined information. Organizations have also embraced Database Activity Monitoring (DAM) to expose deep database activity and help detect unusual access. Despite the success of these tools, one major blind spot still remains: monitoring and protecting enterprise file repositories.This webinar featuring Securosis Analyst and CEO, Rich Mogull, will provide insight into the following:
  • Overview of the emerging File Activity Monitoring (FAM) market
  • Business justification for deploying FAM
  • Key architectural and functional components of FAM
  • Recommended strategy for selecting a FAM solution
Additionally, RSA Senior Manager of DLP Products, Ash Devata, will highlight the importance of identifying sensitive data in file repositories and present a case study of an organization who successfully uses both DLP discovery and FAM. Imperva Director of File Security Solutions, Raphael Reich, will close the discussion with six ways organizations can leverage FAM for IT Operations cost savings.
Presenters: Rich Mogull, Analyst and CEO, Securosis

Tags: FAM, File Security, File Activity Monitoring, Data Security, Data Loss Prevention, RSA, Securosis

Play Webinar  
More Than a Check Box: Evaluating PCI's Worth
May 25, 2011

More Than a Check Box: Evaluating PCI's Worth


PCI compliant organizations suffer fewer data breaches, yet most security professionals view compliance with contempt, study shows.

Are you among many security professionals who do not believe in the benefits of compliance? How are organizations reducing data breaches with inexpensive, efficient, and compliant data security? As security analyst Mike Rothman noted, "Focus on the basics, and remember PCI is your friend. Sure we security folks beat on it, but it clearly represents basic security, which reduces the odds of a successful automated attack."

This webinar, featuring Imperva Director of Security Strategy, Rob Rachwald, will highlight results from the Imperva sponsored "PCI DSS Compliance Trends Study" released by the Ponemon Institute. The presentation will answer the following questions:
  • How do organizations approach, and implement, PCI security programs?
  • How do organizations budget for PCI to achieve maximum impact?
  • How do organizations recognize the warning signs of a malicious insider and act before a crisis arises?
  • What technologies do organizations deploy to achieve inexpensive, efficient, and compliant data security?
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: PCI, Compliance, Trends, Data Security

Play Webinar  
Mobilizing for Enterprise Mobile Security
April 26, 2011

Mobilizing for Enterprise Mobile Security


As businesses become more reliant on mobile devices, the demand for both employee-facing and customer-facing apps will continue to grow. Who is securing these applications from unauthorized access and attack? As with many technology innovations, security considerations often lag far behind business hype. This webinar featuring Rob Rachwald, Director of Security Strategy, Imperva and Ron Perry, CTO from the leading mobile application platform provider, WorkLight will:
  • Explore recent trends in mobile computing
  • Highlight key mobile computing security implications for enterprises
  • Present recommendations for security teams to address the risks associated with mobile computing
Presenters: Rob Rachwald, Director of Security Strategy, Imperva and Ron Perry, CTO, WorkLight

Tags: Mobile Security, Web Application Security, Data Security

Play Webinar  
Alex in Accounting Stole Our Data? Insider Threats & Data Security
March 29, 2011

Alex in Accounting Stole Our Data? Insider Threats & Data Security


With trends in digitization and information sharing, risks associated with insider threats have increased, as have avenues to profit from selling sensitive information. Criminals, competitors, and nation-states have discovered the value of hacking from the inside. This informative webinar, featuring Imperva Director of File Security Solutions, Raphael Reich, will provide tools to help you:
  • Assess your organization's data security posture
  • Understand the profile of the malicious insider
  • Recognize the warning signs of a malicious insider and how to act before a crisis arises
  • Apply practical, real-life steps for securing databases, files, and Web applications
Presenters: Raphael Reich, Director of File Security Solutions, Imperva

Tags: DDoS, ADC, Data Security, Hackers, Hacking, Web Application Security, Botnets, Malware, Insider Threats

Play Webinar  
Botnets and Client Malware Shake IT Departments
March 2, 2011

Botnets and Client Malware Shake IT Departments


For about 74% of IT decision makers, the Distributed Denial of Service (DDoS) attack, has wreaked havoc on their organization in the past 12 months, researchers say.*

Responsible for nearly all large-scale attacks, botnets have infiltrated millions of computers, caused incalculable damage, and elevated the threat to high priority in most IT security departments.

At the same time, perpetrators continue to make use of client side malware to the point where it is no longer an individual consumer problem but rather a business problem.

This webinar, lead by Imperva CTO Amichai Shulman, will explore:
  • The history, growth, and economics behind botnets
  • The rapid evolution of botnet architectures and the diversity of malware techniques
  • The increase in application-based attacks and the danger associated with advanced application DDoS attacks
  • The processes, technologies, and services that can be deployed to help combat attacks
*"The Trends and Changing Landscape of DDoS Threats and Protection," Forrester.
Presenters: Amichai Shulman, CTO, Imperva

Tags: DDoS, ADC, Data Security, Hackers, Hacking, Web Application Security, Botnets, Malware

Play Webinar  
Cyber-Crime and the State: Defining Advanced Persistent Threats (APT)
February 2, 2011

Cyber-Crime and the State: Defining Advanced Persistent Threats (APT)


In July 2010, Stuxnet introduced a new form of global warfare and exposed vulnerabilities in our current cyber defense. While unconfirmed, this politically motivated, cyber-smart bomb had a clearly defined target: Iran.

In recent years, hacking has evolved into two varieties: industrialized attacks and advanced persistent threats (APT). While the industrialized hacker is motivated by money, advanced persistent threats are driven by government agencies, or their terrorist counterparts, intent on gaining control of crucial data.

This informative webinar, lead by Imperva CTO Amichai Shulman, will explore:
  • Key differences between industrialized attacks and advanced persistent threats
  • Reasons why traditional security controls do not deter advanced persistent threats
  • Common attack vectors used in APT attacks
  • Strategies CISOs can deploy to build cyber defenses against APT
Presenters: Amichai Shulman, CTO, Imperva

Tags: Cyber-Crime, ADC, Data Security, Hackers, Hacking, Web Application Security

Play Webinar  
Top 10 Data Security Trends for 2011
December 15, 2010

Top 10 Data Security Trends for 2011


The ADC, led by Imperva CTO Amichai Shulman, exclusively focuses on advancing the practice of data security to help companies shield themselves from the threat of hackers and malicious insiders. For the past year, the ADC has explored the cyber-crime industry utilizing research techniques such as hack-back, forum monitoring, and internet traffic surveillance. Join Amichai as he reveals the ADC's top ten security predictions for 2011. This webinar will also include data security best practices for security teams worldwide.
Presenters: Amichai Shulman, CTO, Imperva

Tags: Trends, ADC, Data Security, Hackers, Hacking, Insider Threats, Insiders

Play Webinar  
Top 10 Ground-breaking Data Breaches of 2010
November 17, 2010

Top 10 Ground-breaking Data Breaches of 2010


In October, the Financial Times reported that 2010 will be the first year data theft will exceed the loss of physical assets in dollar value. Yet, the total volume of data breaches has dropped from 2009.*

This year provided a blend of innovative attacks, updated vectors, and good old entertaining hacks. This mixed bag proved costly for enterprises and governments.

Join Imperva Director of Security Strategy, Rob Rachwald, as he investigates this emerging trend and reveals the top 10 data breaches of 2010. Topics will include:
  • Examination of the most ground-breaking data breaches of 2010
  • Comparison of data breach trends in 2010 versus 2009
  • Guidance for 2011 data security initiatives based on lessons from 2010
  • Predictions for 2011 security trends
Presenters: Rob Rachwald, Director of Security Strategy, Imperva

Tags: Trends, Data Security

Play Webinar  
PCI DSS 2.0 Revealed: Is Your Organization Prepared?
October 28, 2010

PCI DSS 2.0 Revealed: Is Your Organization Prepared?


On October 28th, the PCI Security Standards Council will release v2.0 of the Payment Card Industry Data Security Standard (PCI DSS).

On the same day, Imperva CTO, Amichai Shulman, will deliver a free webinar on the key changes to PCI DSS 2.0 and how these changes will affect organizations.

Imperva is a participating organization in the PCI Council and has helped hundreds of organizations improve data security and demonstrate compliance with PCI DSS. Please join Amichai in this informative webinar as he discusses:
  • Key requirements of PCI DSS 2.0
  • Strategies for overcoming compliance challenges of PCI DSS 2.0
  • Recommendations for using PCI DSS 2.0 as a springboard to strengthening your overall data security posture
  • Tips for simplifying and cutting the cost of complying with PCI DSS 2.0
Presenters: Amichai Shulman, CTO, Imperva

Tags: Data Security, PCI, Compliance

Play Webinar  
Investigating Data Security: The New Paradigm in Info Security
September 15, 2010

Investigating Data Security: The New Paradigm in Info Security


One major challenge in data security is the lack of awareness into which controls improve security outcomes. Typically, security controls are chosen based on anecdotes, personal experiences, and perhaps private conversations with peers.

Today's IT professionals lack the metrics, raw collection capabilities, and public sharing that are essential in making informed risk decisions. As a result, organizations are forced to learn by trial and error with minimal public data to build upon.

Join Imperva CTO, Amichai Shulman as he details the findings from one of the most comprehensive data security studies, which surveyed nearly 1000 security and IT professionals. This webinar provides:
  • Best practices for compliance and data breach prevention
  • An overview of the most commonly used data security controls
  • A detailed description of what your security peers consider to be the top five rated controls for reducing breaches, incident severity, and compliance costs
Presenters: Amichai Shulman, CTO, Imperva

Tags: Data Security, Trends, Survey

Play Webinar  
Five Signs Your File Data is at Risk
August 25, 2010

Five Signs Your File Data is at Risk


Your company's data is the ultimate prize. With unstructured data accounting for approximately 80% of business data, file security is essential.* Growing insider threats and regulatory compliance mandates make protecting unstructured data on file servers and Network Attached Storage devices a "must do" for every organization.

The first step to evaluating your company's file security is the ability to successfully answer the following five questions:
  • Who owns our file data?
  • Who is actually using our files?
  • Who has the potential to access our files?
  • Whose access rights should be revoked?
  • How do we know when access rights or activity violate corporate policy?
If your organization is unable to answer these five questions, your file data may be at risk. Join Raphael Reich, Director File Security Solutions, Imperva for further insight into each question, as well as tips for overcoming conventional file security limitations.

*Source: IDC - "2009 File-Based Storage Taxonomy", November 2009
Presenters: Raphael Reich, Director File Security Solutions, Imperva

Tags: File Activity Monitoring, File Security, Insiders, Data Security, Compliance, Unstructured Data

Play Webinar  
The Industrialization of Hacking: How to Stop Organized, Automated, and ...
July 21, 2010

The Industrialization of Hacking: How to Stop Organized, Automated, and Mass Produced Bots


Today's cybercrime industry operates like a scene from the Industrial Revolution. With technical innovation in production and efficiency in the division of labor, industrialized hacking utilizes automated attack techniques designed to boost output and increase revenue.

Modern hacking has evolved from a single attack executed by an individual with a laptop, to massive attack campaigns administered by an organized network of zombies operated by a sole command and control center.

Join Imperva CTO, Amichai Shulman as he uncovers the industrial modernization of hacking threatening individuals, organizations, and government alike. This informative webinar includes:
  • Detail into the various roles and responsibilities that structure the industrialized supply chain
  • Explanation of the two-stage attack process devised to proliferate botnets and perform mass attacks
  • Description of common attack techniques, including SQL injection, Business Logic Attacks, and denial-of-service attacks
  • Recommendations for mitigating -- or slowing -- traffic from automated attacks
Presenters: Amichai Shulman, CTO, Imperva

Tags: Web Application Security, Hacking, Trends, Data Security, Bots

Play Webinar  
Investigating Distributed Denial-of-Service (DDoS) Attack 2.0
June 23, 2010

Investigating Distributed Denial-of-Service (DDoS) Attack 2.0


Web servers beware. Imperva's research lab, the Application Defense Center (ADC), has uncovered a type of distributed denial-of-service (DDoS) attack setting a new standard for power, efficiency, and invisibility. This new breed of attack has already infected hundreds of web servers worldwide.

Unlike traditional DDoS methods that capitalize on bot-infected PCs, hackers have now turned web servers into payload-throwing bots. Using a basic software program equipped with a dashboard and control panel, hackers configure the IP, port, and duration of the attack. Hackers simply insert the URL they wish to attack, click, and go. The bot attacks can instantly bring down web sites or target specific applications for malicious data theft.

Join Imperva Director of Security Strategy, Rob Rachwald and Imperva Web Research Team Leader, Tal Be'ery for a deeper look into this evolving attack. The informative webinar will include:
  • Detailed description of the DDoS 2.0 attack
  • Real-life screenshots of the attack software used by hackers
  • Recommendations for mending servers infected by DDoS 2.0 attacks
  • Guidance for building defenses against future DDoS 2.0 attacks
Presenters: Rob Rachwald, director of security strategy, Imperva | Tal Be'ery, web research team leader, Imperva

Tags: Web Application Security, Hacking, Trends, Data Security

Play Webinar  
Analyst's Guide to Understanding & Selecting a Database Assessment Solution
May 19, 2010

Analyst's Guide to Understanding & Selecting a Database Assessment Solution


Database security and compliance requirements have been at issue for many years now, but only recently have assessment platforms matured sufficiently to deliver on their promise. Vulnerability assessment and configuration audits are not only an essential step for security, but required by various compliance regulations. Automated and centralized assessment reduces manual costs and resources by effectively verifying compliance and security settings across multiple heterogeneous environments. This webinar will include:
  • Business use cases for database assessment and common drivers for adoption
  • Key components of database assessment platforms and configuration audits
  • Configuration audits to address compliance regulations
  • Useful tips for evaluating products both individually and head-to-head
Presenters: Adrian Lane, Analyst, Securosis | Dana Tamir, Sr. Manager Database Solutions, Imperva

Tags: Data Security, Database Security, Database Assessment, Vulnerability Assessment, Compliance

Play Webinar  
Staring at the Beast: 6 Months of Attack Vector Research
April 21, 2010

Staring at the Beast: 6 Months of Attack Vector Research


Battles are won by understanding the enemy. Learning the language of today's cyber community is an important piece to eliminating uncertainties and developing defenses based on real data. According to Sun Tzu, in The Art of War, "If you know the enemy and know yourself, you need not fear the results of a hundred battles."

How do you get to know your enemy? Immerse yourself in the hacking community.
Imperva's own research organization, the Application Defense Center (ADC), spent the past six months immersing themselves into the cyber hacking world to get to know the unique culture and language of the industrialized attacker. Join Imperva Chief Technology Officer, Amichai Shulman, as he explores the findings of this fascinating study. The session will include:
  • An examination of the tools and techniques ADC employed to immerse themselves into the hacking community and collect data first-hand
  • An analysis of discovered hacking activity and modern attack vectors
  • A look into future ADC data collection measures and analysis capabilities
  • Recommendations as to what enterprises can do to protect their data, based on ADC observations
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva

Tags: Data Security, Web Application Security, Database Security, Vulnerability Assessment

Play Webinar  
Threatscape Evolution - Data is Valuable and Bad Guys Want It
February 3, 2010

Threatscape Evolution - Data is Valuable and Bad Guys Want It


Charles Darwin said it best, "It is not the strongest of the species that survives... It is the one that is the most adaptable to change." Today's attacker has evolved -- sensitive data is the new target. With the average breach costing more than $6 million dollars,* organizations that successfully adapt their Data Security strategies will not only survive but thrive.

Data resides on databases, and people get to those databases through Web applications. Unfortunately, Web application and database security remains among the most vulnerable areas across the globe and within every business vertical. Witness the following stats:
  • Attacks against Web applications constitute more than 60% of the total attack attempts observed on the Internet -The SANS™ Institute
  • 92% of Web applications have vulnerabilities: 80% have Cross Site Scripting vulnerabilities, 62% have SQL Injection vulnerabilities -Imperva's ADC

Traditional network security controls, while valuable and necessary, simply don't scale to meet the evolving data security challenges. Organizations need to augment these traditional approaches with data-centric incident prevention and detection. Join Imperva's Chief Security Strategist Brian Contos, as he discusses the latest (and most dangerous) data-centric threats, as well as countermeasures that can be used to mitigate those threats.

* Ponemon Institute, "2007 Annual Study: Cost of a Data Breach"
Presenters: Brian Contos, Chief Security Strategist, Imperva

Tags: Data Security, Web Application Security, Database Security, Vulnerability Assessment

Play Webinar  
Top 5 Security Trends for the Next Decade
December 17, 2009

Top 5 Security Trends for the Next Decade


As we approach a new decade, battle lines have been firmly drawn between organizations seeking to protect their most sensitive data and dangerous cyber-criminals intent on attacking that data. Join Imperva CTO Amichai Shulman for this informative webinar in which he discusses his predictions for the five most important security trends to watch for in 2010.

This presentation will explore highly anticipated shifts in criminal desires, techniques and production capabilities as well as at risk sites and projected business responses. Two such predictions that will be covered during the webinar include:

   5. The industrialization of hacking

   4. Social networking sites under attack

For a look at the final 3 security predictions for the upcoming year, please join us for this enlightening and informative webinar.
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva | Brian Contos, CSS, Imperva

Tags: Security Trends, Data Security, Web Application Security, Database Security, Trends

Play Webinar  
Compliance In The Cloud: The Biggest Challenges And Surest Approaches
October 21, 2009

Compliance In The Cloud: The Biggest Challenges And Surest Approaches


Is it possible to migrate applications and infrastructure to the cloud, and still meet compliance requirements? This session explores the challenges faced by auditors, SaaS providers, and enterprises as they seek to validate evidence of adequate security controls within virtualized and network-based delivery models; and the key considerations that risk and compliance managers should make.

In this educational webinar, Imperva Chief Security Strategist and Savvis VP, Security, Chris Richter will examine key steps in preparing for a compliance audit of cloud-based and virtualized infrastructures, and the importance of the following (4) tasks:
  1. Demonstrating a good match between the audit criteria and your application(s) to ensure that your enterprise is capable of withstanding a compliance audit
  2. Determining the scope of the audit to properly assess your organization's cost, complexity, and likelyhood of passing
  3. Validating the design to clearly identify the full scope of your environment that is subject to audit controls
  4. Determining evidentiary output requirements
Presenters: Chris Richter, VP, Security, Savvis | Brian Contos, Chief Security Strategist, Imperva

Tags: Audit, Compliance, Virtualized Networks, Cloud, SaaS, Data Security

Play Webinar  
Stealing Secrets – Malicious Insiders and Data Security
September 2, 2009

Stealing Secrets – Malicious Insiders and Data Security


Data is everywhere and it's valuable. Insiders have quick, easy, and often stealthy access. Common perimeter security controls and traditional network security solutions provide limited value in the face of data-centric attacks perpetrated by insiders. Hear real-life stories of malicious insiders and how organizations were able to successfully identify and prevent nefarious activity.
  • Who are the insiders?
  • What are their motivations?
  • How can attacks on sensitive data be detected and prevented?
  • What are some practical, real-life examples of risk mitigation at data hot spots: applications and databases?
Presenters: Brian Contos, Chief Security Strategist

Tags: Insider Threats, Web Application Security, Database Security, Data Security

Play Webinar  
Selected Tag: Data Security | Show All
Note: All webinars are approximately 60 minutes in length.