Imperva: Protecting the Data that Drives Business Blog|Login|中文Deutsche日本語

Webinars

Year: 2013 2012 2011 2010 2009 2008 2007 2006 All Hide Descriptions
Selected Tag: Database Security | Show All
Top 10 Database Security Threats and How to Stop Them
August 4, 2010

Top 10 Database Security Threats and How to Stop Them


The enterprise database infrastructure houses a gold mine of information highly coveted by malicious hackers and spiteful insiders. As database threats escalate and the government tightens compliance regulations, the need for database security is imperative.

Imperva's own research organization, the Application Defense Center (ADC), has identified the top 10 most dangerous threats affecting today's organizations, as well as provided background and general risk mitigation strategies. Included among the Top 10 list are the following three threats:
  • Excessive Privilege Abuse: When users (or applications) are granted database access privileges that exceed the requirements of their job function, these privileges may be abused for malicious purpose.
  • SQL Injection: When a perpetrator inserts (or injects) unauthorized database statements into a vulnerable SQL data channel.
  • Denial of Service: When access to network applications or data is denied to intended users.
Join Imperva Senior Security Strategist, Noa Bar Yosef for this educational webinar as she reveals all 10 database security threats and how to stop them.
Presenters: Noa Bar Yosef, senior security strategist, Imperva

Tags: ADC, Top Database Hacks, Web Application Security, Database Security, Hacking

Play Webinar  
Analyst's Guide to Understanding & Selecting a Database Assessment Solution
May 19, 2010

Analyst's Guide to Understanding & Selecting a Database Assessment Solution


Database security and compliance requirements have been at issue for many years now, but only recently have assessment platforms matured sufficiently to deliver on their promise. Vulnerability assessment and configuration audits are not only an essential step for security, but required by various compliance regulations. Automated and centralized assessment reduces manual costs and resources by effectively verifying compliance and security settings across multiple heterogeneous environments. This webinar will include:
  • Business use cases for database assessment and common drivers for adoption
  • Key components of database assessment platforms and configuration audits
  • Configuration audits to address compliance regulations
  • Useful tips for evaluating products both individually and head-to-head
Presenters: Adrian Lane, Analyst, Securosis | Dana Tamir, Sr. Manager Database Solutions, Imperva

Tags: Data Security, Database Security, Database Assessment, Vulnerability Assessment, Compliance

Play Webinar  
Staring at the Beast: 6 Months of Attack Vector Research
April 21, 2010

Staring at the Beast: 6 Months of Attack Vector Research


Battles are won by understanding the enemy. Learning the language of today's cyber community is an important piece to eliminating uncertainties and developing defenses based on real data. According to Sun Tzu, in The Art of War, "If you know the enemy and know yourself, you need not fear the results of a hundred battles."

How do you get to know your enemy? Immerse yourself in the hacking community.
Imperva's own research organization, the Application Defense Center (ADC), spent the past six months immersing themselves into the cyber hacking world to get to know the unique culture and language of the industrialized attacker. Join Imperva Chief Technology Officer, Amichai Shulman, as he explores the findings of this fascinating study. The session will include:
  • An examination of the tools and techniques ADC employed to immerse themselves into the hacking community and collect data first-hand
  • An analysis of discovered hacking activity and modern attack vectors
  • A look into future ADC data collection measures and analysis capabilities
  • Recommendations as to what enterprises can do to protect their data, based on ADC observations
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva

Tags: Data Security, Web Application Security, Database Security, Vulnerability Assessment

Play Webinar  
Hacking Inc. - Automated, Organized and Financially-Motivated: Are You P...
March 18, 2010

Hacking Inc. - Automated, Organized and Financially-Motivated: Are You Prepared to Stop Them?


Since the dawn of the internet age, hackers have been exploiting (and profiting from) vulnerable Web applications. In turn, the security community has been racing to implement effective counter-measures to combat those Web attacks. Hackers unleashed network-centric attacks and worms in the late 1990's and Intrusion Prevention Systems (IPS) were developed o protect the network. The early 2000s saw the rise of targeted application layer attacks such as SQL Injection and Cross-Site Scripting (XSS) and the first Web Application Firewalls (WAFs) were introduced to bolster those applications.

In the intervening 10 years, hacking has become big business with a well organized infrastructure, defined roles and responsibilities, and sophisticated attack vector automation that generates large-scale attacks of unprecedented size, speed, and devastation. In order to successfully stand up to the "industrialization of hacking," Next-Generation Web Application Firewalls (WAFs) are being developed. Join Imperva CTO, Amichai Shulman and Chief Security Strategist Brian Contos as they detail both the evolution of Web application attacks and the corresponding growth of the Web Application firewall. They will also:
  • Explain the Industrialization of Hacking, including key characteristics, defining attributes, and most dangerous attack vectors.
  • Identify the core attributes of the Next-Generation WAF and trace how it has evolved from its predecessors.
  • Understand the limitations and vulnerabilities associated with IPS solutions and first-generation WAFs.
  • Present attack-mitigation techniques for combating Bots and other automated attacks common in Industrialized Hacking.
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva | Brian Contos, CSS, Imperva

Tags: Hacking, Web Application Security, Database Security, Trends

Play Webinar  
Threatscape Evolution - Data is Valuable and Bad Guys Want It
February 3, 2010

Threatscape Evolution - Data is Valuable and Bad Guys Want It


Charles Darwin said it best, "It is not the strongest of the species that survives... It is the one that is the most adaptable to change." Today's attacker has evolved -- sensitive data is the new target. With the average breach costing more than $6 million dollars,* organizations that successfully adapt their Data Security strategies will not only survive but thrive.

Data resides on databases, and people get to those databases through Web applications. Unfortunately, Web application and database security remains among the most vulnerable areas across the globe and within every business vertical. Witness the following stats:
  • Attacks against Web applications constitute more than 60% of the total attack attempts observed on the Internet -The SANS™ Institute
  • 92% of Web applications have vulnerabilities: 80% have Cross Site Scripting vulnerabilities, 62% have SQL Injection vulnerabilities -Imperva's ADC

Traditional network security controls, while valuable and necessary, simply don't scale to meet the evolving data security challenges. Organizations need to augment these traditional approaches with data-centric incident prevention and detection. Join Imperva's Chief Security Strategist Brian Contos, as he discusses the latest (and most dangerous) data-centric threats, as well as countermeasures that can be used to mitigate those threats.

* Ponemon Institute, "2007 Annual Study: Cost of a Data Breach"
Presenters: Brian Contos, Chief Security Strategist, Imperva

Tags: Data Security, Web Application Security, Database Security, Vulnerability Assessment

Play Webinar  
Selected Tag: Database Security | Show All
Note: All webinars are approximately 60 minutes in length.