Imperva: Protecting the Data that Drives Business Blog|Login|中文Deutsche日本語

Webinars

Year: 2013 2012 2011 2010 2009 2008 2007 2006 All Hide Descriptions
Selected Tag: Web Application Security | Show All
Top 10 Database Security Threats and How to Stop Them
August 4, 2010

Top 10 Database Security Threats and How to Stop Them


The enterprise database infrastructure houses a gold mine of information highly coveted by malicious hackers and spiteful insiders. As database threats escalate and the government tightens compliance regulations, the need for database security is imperative.

Imperva's own research organization, the Application Defense Center (ADC), has identified the top 10 most dangerous threats affecting today's organizations, as well as provided background and general risk mitigation strategies. Included among the Top 10 list are the following three threats:
  • Excessive Privilege Abuse: When users (or applications) are granted database access privileges that exceed the requirements of their job function, these privileges may be abused for malicious purpose.
  • SQL Injection: When a perpetrator inserts (or injects) unauthorized database statements into a vulnerable SQL data channel.
  • Denial of Service: When access to network applications or data is denied to intended users.
Join Imperva Senior Security Strategist, Noa Bar Yosef for this educational webinar as she reveals all 10 database security threats and how to stop them.
Presenters: Noa Bar Yosef, senior security strategist, Imperva

Tags: ADC, Top Database Hacks, Web Application Security, Database Security, Hacking

Play Webinar  
The Industrialization of Hacking: How to Stop Organized, Automated, and ...
July 21, 2010

The Industrialization of Hacking: How to Stop Organized, Automated, and Mass Produced Bots


Today's cybercrime industry operates like a scene from the Industrial Revolution. With technical innovation in production and efficiency in the division of labor, industrialized hacking utilizes automated attack techniques designed to boost output and increase revenue.

Modern hacking has evolved from a single attack executed by an individual with a laptop, to massive attack campaigns administered by an organized network of zombies operated by a sole command and control center.

Join Imperva CTO, Amichai Shulman as he uncovers the industrial modernization of hacking threatening individuals, organizations, and government alike. This informative webinar includes:
  • Detail into the various roles and responsibilities that structure the industrialized supply chain
  • Explanation of the two-stage attack process devised to proliferate botnets and perform mass attacks
  • Description of common attack techniques, including SQL injection, Business Logic Attacks, and denial-of-service attacks
  • Recommendations for mitigating -- or slowing -- traffic from automated attacks
Presenters: Amichai Shulman, CTO, Imperva

Tags: Web Application Security, Hacking, Trends, Data Security, Bots

Play Webinar  
Investigating Distributed Denial-of-Service (DDoS) Attack 2.0
June 23, 2010

Investigating Distributed Denial-of-Service (DDoS) Attack 2.0


Web servers beware. Imperva's research lab, the Application Defense Center (ADC), has uncovered a type of distributed denial-of-service (DDoS) attack setting a new standard for power, efficiency, and invisibility. This new breed of attack has already infected hundreds of web servers worldwide.

Unlike traditional DDoS methods that capitalize on bot-infected PCs, hackers have now turned web servers into payload-throwing bots. Using a basic software program equipped with a dashboard and control panel, hackers configure the IP, port, and duration of the attack. Hackers simply insert the URL they wish to attack, click, and go. The bot attacks can instantly bring down web sites or target specific applications for malicious data theft.

Join Imperva Director of Security Strategy, Rob Rachwald and Imperva Web Research Team Leader, Tal Be'ery for a deeper look into this evolving attack. The informative webinar will include:
  • Detailed description of the DDoS 2.0 attack
  • Real-life screenshots of the attack software used by hackers
  • Recommendations for mending servers infected by DDoS 2.0 attacks
  • Guidance for building defenses against future DDoS 2.0 attacks
Presenters: Rob Rachwald, director of security strategy, Imperva | Tal Be'ery, web research team leader, Imperva

Tags: Web Application Security, Hacking, Trends, Data Security

Play Webinar  
Staring at the Beast: 6 Months of Attack Vector Research
April 21, 2010

Staring at the Beast: 6 Months of Attack Vector Research


Battles are won by understanding the enemy. Learning the language of today's cyber community is an important piece to eliminating uncertainties and developing defenses based on real data. According to Sun Tzu, in The Art of War, "If you know the enemy and know yourself, you need not fear the results of a hundred battles."

How do you get to know your enemy? Immerse yourself in the hacking community.
Imperva's own research organization, the Application Defense Center (ADC), spent the past six months immersing themselves into the cyber hacking world to get to know the unique culture and language of the industrialized attacker. Join Imperva Chief Technology Officer, Amichai Shulman, as he explores the findings of this fascinating study. The session will include:
  • An examination of the tools and techniques ADC employed to immerse themselves into the hacking community and collect data first-hand
  • An analysis of discovered hacking activity and modern attack vectors
  • A look into future ADC data collection measures and analysis capabilities
  • Recommendations as to what enterprises can do to protect their data, based on ADC observations
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva

Tags: Data Security, Web Application Security, Database Security, Vulnerability Assessment

Play Webinar  
Hacking Inc. - Automated, Organized and Financially-Motivated: Are You P...
March 18, 2010

Hacking Inc. - Automated, Organized and Financially-Motivated: Are You Prepared to Stop Them?


Since the dawn of the internet age, hackers have been exploiting (and profiting from) vulnerable Web applications. In turn, the security community has been racing to implement effective counter-measures to combat those Web attacks. Hackers unleashed network-centric attacks and worms in the late 1990's and Intrusion Prevention Systems (IPS) were developed o protect the network. The early 2000s saw the rise of targeted application layer attacks such as SQL Injection and Cross-Site Scripting (XSS) and the first Web Application Firewalls (WAFs) were introduced to bolster those applications.

In the intervening 10 years, hacking has become big business with a well organized infrastructure, defined roles and responsibilities, and sophisticated attack vector automation that generates large-scale attacks of unprecedented size, speed, and devastation. In order to successfully stand up to the "industrialization of hacking," Next-Generation Web Application Firewalls (WAFs) are being developed. Join Imperva CTO, Amichai Shulman and Chief Security Strategist Brian Contos as they detail both the evolution of Web application attacks and the corresponding growth of the Web Application firewall. They will also:
  • Explain the Industrialization of Hacking, including key characteristics, defining attributes, and most dangerous attack vectors.
  • Identify the core attributes of the Next-Generation WAF and trace how it has evolved from its predecessors.
  • Understand the limitations and vulnerabilities associated with IPS solutions and first-generation WAFs.
  • Present attack-mitigation techniques for combating Bots and other automated attacks common in Industrialized Hacking.
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva | Brian Contos, CSS, Imperva

Tags: Hacking, Web Application Security, Database Security, Trends

Play Webinar  
Threatscape Evolution - Data is Valuable and Bad Guys Want It
February 3, 2010

Threatscape Evolution - Data is Valuable and Bad Guys Want It


Charles Darwin said it best, "It is not the strongest of the species that survives... It is the one that is the most adaptable to change." Today's attacker has evolved -- sensitive data is the new target. With the average breach costing more than $6 million dollars,* organizations that successfully adapt their Data Security strategies will not only survive but thrive.

Data resides on databases, and people get to those databases through Web applications. Unfortunately, Web application and database security remains among the most vulnerable areas across the globe and within every business vertical. Witness the following stats:
  • Attacks against Web applications constitute more than 60% of the total attack attempts observed on the Internet -The SANS™ Institute
  • 92% of Web applications have vulnerabilities: 80% have Cross Site Scripting vulnerabilities, 62% have SQL Injection vulnerabilities -Imperva's ADC

Traditional network security controls, while valuable and necessary, simply don't scale to meet the evolving data security challenges. Organizations need to augment these traditional approaches with data-centric incident prevention and detection. Join Imperva's Chief Security Strategist Brian Contos, as he discusses the latest (and most dangerous) data-centric threats, as well as countermeasures that can be used to mitigate those threats.

* Ponemon Institute, "2007 Annual Study: Cost of a Data Breach"
Presenters: Brian Contos, Chief Security Strategist, Imperva

Tags: Data Security, Web Application Security, Database Security, Vulnerability Assessment

Play Webinar  
Selected Tag: Web Application Security | Show All
Note: All webinars are approximately 60 minutes in length.