• Web Application Attack Report (WAAR)

    The Imperva Defense Center’s annual report, the Web Application Attack Report (WAAR), provides an in-depth view of the threat landscape for the year. The report includes hacking trends and shifts, the latest cyber-crime business models, breach analysis by geography, industry and attack type among other important threat insights. Based on the vast repository of Imperva Defense Center’s recent research, intelligence and analysis, readers learn what they need to do to improve security controls and risk management processes.

  • Imperva Web Application Attack Report (November 2015)

    This report contains a thorough analysis of attack and alert data sourced from the many deployments of Imperva Web Application Firewalls (WAF). If all the security measures deployed ahead of the WAF were truly effective in protecting the application, there would be no need for a Web Application Attack Report. But even with all those layers protecting the endpoint, the network, and everything in between user and application, threats still manage to sneak through to the application, proving once again that Imperva SecureSphere WAF is the last line of defense for web applications. So, until all security products are perfect, and applications can protect against all attacks, there will be a WAAR. Imperva Defense Center is a proud contributor of valuable cybercrime trends and shares information with the security community of customers, vendors and partners to defend better against existing and new threats.

  • Imperva Web Application Attack Report (October 2014)

    This report contains a thorough analysis of data accumulated over time. Ideally, there would be no need for our annual Web Application Attack Report. If all of the other layers of security products at work within most enterprises were living up to their promise, there would be no need for a Web Application Firewall (WAF), the last frontier before the actual application being protected. But even with all those layers protecting the endpoint, the network, and everything in between, threats still sneak through to the application, and Imperva SecureSphere WAF is kept way too busy as the last line of defense before the application itself.

  • Imperva Web Application Attack Report (July 2013)

    Examining today's application security threat landscape, Imperva finds that retailers suffer 2X as many SQL injection attacks as other industries. Report also shows that most applications are attacked more than four times a month, and the US retains its rank as the #1 source of web attacks in the world, among many other findings.

  • Imperva Web Application Attack Report (July 2012)

    The Imperva Defense Center finds that the median annual attack incidents was 274 times a year. The average attack incident for the observed Web applications lasted seven minutes and 42 seconds, but the longest attack incident lasted an hour and 19 minutes.

  • Imperva Web Application Attack Report (January 2012)

    Imperva monitored and categorized attacks across the internet targeting 40 different enterprise and government web applications. The WAAR outlines the frequency, type and geography of origin of each attack to help security professionals better prioritize vulnerability remediation.

  • Imperva Web Application Attack Report (July 2011)

    As a part of our ongoing Hacker Intelligence Initiative, the Imperva Defense Center monitored and categorized individual attacks across the internet over a period of six months, December 2010 through May 2011. This research encompasses attacks witnessed via onion router (TOR) traffic as well as attacks targeting 30 different enterprise and government Web applications.