June 1, 2018 Insider Threats Nadav Avital, Ori Nakar New research shows 75% of ‘open’ Redis servers infected Since our initial report on the RedisWannaMine attack that propagates through open Redis and Windows servers, we’ve been hearing about more and more attacks on Redis servers. Redis is a...
April 13, 2018 Application Security, Research Nadav Avital, Koby Kilimnik Drupalgeddon 2.0: Are Hackers Slacking Off? Ever since March 28th, when Drupal published a patch for a RCE named Drupalgeddon 2.0 (SA-CORE-2018-002/CVE-2018-7600), Imperva has been monitoring our cloud looking for hackers’ attempts to exploit the vulnerability,...
March 8, 2018 Application Security Nadav Avital RedisWannaMine Unveiled: New Cryptojacking Attack Powered by Redis and NSA Exploits Recently cryptojacking attacks have been spreading like wildfire. This week we saw a new generation of cryptojacking attacks aimed at both database servers and application servers. We dubbed one of these attacks RedisWannaMine. Read on.
February 20, 2018 Application Security, Research Gilad Yehudai, Nadav Avital New Research: Crypto-mining Drives Almost 90% of All Remote Code Execution Attacks It’s early in 2018 and we have already witnessed one of the top contenders in this year’s web application attacks. Continuing the trend from the last months of 2017, crypto-mining...
January 24, 2018 Application Security, Research Nadav Avital, Gilad Yehudai Deserialization Attacks Surge Motivated by Illegal Crypto-mining Imperva’s research group is constantly monitoring new web application vulnerabilities. In doing so, we’ve noticed at least four major insecure deserialization vulnerabilities that were published in the past year. Our...
December 28, 2017 Application Security, Research Nadav Avital, Natan Elul The State of Web Application Vulnerabilities in 2017 As a web application firewall provider, part of our job at Imperva is constantly monitoring new security vulnerabilities. To do this, we use internal software that collects information from various...
