July 18, 2018 Research, Perspective Nadav Avital, Lior Fisch Drupal, Phishing and A New Cryptomining Botnet It’s a well-known fact that security solutions must quickly adapt to new attack methods. There are several ways to achieve this goal, regularly applying security patches and updates, relying on...
July 11, 2018 Research, Perspective Nadav Avital, Gilad Yehudai The Trickster Hackers – Backdoor Obfuscation and Evasion Techniques A backdoor is a method for bypassing the normal authentication or encryption of a system. Sometimes developers construct backdoors to their own programs for various reasons. For example, to provide...
June 1, 2018 Insider Threats Nadav Avital, Ori Nakar New research shows 75% of ‘open’ Redis servers infected Since our initial report on the RedisWannaMine attack that propagates through open Redis and Windows servers, we’ve been hearing about more and more attacks on Redis servers. Redis is a...
April 13, 2018 Application Security, Research Nadav Avital, Koby Kilimnik Drupalgeddon 2.0: Are Hackers Slacking Off? Ever since March 28th, when Drupal published a patch for a RCE named Drupalgeddon 2.0 (SA-CORE-2018-002/CVE-2018-7600), Imperva has been monitoring our cloud looking for hackers’ attempts to exploit the vulnerability,...
March 8, 2018 Application Security Nadav Avital RedisWannaMine Unveiled: New Cryptojacking Attack Powered by Redis and NSA Exploits Recently cryptojacking attacks have been spreading like wildfire. This week we saw a new generation of cryptojacking attacks aimed at both database servers and application servers. We dubbed one of these attacks RedisWannaMine. Read on.
February 20, 2018 Application Security, Research Gilad Yehudai, Nadav Avital New Research: Crypto-mining Drives Almost 90% of All Remote Code Execution Attacks It’s early in 2018 and we have already witnessed one of the top contenders in this year’s web application attacks. Continuing the trend from the last months of 2017, crypto-mining...
