Written by Ori Nakar & Matan Lion Features extraction is expensive, especially when dealing with big data. That’s why it’s great when you have the ability to preprocess close to the database — the data stays in the DB and doesn’t have to move out, unless necessary. One common approach…

Written By Shiran Bareli Over the last few days, Imperva researchers have monitored the emergence of a new botnet, one whose primary activity is performing different DDoS attacks and mining cryptocurrency. …

Written by Johnathan Azaria Imperva’s Data Scientists trained a machine-learning model to auto-configure DDoS security policies and this blog shares some of the lessons learned along the way. Data scientists consider labeled data the gold standard and, despite having to filter out anomalies, there is an overall tendency to trust…

Written by Johnathan Azaria Much has changed since we first started providing protection against DDoS attacks. Attacks which were once considered huge are now mitigated on a daily basis, attackers are becoming more sophisticated by the day, and mitigation takes a matter of seconds, as opposed to minutes, to kick…

Written by Vitaly S. Introduction Popular within the commercial sphere, Oracle WebLogic Server is a scalable enterprise Java platform application server for Java-based web applications. When a vulnerability is discovered in WebLogic, hackers will try to exploit it ASAP. And it’s not only hackers — bug hunters also want to make…

Written by Vitaly S.& Sarit Yerushalmi Introduction In cybersecurity, we often hear about best practices, one of the most important of which is never to open services that should be for internal use to public access. …

Written by Yuri Geiler and Nadav Avital Account Takeover (ATO) describes when an online account is accessed and/ or used by someone other than its legitimate owner, usually for malicious purposes. …

Written by Dima Bekerman and Sarit Yerushalmi As a web application firewall provider, part of our job at Imperva is to continually monitor for new security vulnerabilities. To do this, we use internal software that collects information from various data sources such as vulnerability databases, newsletters, forums, social media and…

Written by Nadav Avital, Avishay Zawoznik, Johnathan Azaria and Kim Lambert Today Imperva Research Labs, made up of senior researchers and industry experts who have been delivering sound and valid advice for over 15 years, is releasing a brand new Global DDoS Threat Landscape Report. …