We’ve put together this list of the main web application threats that will help security teams—and CxOs—to plan strategies to counter such disruptions.
News highlights this week: US sanctions Russia over malicious cyber activity, cryptojacking threat continues to rise and examining the real threat of accidental DDoS attacks.
Imperva is setting TLS 1.2 as Incapsula’s default minimum TLS version to provide your users a more secured first hop. Learn what steps Imperva is taking, how this affects your site and users, how to
New cryptojacking attack targets both application and database servers with crypto-mining malware, ‘Kill switch’ stops memcached DDoS attacks, Ukraine sentences two citizens for DDoS extortion, UK cyber security certification pilot launched and SEC’s cybersecurity guidance
Certificate authorities, DNS Certificate Authority Authorization (CAA), will verify your identity before issuing or renewing certificates (and so will Imperva).
Recently cryptojacking attacks have been spreading like wildfire. At Imperva we have witnessed it firsthand and even concluded that these attacks hold roughly 90% of all remote code execution attacks in web applications. Having said
The weak spots in cryptocurrency exchanges, crypto wallets and ICOs are in areas that are centralized and not based on distributed ledgers. Such as web servers. These servers are not necessarily used for websites that
We recently saw a new DDoS amplification attack vector via memcached servers that started on February 21 and culminated in two massive DDoS amplification attacks on February 28. Both attacks were mitigated successfully. Here's how
This week in app security news (February 24 – March 2, 2018): Memcached servers used to launch DDoS amplification attacks, first in-the-wild IPv6 DDoS attack spotted, DDoS bot seen in Chinese drive-by attack, cryptomining malware