Freely subscribe to our NEWSLETTER

Cloud adoption, consumerization, and bring your own device (BYOD) programs fundamentally alter traditional enterprise security threat models. The data cybercriminals are after is no longer housed only in traditional databases within enterprise data centers, but is exploding into public clouds, and into next generation big data engines. Simultaneously, cyber criminals are leveraging vast databases of known user credentials and sophisticated automation to systematically take over web application user accounts and then commit fraud or launch further attacks. SecureSphere 11.5 adds critical new capabilities to defend enterprise data and applications against the attacks of this “new normal” threat landscape.

According to the 2015 Verizon Breach report, over 50 percent of successful web application attacks involved compromised user credentials. To address this reality, Imperva is also announcing a new subscription service, ThreatRadar Account Takeover Protection that enables SecureSphere Web Application Firewall to protect web application accounts from being compromised. ThreatRadar Account Takeover Protection combines real-time:
• Awareness of credentials known to be compromised from past breaches;
• Knowledge of login device reputation and risk, for example, understanding that the device is jailbroken or associated with past fraud activities;
• Detection of credential stuffing and dictionary attacks against passwords; and
• Analysis of behavior across multiple devices and accounts.

These capabilities combine to identify account takeover attempts and compromised accounts, and protect against hackers before they gain access to protected web applications and services. This real-time threat intelligence, combined with the existing ThreatRadar Reputation and Bot Protection services, enables SecureSphere Web Application Firewall to accurately protect against account takeover attempts, and limits the ability of cyber criminals to access critical data and perform fraudulent transactions.

In addition to account risk, today’s threat models add the complexity of sensitive data being housed in next generation big data engines, as well as moving out of datacenters and into IaaS clouds. SecureSphere 11.5 addresses this by adding:

• Database Activity Monitoring and Database Firewall for Amazon Web Services – As enterprises move valuable data onto Amazon Web Services, the world’s most popular IaaS cloud, both hackers and auditors will follow. SecureSphere 11.5 provides data monitoring, and event alerting and reporting, and is designed to block unauthorized data access across AWS and on-premises data centers. With SecureSphere Web Application Firewall and SecureSphere data protection both available on AWS, enterprises get consistency in the cloud and on-premises to save time, improve productivity, and ultimately increase security and compliance accuracy in today’s hybrid cloud environments.

• SecureSphere Data Protection for Big Data – When it comes to meeting security and compliance requirements for protecting data, coverage is critical. Today, many organizations do not have sufficient data protection for emerging big data deployments, leaving them at risk for data breaches and compliance-related penalties. SecureSphere 11.5 includes data monitoring for leading big data engines including Cloudera, Hortonworks, IBM BigInsights and MongoDB. This enables customers to efficiently demonstrate big data compliance through automated processes, audit analysis, customizable reports and an efficient approach to monitor big data activity.