Elad Erez image 1

Data security is broken: What’s next?

| | CVEs, Data Security, Digest, Research labs
One out of every two on-premises databases globally has at least one vulnerability, finds a new study from Imperva Research Labs spanning 27,000 on-prem databases, based on insights from a proprietary database scanning service introduced by Imperva Innovation five years ago. The question is: why is securing data so challenging? ... Read More
A Deep Dive into Database Attacks [Part IV]: Delivery and Execution of Malicious Executables through SQL Commands (MySQL)

A Deep Dive into Database Attacks [Part IV]: Delivery and Execution of Malicious Executables through SQL Commands (MySQL)

In this post we cover different techniques for execution of SQL and OS commands through MySQL database servers that can be used for delivering and executing malicious payloads on a target system ... Read More
Postgre Database attack

A Deep Dive into Database Attacks [Part III]: Why Scarlett Johansson’s Picture Got My Postgre Database to Start Mining Monero

The third in our deep dive on database attacks, "A Deep Dive into Database Attacks [Part III]: Why Scarlett Johansson’s Picture Got My Postgre Database to Start Mining Monero." Read on to find out ... Read More
NEW: Vulnerability and Assessment Scanning for Your AWS Cloud Databases

NEW: Vulnerability and Assessment Scanning for Your AWS Cloud Databases

Scuba is a free and easy-to-use tool that uncovers hidden security risks. With Scuba you can: scan enterprise databases for vulnerabilities and misconfigurations, identify risks to your databases and get recommendations on how to mitigate identified issues. Available for Windows, Mac, and Linux, Scuba offers over 2,300 assessment tests for ... Read More