imperva

Picture1 3

From PyPI to the Dark Marketplace: How a Malicious Package Fuels the Sale of Telegram Identities

| | applications, imperva, Imperva Threat Research, PyPI, Session hijacking, tdata, Telegram, thales, Threat Research
Introduction In today’s digital era, security breaches can occur in the blink of an eye. Telegram Desktop is renowned for its secure, user-friendly messaging interface, but what if the data used to ...
Blog
Picture1 2

2025 Imperva Bad Bot Report: How AI is Supercharging the Bot Threat

| | AI, AI Bots, Application Security, bad bots, business risk, imperva, Report, thales
Bad bots continue to target organizations across every industry and geography, but the rise of Artificial Intelligence (AI) is fueling bot attacks, making them more intelligent and more evasive than ever before ...
Blog
Image 1

Beyond Schema Enforcement: Imperva’s Approach to Delivering Holistic API Security

| | API security, Application Security, imperva, Schema, thales
API security is gaining attention, yet many organizations struggle to move from identifying risks to mitigating them effectively. In their eagerness to strengthen their security posture, some rush to implement schema protection ...
Blog
Figure 1

The Database Kill Chain

| | database, imperva, Imperva Threat Research, kill-chain, snowflake, Uncategorized
Modern attacks targeting sensitive data have become complex. An organization with many assets might be lost when trying to assess its overall risk, understand the pain points and prioritize the tasks required ...
Blog
Attempts Image 1 1

Imperva Protects Against the Apache Camel Vulnerabilities

| | Application Security, Camel, CVE-2025-27636, CVE-2025-29891, imperva, Imperva Threat Research, thales, Threat Research
Introduction: Understanding the Apache Camel Flaw On March 9, 2025, Apache released a security advisory for CVE-2025-27636, a vulnerability in the Apache Camel framework that allows attackers to bypass header filtering via ...
Blog
Image 1

How Scalping Bots Exploited a Vulnerable API to Disrupt Online Retail Sales

| | advanced bot protection, api, Application Security, bad bots, imperva, thales, web scraping
In the fast-paced world of online retail, where customer satisfaction and availability are paramount, a sudden attack by scalping bots can disrupt operations, inflate costs, and damage reputation. A North American Online ...
Blog
Image 1 Screenshot

How to Comply with PCI DSS 4.0 Requirements 6.4.3 and 11.6.1

| | Application Security, Client-Side Protection, csp, imperva, PCI 4.0, PCI Compliance
The countdown to compliance is in its final stretch. With the third and final phase of PCI DSS 4.0 requirements taking effect on March 31, 2025, organizations are under increasing pressure to ...
Blog
Picture2

How Imperva Infused AI Throughout Research and Development

| | AI, app-security, Application Security, hackathon, imperva
The Age of AI Is Upon Us The current pace of technological change beggars’ belief. Generative Artificial Intelligence (GenAI), released to the world a mere two years ago, promises to eliminate much ...
Blog
Figure 1 attacked industries

Imperva Protects Against the Exploited CVEs in the Cleo Data Theft Attacks

| | application threats, cleo, clop, imperva, Imperva Threat Research, threat detection
The Clop ransomware group has once again demonstrated its ability to exploit vulnerabilities to compromise sensitive systems. As Cleo—a managed file transfer provider for businesses—grapples with the aftermath of Clop’s targeted attack ...
Blog

How Imperva Protects the Arts Industry from Ticketing Abuse by Carding Bots

| | advanced bot protection, Application Security, Bots, imperva, thales
The ticketing industry is under constant threat from malicious bots, with bad actors targeting these platforms for financial gain. Bots accounted for 31.1% of all traffic to entertainment platforms in 2024, with ...
Blog
Load more