Imperva Research Labs
How We’re Protecting Customers & Staying Ahead of CVE-2021-44228
CVE-2021-44228 is a high profile vulnerability impacting multiple versions of a widely distributed Java software component, Apache Log4j 2. The specific vulnerability allows for unauthenticated remote code execution. For additional technical information, ...
Attackers exploit CVE-2021-26084 for XMRig crypto mining on affected Confluence servers
Vulnerability Overview On August 25, 2021 a security advisory was released for a vulnerability identified in Confluence Server titled “CVE-2021-26084: Atlassian Confluence OGNL Injection”. The vulnerability allows an unauthenticated attacker to perform ...
How to Exploit SQL Server Using Registry Keys
At the Imperva Research Labs we have the chance to scrutinize various security situations. In this blog, we will take a closer look at database security on SQL Server. One routine approach ...