Imperva Research Labs Archives

GSocket Gambling Scavenger – How Hackers Use PHP Backdoors and GSocket to Facilitate Illegal Gambling in Indonesia

Daniel Johnston | January 15, 2025 | gambling, gaming industry, Gsocket, imperva, Imperva Research Labs, Imperva Threat Research, Indonesia, Online Gaming

Since 1974, gambling has been officially illegal in Indonesia. However, the digital revolution of the 2000s introduced a new challenge: the rapid growth of online gambling platforms. This technological shift has created ...

Blog

How We’re Protecting Customers & Staying Ahead of CVE-2021-44228

Kunal Anand | December 10, 2021 | Imperva Research Labs, rasp, Research labs

CVE-2021-44228 is a high profile vulnerability impacting multiple versions of a widely distributed Java software component, Apache Log4j 2. The specific vulnerability allows for unauthenticated remote code execution. For additional technical information, ...

Blog

Attackers exploit CVE-2021-26084 for XMRig crypto mining on affected Confluence servers

Daniel Kerman | September 13, 2021 | Application Security, application vulnerability, Digest, Imperva Research Labs, Research labs

Vulnerability Overview On August 25, 2021 a security advisory was released for a vulnerability identified in Confluence Server titled “CVE-2021-26084: Atlassian Confluence OGNL Injection”. The vulnerability allows an unauthenticated attacker to perform ...

Blog

How to Exploit SQL Server Using Registry Keys

Ofir Shaty | September 7, 2021 | Data Security, Database Security, Digest, Imperva Research Labs, Research labs, SQL Servers

At the Imperva Research Labs we have the chance to scrutinize various security situations. In this blog, we will take a closer look at database security on SQL Server. One routine approach ...

Blog

Imperva Research Labs

GSocket Gambling Scavenger – How Hackers Use PHP Backdoors and GSocket to Facilitate Illegal Gambling in Indonesia

How We’re Protecting Customers & Staying Ahead of CVE-2021-44228

Attackers exploit CVE-2021-26084 for XMRig crypto mining on affected Confluence servers

How to Exploit SQL Server Using Registry Keys

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On