Imperva: Protecting the Data that Drives Business Login|Japanese

Webinars

Year: 2010 2009 2008 2007 2006 All Hide Descriptions
Popular Tags: ADC, Compliance, Database Security, PCI, Trends, Web Application Security
Hacking Inc. - Automated, Organized and Financially-Motivated: Are You P...
March 18, 2010
REGISTER NOW

Upcoming: Hacking Inc. - Automated, Organized and Financially-Motivated: Are You Prepared to Stop Them?


Since the dawn of the internet age, hackers have been exploiting (and profiting from) vulnerable Web applications. In turn, the security community has been racing to implement effective counter-measures to combat those Web attacks. Hackers unleashed network-centric attacks and worms in the late 1990’s and Intrusion Prevention Systems (IPS) were developed o protect the network. The early 2000s saw the rise of targeted application layer attacks such as SQL Injection and Cross-Site Scripting (XSS) and the first Web Application Firewalls (WAFs) were introduced to bolster those applications.

In the intervening 10 years, hacking has become big business with a well organized infrastructure, defined roles and responsibilities, and sophisticated attack vector automation that generates large-scale attacks of unprecedented size, speed, and devastation. In order to successfully stand up to the “industrialization of hacking,” Next-Generation Web Application Firewalls (WAFs) are being developed. Join Imperva CTO, Amichai Shulman and Chief Security Strategist Brian Contos as they detail both the evolution of Web application attacks and the corresponding growth of the Web Application firewall. They will also:
  • Explain the Industrialization of Hacking, including key characteristics, defining attributes, and most dangerous attack vectors.
  • Identify the core attributes of the Next-Generation WAF and trace how it has evolved from its predecessors.
  • Understand the limitations and vulnerabilities associated with IPS solutions and first-generation WAFs.
  • Present attack-mitigation techniques for combating Bots and other automated attacks common in Industrialized Hacking.
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva | Brian Contos, CSS, Imperva

Tags: Hacking, Web Application Security, Database Security, Trends

Date: March 18, 2010
Time: 11:00 AM PST | 2:00 PM EST
  
Threatscape Evolution - Data is Valuable and Bad Guys Want It
February 3, 2010

Threatscape Evolution - Data is Valuable and Bad Guys Want It


Charles Darwin said it best, "It is not the strongest of the species that survives... It is the one that is the most adaptable to change." Today's attacker has evolved -- sensitive data is the new target. With the average breach costing more than $6 million dollars,* organizations that successfully adapt their Data Security strategies will not only survive but thrive.

Data resides on databases, and people get to those databases through Web applications. Unfortunately, Web application and database security remains among the most vulnerable areas across the globe and within every business vertical. Witness the following stats:
  • Attacks against Web applications constitute more than 60% of the total attack attempts observed on the Internet -The SANS™ Institute
  • 92% of Web applications have vulnerabilities: 80% have Cross Site Scripting vulnerabilities, 62% have SQL Injection vulnerabilities -Imperva's ADC

Traditional network security controls, while valuable and necessary, simply don't scale to meet the evolving data security challenges. Organizations need to augment these traditional approaches with data-centric incident prevention and detection. Join Imperva's Chief Security Strategist Brian Contos, as he discusses the latest (and most dangerous) data-centric threats, as well as countermeasures that can be used to mitigate those threats.

* Ponemon Institute, "2007 Annual Study: Cost of a Data Breach"
Presenters: Brian Contos, Chief Security Strategist, Imperva

Tags: Data Security, Web Application Security, Database Security, Vulnerability Assessment

Play Webinar  
Top 5 Security Trends for the Next Decade
December 17, 2009

Top 5 Security Trends for the Next Decade


As we approach a new decade, battle lines have been firmly drawn between organizations seeking to protect their most sensitive data and dangerous cyber-criminals intent on attacking that data. Join Imperva CTO Amichai Shulman for this informative webinar in which he discusses his predictions for the five most important security trends to watch for in 2010.

This presentation will explore highly anticipated shifts in criminal desires, techniques and production capabilities as well as at risk sites and projected business responses. Two such predictions that will be covered during the webinar include:

   5. The industrialization of hacking

   4. Social networking sites under attack

For a look at the final 3 security predictions for the upcoming year, please join us for this enlightening and informative webinar.
Presenters: Amichai Shulman, Co-Founder & CTO, Imperva | Brian Contos, CSS, Imperva

Tags: Security Trends, Data Security, Web Application Security, Database Security, Trends

Play Webinar  
How to Keep Hackers on Ice While Your Code is Frozen
December 2, 2009

How to Keep Hackers on Ice While Your Code is Frozen


Every organization has periods of time where IT assets are frozen and modifications (i.e. patching or code changes) are restricted. In fact, with the holiday shopping season in full swing, your company may be under a code freeze right now. While the development team must remain hands-off at this time, scores of hackers and fraud-artists – both external and internal – remain hyper-active in their efforts to exploit any application security vulnerabilities. This educational webinar will explore the security risks that accompany a code freeze and will offer real world examples of organizations that have mitigated those risks through proven web application security and vulnerability assessment solutions that allow your code to remain frozen and keeps dangerous hackers on ice.

Join Jeremiah Grossman, founder and CTO of WhiteHat Security and Brian Contos, Chief Security Strategist for Imperva for an interactive presentation that leverages live audience feedback and expert insight and end-user experience to illustrate the most effective methods for combating Web application abuse and fraud. Topics covered during the webinar will include:
  • The good, the bad, and the ugly regarding code freezes
  • How to use Virtual Patching and Vulnerability Assessment to provide 24/7/365 security for your Web applications – even during a code freeze
  • The current state of application security - stats, charts and stories from the trenches
  • The limitations of purely preventative controls, including reasons why they don't work in "real world" business operations environments
  • How to reduce the exposure for your application vulnerabilities so that the "bad guys" can't exploit them
Presenters: Jeremiah Grossman, Founder and CTO, WhiteHat Security | Brian Contos, CSS, Imperva

Tags: Web Application Security, Code Freeze, Virtual Patching, Vulnerability Assessment, Application Vulnerabilities

Play Webinar  
Compliance In The Cloud: The Biggest Challenges And Surest Approaches
October 21, 2009

Compliance In The Cloud: The Biggest Challenges And Surest Approaches


Is it possible to migrate applications and infrastructure to the cloud, and still meet compliance requirements? This session explores the challenges faced by auditors, SaaS providers, and enterprises as they seek to validate evidence of adequate security controls within virtualized and network-based delivery models; and the key considerations that risk and compliance managers should make.

In this educational webinar, Imperva Chief Security Strategist and Savvis VP, Security, Chris Richter will examine key steps in preparing for a compliance audit of cloud-based and virtualized infrastructures, and the importance of the following (4) tasks:
  1. Demonstrating a good match between the audit criteria and your application(s) to ensure that your enterprise is capable of withstanding a compliance audit
  2. Determining the scope of the audit to properly assess your organization's cost, complexity, and likelyhood of passing
  3. Validating the design to clearly identify the full scope of your environment that is subject to audit controls
  4. Determining evidentiary output requirements
Presenters: Chris Richter, VP, Security, Savvis | Brian Contos, Chief Security Strategist, Imperva

Tags: Audit, Compliance, Virtualized Networks, Cloud, SaaS, Data Security

Play Webinar  

Anatomy of a Database Attack
September 30, 2009

Anatomy of a Database Attack


Corporate databases and their contents are under siege. From outside the organization, criminals can exploit web applications to steal confidential information for financial gain. From the inside, databases can be compromised by employees and contractors with malicious intent. SQL Injection, platform vulnerabilities, buffer overflows...databases are vulnerable to a myriad of threats and attack vectors.

Imperva CTO Amichai Shulman will use live demonstrations to trace the steps involved in breaking into a database, and present a reference architecture and checklist for implementing iron-clad database security measures. Specific topics covered during this webinar include:
  • The 5 Steps for Attacking a Database
  • Key tools for obtaining database credentials such as Brute Force and Exhaustive Search
  • Primary database attack methods such as Lateral SQL Injection and Buffer Overflow
  • Covert tactics used by database attackers to cover their tracks and avoid detection
Presenters: Amichai Shulman, CTO | Brian Contos, Chief Security Strategist

Tags: Database Attack, Database Security, Database Activity Monitoring

Play Webinar  
Stealing Secrets – Malicious Insiders and Data Security
September 2, 2009

Stealing Secrets – Malicious Insiders and Data Security


Data is everywhere and it's valuable. Insiders have quick, easy, and often stealthy access. Common perimeter security controls and traditional network security solutions provide limited value in the face of data-centric attacks perpetrated by insiders. Hear real-life stories of malicious insiders and how organizations were able to successfully identify and prevent nefarious activity.
  • Who are the insiders?
  • What are their motivations?
  • How can attacks on sensitive data be detected and prevented?
  • What are some practical, real-life examples of risk mitigation at data hot spots: applications and databases?
Presenters: Brian Contos, Chief Security Strategist

Tags: Insider Threats, Web Application Security, Database Security, Data Security

Play Webinar  
Silver Bullets Work on Werewolves, Not Database Security: Enter a Layere...
August 19, 2009

Silver Bullets Work on Werewolves, Not Database Security: Enter a Layered Approach to Risk Mitigation


Managing database risk transcends traditional concepts of IT security. Databases are often mission-critical assets supporting vital business processes - as such risk mitigation is often quite different than protecting other IT assets within an organization. In the past there were competing objectives between database management and security which left both camps lacking a complete solution. Native database security solutions are rarely deployed enterprise wide and lack the ability to scale in heterogeneous environments.

With a layered approach, risk mitigation can be achieved and done so while keeping a constant guard over operational commitments. This webinar will cut through the complexity and provide a simple process for organizations to devise a quickly achievable and effective strategy for minimizing risk to database data while achieving compliance with regulations such as PCI, HIPAA and Sarbanes-Oxley.
Presenters: Gretchen Hellman, Vormetric | Brian Contos, Imperva

Tags: Encryption, Database Audit, Database Security, Partner, SOX, HIPAA, PCI

Play Webinar  
Dude, Where's my Data? Why Data Discovery is Key to PCI Compliance
July 22, 2009

Dude, Where's my Data? Why Data Discovery is Key to PCI Compliance


Many companies struggle to locate and accurately maintain all their databases and those that can, struggle to classify the data that resides within those databases. Visa's upcoming September 30th deadline regarding the retention of sensitive authentication data (magnetic strip/track, CVV2 or PIN data), magnifies the time-sensitive nature of the PCI regulation. Equally important, the potential fines re-affirm how expensive penalties for non-compliance can be to your organization.

In this educational webinar, Imperva CTO Amichai Shulman will present the fundamental steps for data discovery and classification along with instructions on how to leverage this information for effective risk management policies.
Presenters: Amichai Shulman, CTO | Brian Contos, Chief Security Strategist

Tags: ADC, PCI, Compliance, Data Discovery and Classification, Web Application Security, Database Security

Play Webinar  
The Web Attack Defense Playbook: An End-User Case Study
June 17, 2009

The Web Attack Defense Playbook: An End-User Case Study


How One Organization is Using a WAF and Website Vulnerability Management Solution to Lock Down Their Data

Join Joe White, Information Security Architect from SuccessFactors, as he details the robust data security strategy that has enabled his organization to successfully defend itself against dangerous web-site attacks. Mr. White will provide first-hand insight into the unique benefits that an integrated WAF-vulnerability management solution provides while highlighting SuccessFactors' ability to execute data policies that are unmatched in their level of accuracy and granularity.

Also featured in this education webinar will be an overview of Web Application Firewalls (WAFs) from Imperva Co-Founder and CTO, Amichai Shulman and website vulnerability management solutions from Jeremiah Grossman, founder and CTO of WhiteHat Security.
Presenters: Joe White, Information Security Architect, SuccessFactors | Jeremiah Grossman, Founder and CTO, WhiteHat Security | Amichai Shulman, CTO, Imperva

Tags: ADC, Partner, Customer, Vulnerability Assessment, Web Application Security, Database Security

Play Webinar  
Data Discovery and Assessment: Foundation for Database Risk Management
May 21, 2009

Data Discovery and Assessment: Foundation for Database Risk Management


Join Imperva CTO Amichai Shulman as he discusses the fundamental Data Discovery and Assessment (DAS) processes and presents the (4) key components for a successful Database Risk Management strategy.
Presenters: Amichai Shulman, CTO | Brian Contos, Chief Security Strategist

Tags: ADC, Data Discovery and Classification, Risk Management, Web Application Security, Database Security, Data Discovery

Play Webinar  
PCI Validated, But Not Secure: Real-Life Stories of a PCI QSA
March 11, 2009

PCI Validated, But Not Secure: Real-Life Stories of a PCI QSA


Join Branden Williams, Director of PCI Practice for VeriSign, certified PCI Qualified Security Assessor (QSA), and the Society of Payment Security Professionals' 2008 Payment Security Professional of the Year as he provides real-world case studies highlighting the specific flaws in many organizations' PCI and data security strategies. Mr. Williams will be joined by Brian Contos, Chief Security Strategist at Imperva, for additional insight into the technologies and solutions that can be used to mitigate the potential holes in these PCI compliance programs.
Presenters: Branden Williams, Director, PCI Practice, VeriSign | Brian Contos, Chief Security Strategist, Imperva

Tags: PCI, Compliance, Partner, Web Application Security, Database Security, VeriSign

Play Webinar  
Imperva Reveals the Top (6) Security Trends for 2009
February 4, 2009

Imperva Reveals the Top (6) Security Trends for 2009


Cross-site scripting (XSS) has long-held the #1 position as the industry's most prevalent web application vulnerability. However, as hackers turn to alternative (and more lucrative) attack technologies, the total number of XSS incidents has begun to dwindle over the past several years. With the next generation of web browsers equipped with specific XSS filters, this trend will continue to accelerate.
Presenters: Amichai Shulman, CTO | Brian Contos, Chief Security Strategist

Tags: ADC, Trends, Web Application Security, Database Security, XSS, Cross-Site Scripting

Play Webinar  
Supercharge Your SIEM Investment with Database Activity Monitoring
December 17, 2008

Supercharge Your SIEM Investment with Database Activity Monitoring


Find out how you can maximize your SIEM investment and increase visibility of privileged database users by integrating Imperva's market leading database security and ArcSight's award-winning SIEM platform. Give auditors what they want and meet PCI, SOX, and other regulatory requirements in the process through a combined and fully integrated Imperva and ArcSight solution.
Presenters: Aarij Khan, ArcSight | Dean Ocampo, Imperva

Tags: Partner, SIEM, Database Audit, Web Application Security, Database Security, Database Activity Monitoring

Play Webinar  
The Top Ten Application and Database Vulnerabilities
November 19, 2008

The Top Ten Application and Database Vulnerabilities


Join Imperva for this educational web seminar as we reveal the top ten application and database vulnerabilities. Corporate databases contain the crown jewels of an organization, which means a break-in, by insiders or outsiders, can cost millions in fines, lawsuits, and customer attrition. The good news is there are 10 commonly used methods to attack databases. Defend against these, and your databases will be virtually impenetrable.
Presenters: Kasey Cross, Senior Technical Marketing Manager

Tags: Application Vulnerabilities, Database Vulnerabilities, Web Application Security, Database Security

Play Webinar  
The Inside Story of PCI: Confessions of a QSA
October 8, 2008

The Inside Story of PCI: Confessions of a QSA


Many organizations have committed significant budget, resources, and time to developing a compliance strategy for the PCI DSS. This live, interactive webinar from Imperva features first-hand insight from individual whose job it was to analyze and evaluate companies' PCI compliance strategy. Join John Kindervag, current Forrester Research analyst and former Qualified Security Assessor (QSA), and Mark Kraynak from Imperva for this highly informative and timely web-seminar.
Presenters: John Kindervag, Forrester | Mark Kraynak, Imperva

Tags: Analyst, PCI, Compliance, Web Application Security, Database Security

Play Webinar  
Why Web Application Firewalls and Scanners Go So Well Together
September 9, 2008

Why Web Application Firewalls and Scanners Go So Well Together


Want to simultaneously protect and improve your Web applications? Learn how Web application firewalls and vulnerability scanners can work together to accurately pinpoint and block vulnerabilities by watching this educational webinar.

Join noted expert Amichai Shulman, Imperva CTO as he discusses all the elements of the Web application security lifecycle. He will share the best practices for application security and describe how today's leading security vendors are cooperating to develop integrated solutions that span the entire application security lifecycle.
Presenters: Amichai Shulman, CTO

Tags: ADC, Vulnerability Assessment, Web Application Security, Database Security

Play Webinar  
A Preview of PCI DSS 1.2... and What it Means For You
August 20, 2008

A Preview of PCI DSS 1.2... and What it Means For You


Join Amichai Shulman, CTO of Imperva as he addresses these questions and helps organizations get a head-start on the planning for PCI DSS 1.2. Mr. Shulman will provide an overview of the Council's changes, review the scope of the updates, and walk through the key updates from the previous versions of the standard. A vetted member of the PCI Security Standards Council, Imperva has a track record of delivering PCI-compliance solutions to the world's leading retailers and e-tailers, financial institutions, healthcare and insurance providers, telecommunications companies, and online merchants and service-providers of all types and sizes.
Presenters: Amichai Shulman, CTO

Tags: ADC, PCI, Compliance, Web Application Security, Database Security

Play Webinar  
SQL Injection 2.0: Bigger, Badder, Faster... and More Dangerous Than Ever
July 30, 2008

SQL Injection 2.0: Bigger, Badder, Faster... and More Dangerous Than Ever


Join Amichai Shulman, CTO of Imperva and Director of the Application Defense Center (ADC), as he pulls back the covers on the next generation of SQL Injection attacks and provides directions on how you can protect your organization against these increasingly sophisticated and dangerous threats. Mr. Shulman will highlight how hackers are launching non-customized attack code via "botnets" and Google searches to distribute malware with lightning-fast speed and precision efficiency. This educational webinar will also feature live demonstrations of several different types of SQL Injection attacks.
Presenters: Amichai Shulman, CTO

Tags: ADC, SQL Injection, SQL Injection 2.0, Web Application Security, Database Security

Play Webinar  
Who Touched My Database: Lessons for Database Auditing
June 18, 2008

Who Touched My Database: Lessons for Database Auditing


Join Noel Yuhanna, Principal Analyst for Forrester Research and Amichai Shulman, CTO for Imperva for this educational webinar in which they present the key strategies for enterprise database auditing. Mr. Yuhanna will leverage the experience gleaned from his extensive research in the field of data security to deliver insight into the key trends and drivers currently propelling the market. Mr. Shulman will follow with a deep-dive (including a live demonstration) into the finer points of a successful database auditing solution.
Presenters: Noel Yuhanna, Principal Analyst, Forrester Research | Amichai Shulman, Chief Technology Officer

Tags: Analyst, ADC, Database Audit, Web Application Security, Database Security

Play Webinar  

Google Hacking
May 15, 2008

Google Hacking


Join Amichai Shulman, CTO Imperva, as he demonstrates a broader set of the most dangerous web application threats in the age of Google. Mr. Shulman will also present security strategies and techniques to protect your organization against these attacks.
Presenters: Amichai Shulman, CTO

Tags: ADC, Google Hacking, Web Application Security, Database Security

Play Webinar  
Market-Tested Techniques for Beating the PCI Deadline
April 16, 2008

Market-Tested Techniques for Beating the PCI Deadline


Join Sharon Besser, Imperva's Senior Director, Product Strategy, for this timely and educational webinar on the PCI DSS standard. Mr. Besser will illuminate the road to successful PCI Compliance by highlighting many of the roadblocks that traditionally sidetrack organizations. He will also review some of the most dangerous application attack methods while demonstrating how a WAF can mitigate these types of costly threats.
Presenters: Sharon Besser, Senior Director, Product Strategy

Tags: PCI, Compliance, Web Application Security, Database Security

Play Webinar  
The Most Dangerous Web 2.0 Threats... and How to Stop Them
March 12, 2008

The Most Dangerous Web 2.0 Threats... and How to Stop Them


Leading companies, including Google, MySpace, Amazon, and Yahoo, have proven susceptible to Web 2.0 vulnerabilities. As Web 2.0 technologies are being incorporated into more and more sites, it becomes imperative to understand the related security threats. Join Amichai Shulman, Imperva CTO and Director of the Application Defense Center (ADC), as he demonstrates the many sophisticated attacks being exposed through the use of Web 2.0.
Presenters: Amichai Shulman, CTO

Tags: ADC, Web 2.0 Threats, Web Application Security, Database Security

Play Webinar  
Top Seven Security Trends in 2008
February 6, 2008

Top Seven Security Trends in 2008


Join Amichai Shulman, Imperva CTO and Director of the Application Defense Center (ADC) as he demonstrates dangerous security threats such as Google Hacking and JavaScript Hijacking. During his presentation he will look back at 2007 security trends and predict how these trends will influence the security landscape in 2008. From Web 2.0 vulnerabilities to new, specialized attacks, this educational webinar will investigate the incidents that made headlines and impacted corporate bottom lines.

Mr. Shulman provides detailed insight into the most dangerous security risks for organizations in 2008 as well as their causes and potential mitigation techniques. He will reveal ADC research on these security trends and provide live demonstrations of attacks. He will also describe how these trends are impacting compliance regulations and discuss various ways to fortify resources against these threats.

This educational webinar will present the top security issues such as:
  • Social networking site vulnerabilities
  • SQL injection – CSRF attack "cocktails"
  • Google hacking
  • Online gaming fraud
Presenters: Amichai Shulman, CTO

Tags: ADC, Trends, Web Application Security, Database Security

Play Webinar  
Streamlining SOX: Why Audit Standard Five (AS5) Makes Compliance Easier
December 12, 2007

Streamlining SOX: Why Audit Standard Five (AS5) Makes Compliance Easier


With the recent introduction of Audit Standard 5 (AS5), the opportunity now exists to loosen the Sarbanes-Oxley (SOX) stranglehold and ease your company's overall compliance headaches. Enroll for this FREE webinar and obtain additional details on AS5 and learn how you can streamline your SOX compliance.

Amichai Shulman, Chief Technology Officer, Imperva, will provide an interactive presentation detailing the world of SOX compliance before-and-after AS5 as well as the steps your organization can take to leverage this new standard to alleviate the pain that accompanies SOX compliance and data governance.

Webinar attendees will learn how to:
  • Understand the key SOX changes as outlined by AS5
  • Identify examples of privilege abuse and the potential threat for fraud or compromised data accuracy
  • Perform a thorough assessment of sensitive data and data usage
  • Assess user privileges to uncover excessive privilege distribution
  • Recognize additional insider threats to sensitive data and database servers
Presenters: Amichai Shulman, CTO

Tags: ADC, Sarbanes-Oxley, Compliance, Database Audit, Web Application Security, Database Security

Play Webinar  
Case Study: MarketLive Is PCI Certified Using WAF for PCI 6.6
November 14, 2007

Case Study: MarketLive Is PCI Certified Using WAF for PCI 6.6


Learn how MarketLive, a leader in eCommerce software solutions - took an expert approach and implementation, to achieve their Level 2 certification through an external qualified security assessor (QSA) effectively and efficiently.

Barak Engel, Chief Security Officer, MarketLive, and Amichai Shulman, Chief Technology Officer, Imperva, review how to prepare your organization for PCI compliance, and, if needed by your organization, PCI certification.
Presenters: Barak Engel, Chief Security Officer, MarketLive | Amichai Shulman, Chief Technology Officer, Imperva

Tags: ADC, Customer, PCI, Compliance, Web Application Security, Database Security

Play Webinar  
Online Identity Theft: Protecting Holiday Shoppers
October 17, 2007

Online Identity Theft: Protecting Holiday Shoppers


This holiday season, shoppers are expected to spend more money online than ever before. With increasing amounts of money being spent online, identity thieves are taking their practices to a higher level of sophistication. Many online shopping technologies in use today have been around for some time and are vulnerable to the new mechanisms organized identity thieves are employing to commit fraud.

Amichai Shulman, Imperva CTO discussed how to prepare your online presence to ensure the safety of your customers. Amichai describes the latest threats to commercial websites and how to protect against them. Amichai also presented demos and mitigation techniques for the following:
  • Cross Site Scripting (XSS)
  • Cross Site Request Forgery (CSRF)
  • SQL Injection TESTING....
  • Unauthorized Privilege Abuse
Presenters: Amichai Shulman, CTO

Tags: ADC, Online Identity Theft, Web Application Security, Database Security

Play Webinar  
Roadmap to PCI Compliance: Navigating the Most Challenging PCI Requirements
September 19, 2007

Roadmap to PCI Compliance: Navigating the Most Challenging PCI Requirements


Learn more about the three most difficult PCI compliance mandates: tracking and monitoring cardholder data, rendering stored cardholder data unreadable, and application security. You'll learn how to effectively address these PCI requirements while simultaneously mitigating security risks. Discover what you should know about the PCI Data Security Standard.

Industry expert Amichai Shulman, Imperva CTO and head of the Application Defense Center (ADC), shared his in-depth knowledge of the PCI standard and how organizations should prepare for a PCI audit. Hear first-hand the steps your organization should take to comply with the PCI standard and protect credit card information.
Presenters: Amichai Shulman, CTO

Tags: ADC, PCI, Web Application Security, Database Security

Play Webinar  
Behind the Scenes: Data Breach Headlines Examined
August 15, 2007

Behind the Scenes: Data Breach Headlines Examined


This Webinar examines trends in how data breaches are costing corporations millions. We will examine several recent high profile breaches and analyze the underlying causes of the breach, including questionable business practices, vulnerabilities and attack techniques. The Webinar will also make specific recommendations on how to avoid these data breaches.
Presenters: Amichai Shulman, CTO

Tags: ADC, Data Breach Headlines, Web Application Security, Database Security

Play Webinar  
Solving Security and Compliance – Tips and Tricks for Enterprise A...
July 25, 2007

Solving Security and Compliance – Tips and Tricks for Enterprise Applications


Insufficient expertise and strained resources cause most IT departments to operate with inadequate audit and security coverage, even for their most critical business applications like SAP and Oracle E-Business Suite. Don't let this happen in your organization. Learn from the experts in the Imperva Application Defense Center (ADC) how to get control of your enterprise applications – and prove it to your auditors.

This session discusses the challenges of enterprise application security and compliance and illustrates these challenges against popular business applications like SAP and Oracle E-Business Suite.
Presenters: Amichai Shulman, CTO

Tags: ADC, Compliance, Web Application Security, Database Security

Play Webinar  
Give 'Em What They Want – Satisfy the Top 5 Database Audit Require...
June 13, 2007

Give 'Em What They Want – Satisfy the Top 5 Database Audit Requirements


Corporate auditors require that organizations maintain database audit logs of business critical applications. Learning to meet the five key requirements for passing a database audit can save you time and simplify compliance with multiple regulatory and industry mandates including PCI DSS, SOX, GLBA, and HIPAA. This Webinar provides auditor expectations for database logging, security assessments, controls and policies, monitoring, auditing, and policy enforcement and reporting. A demonstration illustrates the challenges and shows how to meet the top 5 requirements.
Presenters: Amichai Shulman, CTO

Tags: ADC, Top Database Audit Requirements, Compliance, Database Audit, Web Application Security, Database Security

Play Webinar  
SQL Injection – Still the #1 Threat
May 16, 2007

SQL Injection – Still the #1 Threat


SQL Injection attacks have been around for a while, yet given the variety of attacks under this classification and the fact that many businesses are not adequately protected, SQL Injection attacks are still the #1 way-in for data thieves. According to a panel of experts at the recent Electronic Transaction Association (ETA) conference, 100% of data heists include a SQL Injection attempt – and over 50% of successful attacks are due to SQL Injection.

This educational Webinar provides the latest information on SQL Injection attacks. And demonstrates new, clever ways data hustlers are using your applications and your stored procedures to grab financial and customer data. Some businesses are relying on stored procedures and black lists to defend against SQL Injection attacks – Learn why these tactics provide insufficient database protection.
Presenters: Mark Kraynak, Director of Product Marketing

Tags: SQL Injection, Web Application Security, Database Security

Play Webinar  
Database Communication Protocol Attacks
April 18, 2007

Database Communication Protocol Attacks


Database servers are vulnerable to attack from a new vector – database communication protocols. These proprietary protocols are used to exchange data and commands between client software and database servers. Many pre-date the Internet. Vendors develop the protocols to be backwards compatible, but this compounds their vulnerability to attack.

Amichai Shulman, CTO will delve into database communication protocols and explain how these vulnerabilities continue to proliferate. He will highlight ADC research and testing and demonstrate examples of attacks. He will also present methods you can use to protect your databases and mitigate your risk from this new class of attack.
Presenters: Amichai Shulman, CTO

Tags: ADC, Database Communication Protocol Attacks, Web Application Security, Database Security

Play Webinar  

Taking the Risk Out of Web 2.0
March 14, 2007

Taking the Risk Out of Web 2.0


Without effective security, Rich Internet Applications (Flash, AJAX), Syndication (RSS, mash-ups), and Collaboration (social networks, Wikis, blogs) can expose your business and your customers to undue risk. In the Webinar, Amichai Shulman presents:
  • Attack demonstrations
  • In-depth insight into Web 2.0 technologies, and
  • Specific defense strategies to secure Web 2.0 frameworks
Presenters: Amichai Shulman, CTO

Tags: ADC, Web 2.0 Risks, Web Application Security, Database Security

Play Webinar  
Best Practices in Database Assessment
January 31, 2007

Best Practices in Database Assessment


Risk assessment of database systems is a crucial first step in data security and regulatory compliance. Watch noted expert Amichai Shulman as he shares best practices for database assessment and demonstrates practical assessment techniques and tools that enhance security and satisfy IT auditors.
Presenters: Amichai Shulman, CTO

Tags: ADC, Database Assessment, Database Audit, Web Application Security, Database Security

Play Webinar  
Database Auditing - What the Auditors Want
December 6, 2006

Database Auditing - What the Auditors Want


In today's increasingly regulated environment, corporate auditors are demanding audit logging for mission critical applications, especially SAP, Oracle Financials, and other web-based applications. While the urgency is clear, the specific requirements are often not clear. This webinar lays out the key requirements that auditors have for database auditing and discusses alternative means of meeting those requirements.
Presenters: Amichai Shulman, CTO

Tags: ADC, Database Audit, Compliance, Web Application Security, Database Security

Play Webinar  
Top 10 Database Hacks and How to Stop Them
September 27, 2006

Top 10 Database Hacks and How to Stop Them


Corporate databases contain the crown jewels of an organization, which means a break-in, by insiders or outsiders, can cost millions in fines, lawsuits, and customer attrition. The good news is there are 10 commonly used methods to attack databases. Defend against these, and your databases will be virtually impenetrable.
Presenters: Amichai Shulman, CTO

Tags: ADC, Top Database Hacks, Web Application Security, Database Security

Play Webinar  
Implications of New Payment Card Industry 1.1 Standard
September 18, 2006

Implications of New Payment Card Industry 1.1 Standard


Evaluate the options and time/cost tradeoffs in becoming PCI 1.1 compliant. Accelerate your PCI 1.1 understanding and begin planning your options for meeting these new requirements.

Industry recognized expert and Director of the Application Defense Center research organization, Amichai Shulman shares his in-depth knowledge of the PCI standard and its new compliance rules. This webinar discusses new specifications for protecting Web-facing credit card applications from application attacks and options for securing stored cardholder data.
Presenters: Amichai Shulman, CTO

Tags: ADC, PCI, Compliance, Web Application Security, Database Security

Play Webinar  

Anatomy of a Database Attack
July 27, 2006

Anatomy of a Database Attack


SQL Injection, platform vulnerabilities, buffer overflows...How do you know whether your database is secure? This presentation will trace the steps involved in breaking into a database including gaining initial access, taking control of the database, and ultimately compromising the sensitive data.
Presenters: Amichai Shulman, CTO

Tags: ADC, Anatomy of a Database Attack, Web Application Security, Database Security

Play Webinar  
Scaling Web and Database Security for Mission Critical Applications
May 30, 2006

Scaling Web and Database Security for Mission Critical Applications


This session examines critical topics in web and database security. Plus, find out how you can provide the virtualization of web and database security applications as a security service layer across the most critical assets of your network -- using a single Unified Threat Management (UTM) architecture.
Presenters: Amichai Shulman, CTO, Imperva | Chris Hoff, Chief Security Strategist, Crossbeam

Tags: ADC, Partner, Mission Critical Applications, Web Application Security, Database Security

Play Webinar  
Top 5 On-line Identity Theft Attacks and How to Stop Them
March 29, 2006

Top 5 On-line Identity Theft Attacks and How to Stop Them


When digital thieves impersonate authorized users, everyone loses. On-line identity theft by insiders and outsiders can cost millions in fraud, fines, lawsuits, and customer attrition. Unfortunately, even sophisticated solutions, such as two-factor authorization, can be fooled by digital identity theft attacks. The good news is there are 5 commonly used methods for on-line identity theft. Defend against these, and you will have greatly increased the security of your on-line web application.
Presenters: Amichai Shulman, CTO

Tags: ADC, Top Online Identity Theft Attacks, Web Application Security, Database Security

Play Webinar  
Prove It! Compliance and Data Security in a Regulatory Environment
February 22, 2006

Prove It! Compliance and Data Security in a Regulatory Environment


In today's environment, just complying with data security requirements is no longer sufficient. IT departments must also demonstrate in a document-able fashion that they are compliant and that they have taken the necessary steps to safeguard privacy and financial information. This webinar reviews the data security requirements imposed and implied by the leading regulatory mandates such as PCI, HIPAA, and Sarbox. The talk also presents the relative advantages of different approaches to building a security architecture that provides the audit and reporting data needed to comply with regulatory requirements across a wide range of industries.
Presenters: Amichai Shulman, CTO

Tags: ADC, Compliance, Web Application Security, Database Security

Play Webinar  
Note: All webinars are approximately 60 minutes in length.