• Cloud Call Center - Facebook
  • Cloud Call Center - Twitter
  • Cloud Call Center - LinkedIn
  • Cloud Call Center - Youtube
  • Cloud Call Center - RSS
Cloud Call Center Industry News

TMCNet:  Imperva Report Examines Dangers of Third-Party Code for Cloud Security; Analysis of Yahoo! Breach Highlights SQL Injection; Third-party Code Offers Little Control, High Risk

[January 29, 2013]

Imperva Report Examines Dangers of Third-Party Code for Cloud Security; Analysis of Yahoo! Breach Highlights SQL Injection; Third-party Code Offers Little Control, High Risk

(M2 PressWIRE Via Acquire Media NewsEdge) Redwood Shores, Calif.-- Imperva, Inc. (NYSE: IMPV), a pioneer and leader of a new category of business security solutions for critical applications and high-value data in the data center, today announced its January Hacker Intelligence Initiative Report, "Lessons Learned from the Yahoo! Hack," which examines the dangers of third-party code in cloud computing.


In December 2012, a hacker breached Yahoo! with an SQL injection attack that took advantage of a vulnerability in a third-party application that was provided on the Yahoo! Web site. This attack highlights the risk that many Web applications face: Web applications may contain some sort of third-party code, such as APIs, that was not created by the developers.

"The weak link in the Yahoo! attack was not programmed by Yahoo! developers, nor was it even hosted on the Yahoo! Servers, and yet the company found itself breached as a result of third-party code," said Amichai Shulman, CTO, Imperva. "The challenge presented by the Yahoo! breach is that Web-facing businesses should take responsibility to secure third-party code and cloud-based applications." In "Lessons Learned from the Yahoo! Hack," Imperva recommends specific business and technical steps. From a business standpoint, for example, enterprises should: Put in place legal requirements in a contract for what you will and will not accept from a security perspective. Incorporate security due diligence for any merger or acquisition activity. Technically, Imperva recommends enterprises: Conduct a Web application vulnerability security assessment. A manual review of Web application security or proper use of automated Web application security vulnerability assessment can identify potential vulnerabilities that should be addressed in the software development lifecycle (SDLC). Deploy a Web Application Firewall (WAF). A WAF serves as a security policy enforcement point that prevents vulnerable Web applications from being exploited. To download the full report please visit: http://www.imperva.com/download.asp id=299.

About Imperva Imperva is a pioneer and leader of a new category of business security solutions for critical applications and high-value data in the data center. Imperva's award-winning solutions protect against data theft, insider abuse, and fraud while streamlining regulatory compliance by monitoring and controlling data usage and business transactions across the data center, from storage in a database or on a file server to consumption through applications. With over 2,000 end-user customers in more than 60 countries and thousands of organizations protected through cloud-based deployments, securing your business with Imperva puts you in the company of the world's leading organizations. For more information, visit www.imperva.com, follow us on Twitter or visit our blog. We're hiring! Help us protect the world's data: http://www.imperva.com/go/jobs.

2013 Imperva, Inc. All rights reserved. Imperva and the Imperva logo are trademarks of Imperva, Inc.

Press Contact Darshna Kamani 02071832839 darshna@eskenzipr.com ((M2 Communications disclaims all liability for information provided within M2 PressWIRE. Data supplied by named party/parties. Further information on M2 PressWIRE can be obtained at http://www.presswire.net on the world wide web. Inquiries to info@m2.com)).

(c) 2013 M2 COMMUNICATIONS

[ Back To Cloud Data Center Resource Homepage's Homepage ]

Spotlight

White Paper

A Cloud-Based Approach to Contact Center Modernization

A Cloud-Based Approach to Contact Center Modernization
- Analyst White Paper

Frost & Sullivan cover the benefits associated with moving to a cloud contact center, including cost savings, streamlined management, agility, growth, and more.

Featured Resources

10 Considerations in Moving to a Cloud-Based Contact Center - Ebook

This ebook offers ten key considerations when moving to a cloud-based contact center.

Contact Center Modernization
- Video

Is it time to modernize your contact center? Genesys can help. Customers' expectations have changed, making contact center modernization imperative.

A Cloud-Based Approach to Contact Center Modernization
- Analyst White Paper

Frost & Sullivan cover the benefits associated with moving to a cloud contact center, including cost savings, streamlined management, agility, growth, and more.

Genesys Customer Testimonials - Moving to the Cloud - Video

Why move your contact center to the Cloud? Hear from Genesys customers on what motivated them to choose a cloud contact center.

Genesys Wins the 2014 Cloud Contact Center Award
- Analyst White Paper

Based on findings of this Best Practices research, Frost & Sullivan presented the 2014 Company of the Year Award in Cloud Customer Contact Solutions to Genesys.

Deliver Great CX-While Saving Money with a Cloud Contact Center - Video

Genesys Cloud solutions provide low cost of entry and deliver immediate bottom line results all the while improving your customer experience.

Multi-Channel Customer Experience the Next Battleground
- Analyst White Paper

Frost & Sullivan discuss how a multi-channel contact centers delivers a truly consistent customer experience, regardless of how the client "calls in."

Multi-Channel Customer Experience - Video

Your customers are no longer contacting you by phone only-they want to reach you on their own terms. A multi-channel contact center is needed so you can offer the channels customers prefer.


Cloud Call Center Featured Articles
| Industry News | eNewsletter | RSS Feeds
Technology Marketing Corp. 1997-2014 Copyright. | Ph: (800)-243-6002 (203)-852-6800 Fx: (203)-853-2845 | Contact Us |