Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Application Security

Imperva Releases Cloud-based Web Application Firewall Service for Mid-Sized Businesses

Imperva, a provider of data security solutions, today announced a cloud-based Web Application Firewall service targeted toward small to mid-enterprise businesses looking to achieve PCI compliance, prevent blacklisting, protect against Web application attacks and improve Website performance.

Imperva, a provider of data security solutions, today announced a cloud-based Web Application Firewall service targeted toward small to mid-enterprise businesses looking to achieve PCI compliance, prevent blacklisting, protect against Web application attacks and improve Website performance.

The Imperva Cloud WAF, powered by Incapsula, is a managed Web Application Firewall service operated by Imperva’s security team provide continuous monitoring and policy tuning, reducing business overhead costs while improving their overall security posture. (Incapsula was spun out from and is financially backed by Imperva)

As the Verizon 2011 Data Breach Investigations Report notes, hackers have been actively targeting small to mid-enterprise organizations with standardized, automated attacks because these businesses have fewer protections. Imperva Cloud WAF helps businesses maintain PCI DSS section 6.6 compliance, something required for organizations utilizing Web applications that process card payments.

Imperva Cloud WAF shields Websites and online applications from threats while permitting legitimate traffic. Leveraging Incapsula’s technology, Imperva Cloud WAF protects against current and emerging threats including SQL Injection, Cross-site Scripting (XSS), illegal resource access, malicious bots, and other Open Web Application Security Project (OWASP) Top-10 threats. Imperva Cloud WAF can potentially increase Website performance with cloud-based caching that can reduce Web page load time, server workload, and Website bandwidth consumption.

Related Resource: Understanding Web Application Security – Defending the Enterprise’s New Porous Perimeter

The Imperva Cloud WAF is provisioned by changing an organizations DNS setting for the site hosting the web application that it’s looking to protect. The solution doesn’t require any hardware, software or changes to existing Website code, allowing organizations to deploy the solution in a matter of minutes while maintaining their existing Internet hosting provider and infrastructure.

Available immediately, an Imperva Cloud WAF 1-year subscription at 20Mbps starts at $7,200 and includes Imperva managed security services.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Application Security

Drupal released updates that resolve four vulnerabilities in Drupal core and three plugins.

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.

Application Security

Many developers and security people admit to having experienced a breach effected through compromised API credentials.

Application Security

A new report finds that barely 1% of all SBOMs being generated today meets the “minimum elements” defined by the U.S. government.

Application Security

A security vulnerability identified on AliExpress, the wholesale marketplace owned by the Chinese e-commerce giant Alibaba, could have been exploited by hackers to hijack...

Application Security

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.