Imperva, the well-known California-based web application security company, has announced that it has suffered a “security incident” involving its Cloud Web Application Firewall (WAF) product, formerly known as Incapsula.
What happened?
The announcement is very light on details and (perhaps intentionally) vaguely worded, but these are the currently known facts:
On August 20, 2019, a third party notified Imperva of data exposure impacting some of their customers
Imperva’s initial investigation discovered that parts of its Incapsula customer database were exposed, including email addresses, hashed and salted passwords, API keys and customer-provided SSL certificates of a “subset” of Incapsula customers (up until September 15, 2017)
The investigation is ongoing, they’ve called in outside forensic experts, notified the appropriate global regulatory agencies, and have begun informing impacted customers and advising them on what to do.
The company chos ..
Support the originator by clicking the read the rest link below.
