New Solution Empowers Organizations to Combat the Growing Insider Threat Problem

REDWOOD SHORES, Calif., March 31, 2016 (GLOBE NEWSWIRE) — Imperva, Inc. (NYSE:IMPV), committed to protecting business-critical data and applications in the cloud and on-premises, today announced the general availability of Imperva CounterBreach. The solution applies advanced behavioral analysis and deception technology to identify and help contain insider threats. By isolating insider threat incidents from the sea of data access anomalies that occur every day, CounterBreach enables IT organizations to prioritize and focus on the incidents that ultimately lead to large-scale data breaches. In a related announcement, the Imperva March Hacker Intelligence Initiative Report, published today by the Imperva Defense Center, provides an in-depth analysis of insider threat incidents detected by CounterBreach in live production environments.

To identify malicious, compromised and careless insiders, organizations need to have visibility into who is accessing enterprise data, understand if that access is legitimate and respond immediately if it is not. CounterBreach combines machine learning-based behavioral analysis and deception technology to make such identifications. Behavioral analysis baselines typical user actions and data access, and identifies risky actions that are outside of the norm. Deception technology identifies anomalies indicative of compromised end-points and user credentials.  This multi-layered approach enables security teams to detect critical anomalies in the access and use of enterprise data with a high degree of accuracy, significantly reducing false positives. This saves time, enabling IT to focus only on the most critical incidents.

Tested in live production environments, CounterBreach flagged insider threat incidents in 100 percent of these deployments. Examples included a database administrator abusing his rights as a privileged user to retrieve an unusually high number of financial records from a PeopleSoft application, and a careless user who was unintentionally backing up sensitive enterprise data to a personal cloud storage service. CounterBreach quickly pinpointed the insider threat, enabling each IT organization to take immediate action and stop the threat in its tracks.

CounterBreach integrates with Imperva SecureSphere database and file security solutions and Imperva Skyfence cloud access security broker to pinpoint critical anomalies that indicate misuse of enterprise data across databases, file servers and cloud apps.

“The biggest threats to enterprise security are the people already on the payroll,” said Amichai Shulman, Co-founder and CTO of Imperva. “To do their jobs, employees, contractors, consultants and vendors must have legitimate access to sensitive and valuable data stored in enterprise databases, file shares and SaaS applications. However, when insiders abuse this access, or when insiders are exploited by outside attackers, enterprise data is exposed. Detection and containment of insider threats requires an expert understanding of both users and how they use enterprise data.”

More information about CounterBreach is available here.

To access the March Hacker Intelligence Initiative Report: “Insiders: The Threat is Already Within,” please visit here.

Forward Looking Statements

This press release contains forward-looking statements about the growing opportunity for cyber security products. These forward-looking statements are subject to material risks and uncertainties that may cause actual results to differ substantially from expectations. Investors should consider important risk factors, including but not limited to: the risk that demand for the company’s cyber security solutions may not increase or may decrease, including as a result of global macroeconomic conditions and other economic conditions that may reduce enterprise software or security spending generally; the risk that the security markets that Imperva addresses may not grow as anticipated; the risk that competitors may be perceived by customers to offer greater value or be better positioned to help handle cyber security threats and protect their businesses from major risk; the risk that existing customers may focus their additional cyber security spending on other technologies or addressing other risks; the risk that the company’s growth may be lower than anticipated; and other risks detailed under the caption “Risk Factors” in the company’s Form 10-K filed with the Securities and Exchange Commission, or the SEC, on February 26, 2016 and the company’s other SEC filings. You can obtain copies of the company’s SEC filings on the SEC’s website at www.sec.gov. Any forward-looking statement made by the company speaks only as of the date on which it is made. The company is under no obligation to, and expressly disclaims any obligation to, update or alter its forward-looking statements, whether as a result of new information, subsequent events or otherwise.

About Imperva

Imperva® (NYSE:IMPV) is a leading provider of cyber security solutions that protect business-critical data and applications. The company’s SecureSphere, CounterBreach, Incapsula and Skyfence product lines enable organizations to discover assets and risks, protect information wherever it lives – in the cloud and on-premises – and comply with regulations. The Imperva Defense Center, a research team comprised of some of the world’s leading experts in data and application security, continually enhances Imperva products with up-to-the-minute threat intelligence, and publishes reports that provide insight and guidance on the latest threats and how to mitigate them. Imperva is headquartered in Redwood Shores, California. Learn more: www.imperva.com, our blog, on Twitter.

© 2016 Imperva, Inc. All rights reserved. Imperva, the Imperva logo, SecureSphere, CounterBreach, Incapsula and Skyfence are trademarks of Imperva, Inc. and its subsidiaries.

EDITORIAL CONTACTS: Winifred Shum Imperva winifred.shum@imperva.com Eskenzi PR imperva@eskenzipr.com

Primary Logo

Imperva Inc.