SecureSphere Database Security Gateway Detects and Blocks Attempts to Exploit Vulnerable Applications; Enables Controlled Patch Rollout
FOSTER CITY, Calif. Nov. 1, 2005 – Imperva™, the leader in data layer security, today announced the latest SecureSphere Security Update for its SecureSphere™ Database Security Gateway. SecureSphere automatically downloads and installs these regularly scheduled updates to ensure the most current protection is continuously enforced. This new update includes protection for unpatched Oracle databases against the remote exploit vulnerabilities disclosed on October 19. SecureSphere secures production Oracle database applications against attack and data theft, allowing IT departments to properly test and deploy the required patches in a controlled fashion.
“When deploying critical security patches on databases, organizations are faced with two equally risky options: test before you deploy and leave sensitive data vulnerable to attack, or deploy without testing and risk unplanned downtime,” said Amichai Shulman, CTO of Imperva. “By protecting unpatched databases, SecureSphere eliminates this either-or scenario and provides IT departments the ability to properly test patches without exposing their data to well documented exploits.”
The patches released on October 19 are part of Oracle’s quarterly security update program, and affect versions of its database software from 8i onwards. Several vulnerabilities in its database server software are ranked as critical because they are easy to exploit and threaten the confidentiality, integrity or availability of information stored in databases. The October 31st SecureSphere Security Update protects Oracle DBMS platforms and database applications without any changes to the database or database server.
Pricing and Availability
The October 31st SecureSphere Security Update is available immediately at no cost to all Imperva customers.
About SecureSphere
Imperva SecureSphere award-winning products deliver activity monitoring, audit and security for business applications and databases. SecureSphere products offer proven, automated capabilities for achieving, maintaining and documenting regulatory compliance. SecureSphere is the industry’s only complete business-critical data security and compliance solution that provides full visibility into data usage by the end-user, through the application and into the database. Automated feeds from the security and compliance experts at the Imperva Application Defense Center (ADC) ensure that SecureSphere is always armed with the latest defenses against new threats, and the most recent regulatory compliance best practices.
About Imperva
Imperva is the leader in application data security and compliance. Leading enterprise and government organizations worldwide rely on Imperva to prevent data theft and abuse, and ensure data integrity. The company’s SecureSphere products provide data governance and protection solutions that monitor, audit and secure business applications and databases. For more information, visit www.imperva.com
# # #
Imperva and SecureSphere are trademarks of Imperva, Inc. All other brand or product names are trademarks or registered trademarks of their respective holders.
Editorial Contact
Marc Gendron
(781) 237-0341
marc@mqpr.net