ThreatRadar Reputation Services

ThreatRadar Reputation Services enable you to stop large-scale, automated attacks and prevent hackers from infiltrating your site. ThreatRadar deflects known malicious sources, anonymous proxies, phishing URLs, and requests from suspicious countries to keep your applications safe. User reputation information from ThreatRadar lets you free-up application infrastructure, maximize website uptime, and protect your intellectual property. Learn More

ThreatRadar Community Defense

Your organization faces a never-ending battle against hackers. Without the latest defenses, hackers can infiltrate your website and steal sensitive data, causing brand damage and lost revenue. ThreatRadar Community Defense safeguards your website and lets you stay ahead of the attackers, by gathering attack data from SecureSphere deployments around the world and translating that data into security policies. Learn More

ThreatRadar Bot Protection Services

Over half of all your Website users are not human, they're bots. And malicious bots account for more than 95% of all website attacks, including participating in DDoS attacks, injecting comment spam, and scraping website content. ThreatRadar Bot Protection Services accurately distinguishes between good bots, bad bots and human users, and provides granular information enabling SecureSphere Web Application Firewall to stop the malicious ones before they can attack your web application. Learn More

ThreatRadar Fraud Prevention

Accelerate your web fraud security deployments and easily manage your fraud policies from the SecureSphere web user interface, without impacting your web applications. ThreatRadar Fraud Prevention integrates with leading web fraud solutions to transparently identify and prevent fraudulent activity. Learn More

ThreatRadar Reputation Services

TRACK ATTACK SOURCES ON A GLOBAL SCALE TO AVOID COSTLY BREACHE

ThreatRadar stops known attack sources, thereby reducing the likelihood and financial impact that a website breach could have on your organization. To hide their identity, hackers launch attacks from anonymous proxies, Tor networks, and compromised hosts. ThreatRadar tracks anonymizing services and sources actively attacking other sites. Based on that data, SecureSphere can block malicious IP addresses before they can even access your site.

MONITOR OR RESTRICT ACCESS FROM OBJECTIONABLE COUNTRIES

You can prevent financially devastating attacks and achieve export compliance with ThreatRadar. Equipped with geolocation data from ThreatRadar, you can stop attacks originating from a specific region in the world and meet export compliance by blocking user from prohibited countries. ThreatRadar Reputation Services provides validated feeds of geolocation data from a leading commercial provider of IP geolocation data.

REDUCE COSTLY FRAUD AND IDENTITY THEFT BY STOPPING PHISHING ATTACKS

You can reduce fraud losses caused by phishing attacks. ThreatRadar enables you to track web visitors referred to your site by phishing sites. Real-time alerting on phishing incidents identifies potential phishing victims. Armed with this information, you can pro-actively lock victims' accounts or reset their passwords. With comprehensive and current lists of phishing URLs provided by Cyveillance, ThreatRadar reduces fraud and improves customer satisfaction.

STAY UP-TO-DATE WITH CONTINUOUS, AUTOMATED SECURITY FEEDS

ThreatRadar Reputation Services provides integrated attack source feeds to all ThreatRadar-powered SecureSphere Web Application Firewalls in near real time so that you can protect your organization and your reputation. Imperva continuously updates ThreatRadar reputation data, ensuring that IP addresses and phishing URL information is always current. Frequent updates improve the accuracy and timeliness of the reputation feeds.

STREAMLINE FORENSICS WITH REPUTATION AND GEOLOCATION DATA

Webapp Firewall Addon

You will be able to take the guesswork out of event analysis with ThreatRadar. If you know that users are accessing your site from an unusual country or cloaking their identity, you gain additional context on suspicious activity. This enables accurate incident response and speeds up forensics analyses, enabling you to reduce operations costs.

ThreatRadar Community Defense

STRENGTHEN THREATRADAR REPUTATION SERVICES WITH COMMUNITY INSIGHT

Webapp Firewall Addon

ThreatRadar Community Defense protects your website from damaging attacks by harnessing the collective insight of Imperva SecureSphere deployments around the world. It builds on the early warning provided by ThreatRadar Reputation Services with threat intelligence from Web Application Firewalls on the frontlines of attack. This arms your organization with defenses against attackers specifically targeting Web applications, so they can be blocked before they can do damage.

PREVENT NEVER-BEFORE-SEEN ATTACKS WITH PATENT-PENDING DEFENSES

Webapp Firewall Addon

With ThreatRadar Community Defense, you can prevent total web server takeover, defacement, and data theft by stopping zero-day attacks. This service uses patent-pending technology to gather suspicious Web requests, validate that those requests are attacks, and then transform identified attacks into signatures. With Community Defense, you can block dangerous threats like zero-day Remote File Inclusion (RFI) attacks without blocking your customers and partners.

DEFLECT ATTACKS FROM MALICIOUS SCANNERS AND SQL INJECTION ATTACK SOURCES

With ThreatRadar Community Defense, you will be able to drastically lower the risk of a data breach by blocking users that repeatedly scan and attack websites. Hackers don't just target one site, they probe and attack many sites. In fact, 48% of SQL injection attacks originate from users that attacked multiple sites or performed multiple attacks. Community Defense identifies the sources that have scanned or attacked two or more websites, keeping your applications secure.

SECURELY SHARE DATA TO BOLSTER YOUR APPLICATION DEFENSES

Webapp Firewall Addon

ThreatRadar Community Defense improves the attack-stopping power of SecureSphere by identifying zero-day web attacks and attack sources. Since security is your top priority, we've gone to great lengths to ensure the confidentiality of data we collect. To that end, SecureSphere automatically removes all private, customer-specific content before sending data to the ThreatRadar cloud, ensuring ThreatRadar Community Defense feeds are secure and anonymous.

ThreatRadar customers that share their attack data receive ThreatRadar Community Defense feeds free of charge.

ThreatRadar Bot Protection Services

PROTECTS YOU AGAINST ALL BOT ATTACKS, NOT JUST KNOWN ONES

ThreatRadar Bot Protection Services is an add-on service for the renowned Imperva SecureSphere Web Application Firewall. Its client classification engine analyzes and classifies all incoming traffic to your site, and distinguishes between human and bot traffic. It also identifies "good" and "bad" bots, classifies traffic by browser type, and more. This granular level of information is then used to drive SecureSphere policy enforcement decisions, like handling bad and suspected bots. For example you can choose to have administrators receive an alert (e.g., for monitoring purposes) or have SecureSphere block the bot altogether, or select from a myriad of other powerful options.

A CONSTANTLY-LEARNING DEFENSE TO STAY AHEAD OF THE BAD PLAYERS

Prior to ThreatRadar Bot Protection Services, bot protection products have typically been very basic. They can only react, they cannot learn. They therefore are not very comprehensive and require considerable upfront work to try to anticipate threats. In contrast, ThreatRadar Bot Protection actually observes behaviors and remembers bad players, so it can actively stop attackers before they impact your web app. It can also quickly identify threats it's never even seen before leveraging a unique Client Classification Engine built upon experience classifying bots on tens of thousands of sites for multiple years.

INTEGRAL PART OF A CUTTING EDGE WEB DEFENSE SYSTEM

Webapp Firewall Addon

ThreatRadar Bot Protection is directly integrated with SecureSphere, resulting in an industry-leading overarching security solution - it actually improves the functionality of SecureSphere. No need to implement, maintain and tweak multiple point solutions. And ThreatRadar Bot Protection is easy to set up and unobtrusive, unlike products that attempt to address bots by shape-shifting the structure of the webpage itself, an approach that is extremely intrusive because it morphs all of the traffic, and very manually intensive due to heavy upfront whitelisting requirements.

DEDICATED SECURITY RULES FOR KNOWN VULNERABILITIES, AND DETAILED THREAT ANALYSIS

Imperva monitors hacker activity, hacker communications and zero day exploits in order to make sure that websites using our Bot Protection Services are protected. And ThreatRadar Bot Protection Services provides a detailed analysis of every threat that was posed to your website including: IP address, user agent, location, and other session information.

ThreatRadar Fraud Prevention

LEVERAGE BEST-OF-BREED TECHNOLOGY FROM THREATMETRIX, IOVATION, AND TRUSTEER

Webapp Firewall Addon

You can reduce fraud remediation costs, streamline fraud investigations, and maintain customer loyalty with ThreatRadar Fraud Prevention. By integrating with leading fraud security solutions from ThreatMetrix, Trusteer, and iovation, ThreatRadar Fraud Prevention offers best-in-class protection against online fraud. As an add-on to the SecureSphere Web Application Firewall, this service provides a fast, operationally efficient way to reduce fraud.

CENTRALLY MANAGE FRAUD AND WEB SECURITY POLICIES

With ThreatRadar Fraud Prevention, you can combine web application security and fraud detection policies together to stop fraud with pinpoint precision. For example, you can define different outcomes based on fraud risk as well as web attack history, browser agent, and IP reputation. By correlating web security violations with fraud risk, you can improve your detection accuracy, lowering investigation costs and ensuring no fraud events go undetected.

PROVISION WEB FRAUD PREVENTION IN MINUTES

You will be able to roll out fraud protection quickly and cost effectively with ThreatRadar Fraud Prevention. As an add-on to SecureSphere, this service allows you to implement fraud protection without updating your web applications. By accelerating deployment, you will reduce the window of exposure compared to manually integrating fraud protection with web applications.

REDUCE TOTAL COST OF OWNERSHIP

Avoid costly development expenses and schedule disruptions by deploying and managing fraud protection from your web application firewall. In addition, ThreatRadar Fraud Prevention allows you to protect packaged applications and legacy applicationsóWeb applications that may not support manual code changes. ThreatRadar Fraud Prevention eliminates the need to manually add fraud detection code to Web applications, lowering operational expenses.

ACTIVE ENFORCEMENT OF WEB FRAUD POLICIES

Webapp Firewall Addon

ThreatRadar transforms fraud detection into fraud prevention, enabling organizations like yours to stop fraudulent activity, lock compromised accounts, or open a fraud investigation case. Using the intuitive Web-based security policies in SecureSphere, organizations can redirect compromised users to a custom error page, generate a ticket in a ticketing system, or track the incident in a log management system.

ENSURE YOUR FRAUD PROTECTION IS UP-TO-DATE

Imperva promptly incorporates the latest updates and APIs from its fraud prevention partners into the ThreatRadar Fraud Prevention service. This enables Imperva customers to take advantage of new fraud prevention features quickly, rather than waiting for developers to manually update application code. That keeps organizations and their applications protected as fraudsters' tactics evolve.

FAST TRACK FRAUD INVESTIGATIONS WITH DETAILED ALERTS AND REPORTS

Webapp Firewall Addon

With SecureSphere, you can build detailed reports of fraudulent activity as well as executive-level, summary reports. Its security alerts capture full event detail for forensics analysis. Leveraging the monitoring and reporting capabilities of SecureSphere, you can quickly assess fraud risks and investigate fraudulent activity, enhancing incident response.

  • ThreatRadar Reputation Services Datasheet
    Download Datasheet
  • ThreatRadar Feed: Malicious Scanner Datasheet
    Download Datasheet
  • The Future of Web Security:
    10 Things Every Web Application Firewall Should Provide White Paper
    Learn More
  • The Industrialization of Hacking White Paper
    Learn More
  • Web Attack Survival Guide White Paper
    Learn More