Imperva: Top Ten Database Threats
February 2011 by Imperva
How to Mitigate the Most Significant Database Vulnerabilities
White Paper
The enterprise database infrastructure is subject to an overwhelming range of
threats. This document is intended to help organizations deal with the most critical of
those threats by providing a list of the top ten as identified by Imperva’s Application
Defense Center. For each threat, the paper describes background information,
general risk mitigation strategies, and the database protection provided by Imperva
SecureSphere Database Security Solutions.
Top Ten Database Security Threats
1. Excessive Privilege Abuse
2. Legitimate Privilege Abuse
3. Privilege Elevation
4. Exploitation of vulnerable, mis-configured databases
5. SQL Injection
6. Weak Audit Trail
7. Denial of Service
8. Database Communication Protocol Vulnerabilities
9. Unauthorized copies of sensitive data
10. Backup Data Exposure
By addressing these top ten threats, organizations will meet global compliance
requirements and industry best practices related to data protection and
risk mitigation.
The file of the Top 10: