Imperva CounterBreach Uses Machine Learning to Protect Against Insider Threats

New Solution Designed to Protect Global Organizations From Rising Tide of Data Theft and Loss Due to Compromised, Malicious and Careless Users

REDWOOD SHORES, Calif., Nov. 17, 2015 (GLOBE NEWSWIRE) -- Imperva, Inc., (NYSE:IMPV), committed to protecting business-critical data and applications in the cloud and on-premises, today announced Imperva CounterBreach, a new multi-layered security solution that protects enterprise data from theft and loss due to compromised, malicious and careless users. CounterBreach uses machine learning to analyze how users access data in order to spotlight dangerous data access and use. CounterBreach complements machine learning with non-invasive deception technology to identify compromised end-point devices. By dynamically learning normal data access patterns and then finding anomalies, CounterBreach proactively alerts IT teams to dangerous behavior.  

According to the 2015 Verizon Breach report, over 45 percent of enterprise data breaches resulted from malicious or compromised inside users, and it is well understood that trusted internal users are typically the weakest link in any enterprise security posture. Enterprises must manage insider threats that originate from:

  • compromised users whose credentials are stolen, or who unknowingly introduce malware into the enterprise
  • malicious users who deliberately steal or destroy corporate assets; and
  • careless users who inadvertently put sensitive data at risk.

To address insider risk, CounterBreach provides a multi-layered solution that:

  • provides direct visibility into which users access what data, giving IT organizations insight into the ‘who,’ ‘what’ and ‘when’ of access to sensitive information;
  • combines Imperva expertise in monitoring and protecting data with advanced machine learning to spotlight dangerous user data access activity; and
  • applies non-invasive deception techniques to identify compromised end-points.

“Cyber criminals are ultimately after data, and are adept at exploiting people to get to it. CounterBreach, identifies dangerous and anomalous data access activity and traces it back to the associated insider,” said Amichai Shulman, Co-Founder and Chief Technology Officer at Imperva. “It combines machine learning on users and their actual data access patterns with the use of deception technology to identify risky user behavior. With this insight, security teams are able to identify and contain potential data leaks before they become major events.”

CounterBreach is currently undergoing validation testing. See the blog for findings to date. To receive updates on CounterBreach, or to enroll in the next beta cycle, please visit The solution will be available in Q1 2016.

About Imperva

Imperva® (NYSE:IMPV), is a leading provider of cyber security solutions that protect business-critical data and applications. The company’s SecureSphere, Incapsula and Skyfence product lines enable organizations to discover assets and risks, protect information wherever it lives – in the cloud and on-premises – and comply with regulations. The Imperva Application Defense Center, a research team comprised of some of the world’s leading experts in data and application security, continually enhances Imperva products with up-to-the-minute threat intelligence, and publishes reports that provide insight and guidance on the latest threats and how to mitigate them. Imperva is headquartered in Redwood Shores, California. Learn more:, our blog, on Twitter.

Forward Looking Statements

This press release contains forward-looking statements about the availability of CounterBreach. These forward-looking statements are subject to material risks and uncertainties that may cause actual results to differ substantially from expectations. Investors should consider important risk factors, which include: the risk that Imperva may not timely introduce new products or versions of its products and that they may not be accepted by the market; the risk that existing customers may focus their additional cyber security spending on other technologies or addressing other risks; and other risks detailed under the caption "Risk Factors" in the company's Form 10-Q filed with the Securities and Exchange Commission, or the SEC, on November 5, 2015 and the company's other SEC filings. You can obtain copies of the company's SEC filings on the SEC's website at  Any forward-looking statement made by the company speaks only as of the date on which it is made. The company is under no obligation to, and expressly disclaims any obligation to, update or alter its forward-looking statements, whether as a result of new information, subsequent events or otherwise.

© 2015 Imperva, Inc. All rights reserved. Imperva, the Imperva logo, CounterBreach, SecureSphere, Incapsula and Skyfence are trademarks of Imperva, Inc. and its subsidiaries.   


Contact Data