Imperva is notifying some of its Cloud Web Application Firewall customers about a “security incident” that exposed certain data. CEO Chris Hylen did not disclose many details about the security incident. A database that included email addresses as well as hashed and salted passwords for some Cloud WAF customers was exposed on Aug. 20. A subset of Imperva customers also had their API keys and customer-provided SSL certificates exposed. The company has implemented forced password rotations and 90-day expirations in its product.”]
Source: https://www.cuinfosecurity.com/imperva-alerts-customers-about-security-incident-a-12990