For many organisations SharePoint has become the tool of choice for content management because it enhances internal collaboration and can be accessed from any location. And in today's landscape of mobile communication, that's a great advantage. The downside is that this flexible approach to remote access, in conjunction with unique SharePoint security threats, can expose applications and data to attack.
As with any Web application, organisations should consider the security risks before deploying SharePoint. SharePoint applications often contain sensitive and confidential data. With valuable information at risk, SharePoint becomes both a top security concern for businesses and an attractive target for hackers.
If you already rely on Microsoft SharePoint ...
then you may be aware that there's been a number of high-profile application vulnerabilities disclosed. Examples include XSS, remote code execution, spoofing, script insertion and Denial of Service. As with any off the shelf Web app, when vulnerabilities are discovered in SharePoint, you'll need to wait until Microsoft issues a patch. With no access to the code, organisations have direct means of fixing any such vulnerability.
Imperva SecureSphere technology allows for the discovery, monitoring and protection of SharePoint implementations.
The SecureSphere Web Application Firewall includes unique features for SharePoint such as profile consolidation and application-specific attack detection. Furthermore SecureSphere database and file tools extend this security to data stored both in Microsoft SQL databases and in fileservers/storage.
To protect SharePoint applications and data, organizations should:
- Discover all SharePoint instances on their network
- Protect Web applications against attacks and unauthorized access
- Mitigate SharePoint application vulnerabilities
- Audit and protect SharePoint data stored in Microsoft SQL databases (structured data)
- Audit and protect SharePoint data stored in fileservers and network storage (unstructured data)
- Analyse security events and trends in clear, business-relevant reports
To discover more about how Imperva SecureSphere can secure your SharePoint environment from all angles simply contact CoreSight via the contact details to your right, or at our request page.
You can also download a datasheet (new window, no registration required)
- SAP NetWeaver Vulnerability - Fix or Secure?...
The recent disclosure that thousands of Internet-facing SAP NetWeaver implementations are vulnerable to severe compromises will no doubt send some admins scurry... - Imperva Q1 2011 Web Application Attack Report...
Imperva's most recent report on web application attacks found that on average these applications were attacked around 27 times per hour. Across the Internet be... - Imperva...
Protecting the Data that Drives Your Business Imperva's SecureSphere technologies enable a complete security and compliance solution for sensitive data. This ... - Imperva Launches Hacker Intelligence Initiative...
Two New Hacking Schemes Uncovered Using Surveillance & Hack-Back Techniques Leading data security specialist, Imperva, recently announced a research effort... - Imperva SecureSphere Database Activity Monitoring...
Visibility into Database Usage The SecureSphere Database Activity Monitoring (DAM) delivers automated and scalable activity monitoring, auditing, and reporting...
