Security News
The 10 Most Controversial Companies Of 2019
Steven Burke
Whether it was a security vendor hit by hackers, whistleblower accusations of hiding damaging figures or a major channel policy change that raised the ire of partners, 2019 was a year filled with controversial companies. Here’s our list of the top 10 most controversial.
10. Imperva
A security breach is never good news, but it is particularly troubling when the company being hit by hackers is a cybersecurity company.
That’s what happened when Imperva informed customers that a data breach revealed email addresses, hashed passwords, API keys and SSL certificates for some Web Application Firewall (WAF) users.
The Redwood Shores, Calif.-based cybersecurity vendor learned of the breach Aug. 20, 2019, and said it affected a portion of its Incapsula Cloud WAF customers who had accounts through Sept. 15, 2017.
A subset of Incapsula users through Sept. 15, 2017, had their API keys and customer-provided SSL certificates exposed, according to Imperva. In addition, Imperva said email addresses as well as hashed and salted passwords in the Incapsula customer database were also revealed
Imperva said it informed all affected customers directly and shared the steps the company was taking to safeguard their accounts and data. In addition, the company said it implemented forced password rotations and 90-day expirations for its Cloud WAF product.
Nine weeks after the breach, Imperva confirmed that CEO Chris Hylen had resigned. Hylen had joined Imperva as president and CEO in August 2017 following nearly four years overseeing Citrix Systems’ mobility practice, and spearheaded publicly traded Imperva’s $2.1 billion sale to private equity giant Thoma Bravo in January 2019.
