prevents confidential database data theft by Hackers, Rogue Insiders, Zero Day Attacks, 3rd Party Cyber Risks, Phishing Email Attacks, Dev Ops Exploits and SQL Injection Attacks. Would have shutdown the Capital One, Equifax and Marriott Hackers immediately. Protects encrypted and unencrypted Informix, MariaDB, MySQL, Oracle, SQL Server and SAP Sybase database confidential data.

- Recent Incidents of Hackers and Rogue Insiders Stealing Confidential Data -

Mega data breaches now cost companies $392 million to recover from.

Cyber Security Firms Data Breaches
Cyber security firms FireEye (due to SolarWinds malware), Imperva, Palo Alto Networks and TrendMicro recently incurred embarrassing data breaches from Hackers and Rogue Insiders. In April, 2020 a cybersecurity researcher disclosed 4 Zero-Day bugs in IBM's Enterprise Security Software. Protecting confidential database data is much more than securing the network perimeter against Hackers, Rogue Insiders and Zero Day Attacks.
Oracle E-Business Suite Flaws Allows Hackers to Hijack Business Operations
June, 2020. Only 50% of Oracle EBS customers have deployed January, 2020 security patches. Hackers can launch Zero Day Attacks at EBS General Ledger to steal company cash and modify accounting tables without leaving a trace.
SAP's 18 Security Fixes for Sybase
May, 2020. Sybase ASE is used by SAP products and 30,000 organizations worldwide. 90% of the top 50 banks and security firms use ASE. 4 of the 18 security fixes had a CVSS 8+ score. One fix allowed any user of a database regardless of their permission to gain Administrator access to the entire database.
Hackers Install Secret Backdoor on Thousands of Microsoft SQL Servers
April, 2020. Researchers uncovered a malicious campaign dating back to May 2018 that targets Windows machines running MS-SQL servers to deploy backdoors and other malware, including remote access tools and cryptominers.
GoDaddy Took Seven Months to Discover Data Breach
May, 2020. GoDaddy the domain registry company reported that an outsider had accessed customer login credentials possibly affecting all 19 million company accounts. Also in August, 2018 GoDaddy's cloud configuration info was exposed by an Amazon AWS employee.
United States Department of Defense
February, 2020. DOD disclosed a data breach occurred at its IT and Telecom Agency. They perform IT and telecommunications support for the White House, Diplomats and Military. The breach exposed personal information of 8,000 of its employees between May and July 2019. The data breach is believed to include social security numbers.
Virgin Media
March, 2020. UK telecommunications provider Virgin Media reported that the personnel information of 900,000 customers was exposed in a data breach. Customer names, home addresses, email addresses, phone numbers and date of birth were leaked.
Capital One Hacker Stole Personal Data on 100 Million Customers
2019. Hacker stole social security numbers, names, birth dates, bank account numbers and other personal information on more than 100 million people using a misconfigured web application firewall.
Sprint and T-Mobile Data Breaches
2019 and 2020. Unauthorized access to Sprint customer accounts occurred. Personal information breached included customer phone number, account number, first and last name, billing address, PIN and more. in 2020 T-Mobile suffered another data breach. Hackers gained unauthorized access to information on customers and employees.
Marriott's 2nd Data Breach
2018 and 2020. World's largest hotel chain disclosed that hackers compromised its reservation database and stole the personal details of 500 million guests. Stolen database data included names, credit card numbers, mailing addresses, phone numbers, email addresses, passport numbers and dates of birth. A 2nd data breach occurred in 2020 where the data of 5.2 million hotel guests was accessed by hackers.
Equifax
2017. Equifax credit card monitoring company had 145 million American's sensitive data stolen by Hackers. That is half the adult US population.
Thousands of WordPress Sites Hacked
2017 to 2020. Critical zero-day flaws in WordPress and WordPress plugins have resulted in thousands of WordPress sites being hacked. Even after WordPress efforts to protect its customers, thousands of web site administrators did not update their websites.
Uber Paid $148 Million Settlement
Hackers accessed the personal data of 600,000 Uber drivers, as well as 57 million customers. Stolen data included names, email addresses and phone numbers. Drivers had their names and driver’s license numbers exposed.
Others
142 million MGM hotel guests data stolen, Adobe, US Border, Quest Diagnostics, Quora, PayPal, Google+, Target, Verizon, LinkedIn, Dropbox, British Airways, Whole Foods, Orbitz Travel have had massive data breaches.
Previous
Next

1 of 2. Anatomy of a Data Breach by Hackers

Step 1. Hacker Gains Access to an Organization's Network
How? Hacker or Rogue Insider gains access to your organization's network via Zero Day Attacks, legitimate credentials obtained from using phishing, compromised credentials, etc. Remember Equifax, Uber, Yahoo and many more that were recently hacked. Hacker now logs into production database server with stolen credentials.
Step 2. Hacker Begins to Steal Confidential Database Data.
Hacker issues the SQL query 'SELECT * FROM CUSTOMER_CREDIT_CARDS'. This query returns all customer credit card data. If the CUSTOMER_CREDIT_CARDS table contained 50 million credit cards then 50 million rows of data would be sent across the network to the Hacker.
What Sql Power Tools Would Do
Refer to the below slider 'How Data Theft is Prevented by Sql Power Tools'. Product would immediately recognize that the SQL query has NEVER before been issued for this database from our ADVANCED SQL BEHAVIORAL ANALYSIS of 100% of the query and SQL activity. Also that the SQL query was issued from a IP address that has NEVER accessed the database in the past. Finally that NO applications on this database in the past have EVER queried 50 million rows of data. Hacker theft of confidential data is DEFINITELY in progress. We would immediately a) ALERT the Security Team with the details and b) TERMINATE the HACKER session so that confidential data is not stolen.
Previous
Next

2 of 2. How Data Breaches are Prevented by Sql Power Tools

Protects Informix, MySQL, Oracle, SQL Server & Sybase confidential database data from Hackers and Rogue Insiders

Step 1. Hacker Gains Access to Organization's Network
Hacker or Rogue Insider logs into a database server with valid credentials. If the login was submitted from an IP address that NEVER previously logged into the server the Security Team is immediately notified. This is suspicious activity.
Step 2. Hacker Query is Immediately Observed
Product's ADVANCED SQL BEHAVIORAL ANALYSIS of the query and SQL activity product knows that the Step 2 query (SELECT * FROM CUSTOMER CREDIT CARDS) or any form of SQL Injection has NEVER before been sent to this database. Also that the hacker IP address has never logged into the database and that no applications running on this database have EVER queried 50 million rows of data. An email alert is IMMEDIATELY sent to the Security Team with the supporting details along with the SQL code the Hacker used. The HACKER session is immediately terminated by the product since a data breach is DEFINITELY occurring.
Previous
Next

Product Architecture

Data Breach Prevention Features

- 1 -
- 2 -
- 3 -

Product Screenshots

Setup Wizard Protects Databases in a few Minutes.
Specify Data Breach Alert Criteria.
Real-time Dashboard of Hacker Activity.
View a Dashboard summary of hacker activity over any time period. Double click on a database instance to view all database/SQL queries hacker or rogue insiders issued prior to being shutdown.
Real-time Data Breach Email Alerts.
Also view hacker or rogue insider activity across the server farm over any time period.
View all Hacker Database Query Activity.
Hacker sessions terminated over last 30 days when attempting to steal confidential database data.
View all Hacker SQL Activity.
View hacker or rogue insider SQL query of database data, IP address query was sent from, bytes sent, packets sent, SQL query run, start and end times.
Previous
Next

Product Setup and Operation

Step 1 of 4. Install Product
Install product in 15 minutes. Setup wizard creates product repository, real-time data breach alerts and configures Database Cyber Security Guard. Typically install on a Linux or Windows server. All database environments may be protected.
Step 2 of 4. Capture SQL Activity
Database Cyber Security Guard Agent non-intrusively captures two days of database instance SQL activity for the Advanced SQL Behavioral Analysis of database queries and SQL. Agent never connects to protected database instance. Performed at initial setup.
Step 3 of 4. Advanced SQL Behavioral Analysis
Advanced SQL Behavioral Analysis on the Step 2 captured database queries and SQL. Product learns what the normal query patterns and application behaviors are with the IP address every unique query was sent from plus the maximum data sent for each unique query. Most databases have 2,000 to 20,000 unique queries that run millions of times a day. Performed at initial setup.
Step 4 of 4. Real-time Protection of Database Data From Hackers
7x24 all database queries are checked in real time against the learned query patterns. Never before observed queries, queries sent from unknown IPs or sending a never before observed amount of data are known within milliseconds. Security team will know immediately when rogue insiders or hackers have penetrated the network and are attempting to steal confidential database data.
Recap
Product protects credit card, tax ID, medical, social media, corporate, manufacturing, law enforcement, defense, homeland security and public utility database data. Sends real-time alerts when never before database queries or IP addresses are observed; or excessive database data has been sent. Terminates Hacker session immediately. View all Hacker sessions with the database queries they issued plus the data Hacker attempted to steal. Product ROI is immediate.
Previous
Next

© Copyright 2021 Sql Power Tools, Inc. All rights reserved.

Contact us:   (800) 733-5978   info@sqlpower.com