Attackers going after end users rather than servers

The Web traffic study also finds issues with botnets, corporate policies, and outdated browsers
By Paul Krill, InfoWorld
February 22, 2010 08:01 PM ET

Rather than targeting Web and email servers, attackers these days are prone to going after enterprises from the inside out, compromising end user systems and then using them to access confidential data, according to a Web traffic analysis report by security-as-a-service provider Zscaler.

Based on a recent study of traffic passing through its global network,  Zscaler’s “State of the Web — Q4 2009” report also notes trends including issues with botnets, corporate Internet access policies, and the use of the Internet Explorer 6 browser. Officially being released on Tuesday, the study analyzes Web traffic volumes covering several thousand Web transactions per second and hundreds of billions of Web transactions.

Zscaler found attackers were prone to embedding JavaScript or malicious iframes to pull content from an attacker’s server, whereupon the content is rendered in a user’s browser, said Mike Geide, senior security researcher at Zscaler, in an interview on Monday.

Read the whole article here.

Advertisements

Leave a comment

No comments yet.

Comments RSS TrackBack Identifier URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

  • Calendar

    • February 2010
      M T W T F S S
      « Jan   Mar »
      1234567
      891011121314
      15161718192021
      22232425262728
  • Search