Finjan Reports Findings
Finjan announced its findings on the latest web security trends as uncovered by its Malicious Code Research Center (MCRC)
SAN JOSE, Calif. -- Finjan Inc., the global provider of best-of-breed proactive web security solutions for businesses and organizations, today announced its findings on the latest web security trends as uncovered by its Malicious Code Research Center (MCRC). In its Web Security Trends Report (Q3 2006), Finjan presents new findings related to malicious code found on storage and caching servers, as well as insights into trends related to sophisticated new threats that target Web 2.0 platforms and technologies. The report also includes a follow-up story showing additional examples of "vulnerabilities for sale," as exposed in Finjan's previous Web Security Trends Report, released in July, which focused on the commercialization of malicious code and a widening black market.
Malicious Code in Cached Web Pages Served by Storage and Caching Servers The new report details Finjan's discovery of malicious content residing in cached web pages on storage and caching servers, such as those used by ISPs, enterprises and leading search engines. "This malicious code can be referenced by third-party web pages and can be used to exploit an The report presents several instances of malicious code found by Finjan security researchers on public storage and caching servers. "This is more than just a theoretical danger," Ben-Itzhak said. "Owing to this exploit, it is possible that storage and caching servers could unintentionally become the largest 'legitimate' storage venue for malicious code. Such 'infection-by-proxy' introduces new risks for businesses and consumers."
About the Author(s)
You May Also Like
Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024Why Effective Asset Management is Critical to Enterprise Cybersecurity
May 21, 2024Finding Your Way on the Path to Zero Trust
May 22, 2024Extending Access Management: Securing Access for all Identities, Devices, and Applications
June 4, 2024Assessing Software Supply Chain Risk
June 6, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024