Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

Study: Browsers Are Chief Virus Carrier

A new IDC study finds browsing of unknown Websites is more likely to cause the spread of viruses and worms than email attachments

If you work in security for one of those "cool" companies that lets employees use the corporate network to surf the Web on their own time, you might want to think about becoming a killjoy.

According to a study of 200 companies published earlier today by IDC Denmark, Web surfing has surpassed email as the most prevalent method of spreading worms and viruses. (See IDC: Private Internet Use Insecure.)

"There is a common misconception that emails constitute the biggest security threat from the Internet," says Per Andersen, managing director at IDC Denmark. "But the survey shows that up to 30 percent of companies with 500 or more staff have been infected as a result of Internet surfing, while only 20 to 25 percent of the same companies experienced viruses and worms from emails."

The study involved some 200 Danish companies with 500 or more employees. Of these, almost 40 percent reported that they had been infected with a worm or virus in the previous year.

Some 75 percent of the respondents to the IDC survey said they have established policies for Internet use, and "the vast majority" allow employees to use company Internet access for personal reasons, the research firm says. Even among companies that don't allow Web surfing for private purposes, about 30 percent said staff use the Internet for personal reasons anyway during business hours.

Website-borne viruses, worms, and Trojan horses don't always come from "red flag" sites such as those that offer pornography, experts observe. Any unknown site accessed over the corporate network -- even over a VPN or other home office connection -- could be a malware carrier, notes Preben Andersen, general manager of the Danish Computer Emergency Response Team. A Danish company was recently infected by a Trojan horse attached to a help file on a poker Website, he states.

The study raises the question of whether enterprises should build stronger policies against surfing the Web over company links. Companies that allow personal browsing have a higher incidence of infection by worms and viruses than those that don't, according to the research. Some companies have established hard-line policies that disallow users from using the Internet for any non-business reason.

But IDC's Andersen doesn't recommend this approach. "Today our work and private lives are so interlinked that it is unrealistic to think in terms of a ban on the use of company Internet connections for private purposes," he says.

A good Web behavior monitoring tool can help enterprises analyze surfing patterns and discourage users from straying to known problem sites, IDC's Andersen says. "And it can certainly be done in such a way that it does not constitute outright monitoring of the actions of every member of the staff," he says.

— Tim Wilson, Site Editor, Dark Reading

  • IDC Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio
     

    Recommended Reading:

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Charlie Wood
    50%
    50%
    Charlie Wood,
    User Rank: Apprentice
    5/7/2020 | 11:54:20 AM
    well is answer
    absolutely agree with your post!
    Zipasa
    50%
    50%
    Zipasa,
    User Rank: Apprentice
    5/7/2020 | 11:51:31 AM
    vew
    Some 75 percent of the respondents to the IDC survey said they have established policies for Internet use, and "the vast majority" allow employees to use company Internet access for personal reasons, the research firm says. Even among companies that don't allow Web surfing for private purposes, about 30 percent said staff use the Internet for personal reasons anyway during business hours.
    claireoliversmq
    50%
    50%
    claireoliversmq,
    User Rank: Apprentice
    4/24/2020 | 4:35:32 AM
    education
    A very interesting study that hooked me, thanks for this information. I read something similar in desdemona character essay at the same educational site. I think that it would be cool if we talked more about it.
    COVID-19: Latest Security News & Commentary
    Dark Reading Staff 7/2/2020
    Ripple20 Threatens Increasingly Connected Medical Devices
    Kelly Sheridan, Staff Editor, Dark Reading,  6/30/2020
    DDoS Attacks Jump 542% from Q4 2019 to Q1 2020
    Dark Reading Staff 6/30/2020
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon
    Current Issue
    How Cybersecurity Incident Response Programs Work (and Why Some Don't)
    This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
    Flash Poll
    The Threat from the Internetand What Your Organization Can Do About It
    The Threat from the Internetand What Your Organization Can Do About It
    This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2020-9498
    PUBLISHED: 2020-07-02
    Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspecially-crafted PDUs could result in memory corruption, possiblyallowing arbitrary code to be executed...
    CVE-2020-3282
    PUBLISHED: 2020-07-02
    A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an unauthenticated, remote attack...
    CVE-2020-5909
    PUBLISHED: 2020-07-02
    In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, when users run the command displayed in NGINX Controller user interface (UI) to fetch the agent installer, the server TLS certificate is not verified.
    CVE-2020-5910
    PUBLISHED: 2020-07-02
    In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized.
    CVE-2020-5911
    PUBLISHED: 2020-07-02
    In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller installer starts the download of Kubernetes packages from an HTTP URL On Debian/Ubuntu system.