Finjan CTO to List Web Threats

Finjan CTO to list latest Web threats at Gartner IT Security Summit

May 30, 2007

SAN JOSE, Calif. -- Finjan, a leader in web security products, today announced that its Chief Technology Officer Yuval Ben-Itzhak will present the latest threats uncovered by Finjan’s Malicious Code Research Center (MCRC) at The Gartner IT Security Summit 2007 in Washington, D.C. on Monday, June 4. These threats include:

A new genre of highly sophisticated evasive attacks that hackers are using to lower the visibility of their malicious code in the wild

The proliferation of affiliation networks based on a “hosted model” for malicious code, which utilize off-the-shelf malicious code packages to compromise highly popular websites and even government domains.

New examples showing the growing presence of malicious code in online advertising on legitimate websites

Yuval Ben-Itzhak will also address effective ways for organizations to counter these emerging threats (http://agendabuilder.gartner.com/sec13/WebPages/SessionList.aspx?speaker=3049).

Hackers are now selectively exposing malicious code to innocent website visitors and hiding it from web crawlers utilized for classification by search engines and URL filtering engines.

“The reality is that commercially-driven hackers are using new sophisticated methods, such as dynamic code obfuscation and evasive attacks, to bypass traditional signature-based and database reliant solutions, which were not designed to detect dynamic web scenarios,” said Yuval Ben-Itzhak, CTO, Finjan. “The combination of evasive attacks with code obfuscation techniques significantly enhances the capability of sophisticated hackers to go undetected.”

Finjan Software Inc.