Finjan Reports Findings
Finjan announced its findings on the latest web security trends as uncovered by its Malicious Code Research Center (MCRC)
SAN JOSE, Calif. -- Finjan Inc., the global provider of best-of-breed proactive web security solutions for businesses and organizations, today announced its findings on the latest web security trends as uncovered by its Malicious Code Research Center (MCRC). In its Web Security Trends Report (Q3 2006), Finjan presents new findings related to malicious code found on storage and caching servers, as well as insights into trends related to sophisticated new threats that target Web 2.0 platforms and technologies. The report also includes a follow-up story showing additional examples of "vulnerabilities for sale," as exposed in Finjan's previous Web Security Trends Report, released in July, which focused on the commercialization of malicious code and a widening black market.
Malicious Code in Cached Web Pages Served by Storage and Caching Servers The new report details Finjan's discovery of malicious content residing in cached web pages on storage and caching servers, such as those used by ISPs, enterprises and leading search engines. "This malicious code can be referenced by third-party web pages and can be used to exploit an The report presents several instances of malicious code found by Finjan security researchers on public storage and caching servers. "This is more than just a theoretical danger," Ben-Itzhak said. "Owing to this exploit, it is possible that storage and caching servers could unintentionally become the largest 'legitimate' storage venue for malicious code. Such 'infection-by-proxy' introduces new risks for businesses and consumers."
About the Author
You May Also Like
How to Evaluate Hybrid-Cloud Network Policies and Enhance Security
September 18, 2024DORA and PCI DSS 4.0: Scale Your Mainframe Security Strategy Among Evolving Regulations
September 26, 2024Harnessing the Power of Automation to Boost Enterprise Cybersecurity
October 3, 202410 Emerging Vulnerabilities Every Enterprise Should Know
October 30, 2024
State of AI in Cybersecurity: Beyond the Hype
October 30, 2024[Virtual Event] The Essential Guide to Cloud Management
October 17, 2024Black Hat Europe - December 9-12 - Learn More
December 10, 2024SecTor - Canada's IT Security Conference Oct 22-24 - Learn More
October 22, 2024