Web Threats Expected to Dominate Online Security Landscape
According to the industry experts, in 2008, majority of security threats seems to originate from Web applications. Most of them will either come directly from the Web or due to visiting the Web.
As per the security company Sophos, the direct Web attack on systems is a serious concern. In 2007, the company found one infected page in every 14 seconds that gave rise to 6,000 new infections every month.
Sophos also added that 83% of the Websites are not purposely designed for malicious tasks but are infected with third parties.
Supporting the findings of Sophos, Trend Micro said that the purpose behind corrupting the sites is to achieve financial gains, as reported by bangkokpost on March 14, 2008.
Raimund Genes, Chief Researcher, Trend Micro, added that majority of malware variants would originate from Web instead of e-mails that were the most preferred medium of attackers for launching attacks, as reported by bangkokpost on March 14, 2008.
After analyzing the expected malware trends for 2008, the security vendor said that loopholes in renowned Web applications and legacy code in operating system remain favorite targets for attackers to inject malicious codes. Using this methodology, attackers will continue to run malicious programs and create threats for network security to steal private and proprietary information.
Moreover, Trend Micro also highlighted that popular Websites that offer numerous kinds of services like social networking, financial or banking sites, e-commerce sites, online gaming, blogging, search engines, jobs, travel, news, commercial ticketing, and local government system would continue to lure attacker for carrying out phishing and identity theft attacks.
Alongside, Trend Micro found that hackers would intensify their attacks on genuine Websites. The volume of compromised sites is slowly taking over the malicious Websites. It recommended Internet users to avoid visiting questionable sites as the legitimate sites, including those of fortune 500 companies, government organizations, and schools may also contain malicious codes.
Craig Schmugar, researcher at McAfee, a renowned security vendor, commented on the emerging Web threats for 2008, saying that along with Websites related with Olympics 2008 and network, attackers will use Storm-like botnets with decentralized command structure that will make them hard to close down for carrying out attacks, as reported by NETWORLD on March 15, 2008.
Related article: Web Browsers Too Have Security Exploits
» SPAMfighter News - 22-03-2008