Web security's Achilles heel: browser-borne vulnerabilities
No ratings
Presented at Virus Bulletin 2008 by
"Although many organizations already deploy security measures to block illicit sites that can infect unsuspecting users, the rising prominence of the browser as an attack vector is undermining the ability of content filtering to weather the onslaught. Case in point, more than 9,000 web pages become infected daily - on legitimate, business-oriented, government, religious, and SaaS sites. To make matters worse, ease of use advancements, plug-ins, and integrated technologies such as Flash, ActiveX, and JavaScript have conspired to make browsers a breeding ground for vulnerabilities. This session will provide an overview of current attack methods being launched against web browsers, the vulnerabilities they are exploiting, the protocols/ports they use to evade detection, and the activity performed by malware once it has breached the security perimeter. The presentation will also include a best practices blueprint that organizations can implement to mitigate the risks of web browser oriented threats and protect their network's Achilles Heel. Attendees will learn: Why browsers are a breeding ground for vulnerabilities Current attack methods being launched against web browsers and how they work Best practices to mitigate the risks of web browser oriented threats"