Aladdin Security Alert -- eSafe Protects Surfers Against New Cross-Site Scripting Vandals Threat.Business Editors/High Tech Writers SEATTLE--(BUSINESS WIRE)--Feb. 8, 2000 Embedded Code on Web Pages and Web Servers Enables Hackers to Poach Information and Access to Corporate Networks THE SECURITY RISK Five federal computer security agencies have issued a joint bulletin alerting the Internet community to dangers posed by malicious mobile code embedded in dynamically generated web pages. Using a method called cross-site scripting See XSS. , hackers embed hyperlinks on dynamically generated Internet documents -- web pages generated by search engines or forms, for example -- with malicious scripts in HTML tags which many web servers do not recognize as hostile. In this scenario, the unsuspecting user will click on hyperlink containing malicious code, and the URL URL in full Uniform Resource Locator Address of a resource on the Internet. The resource can be any type of file stored on a server, such as a Web page, a text file, a graphics file, or an application program. sent to the web server in question will contain the user's request for information, as well as the malicious script code. When the web server returns the HTML HTML in full HyperText Markup Language Markup language derived from SGML that is used to prepare hypertext documents. Relatively easy for nonprogrammers to master, HTML is the language used for documents on the World Wide Web. web page, it may also contain the embedded malicious code, which will automatically execute upon arrival and expose the user to a security breach. Because one source is injecting executable code Software in a form that can be run in the computer. It typically refers to machine language, which is comprised of native instructions the computer carries out in hardware. Executable files in the DOS/Windows world use .EXE and . into web pages sent by another source, this method of attack is called cross-site scripting. Malicious hyperlinks could potentially be found in newsgroups This is a list of newsgroups that are significant for their popularity or their position in Usenet history. As of October 2002, there are about 100,000 Usenet newsgroups, of which approximately a fifth are active. , message boards, email messages, web pages, web forms, or other mediums using dynamically generated Internet content. THE IMPACT Users may unintentionally execute malicious scripts when they follow untrusted links in web pages, email messages and newsgroup newsgroup Internet forum for discussion of specific subjects. Newsgroups are organized into subjects (e.g., automobiles); each typically has several subgroups (e.g., classic cars, Formula One racing cars). postings. These scripts pose any number of potential security threats to organizations, including:
-- Full access to any information provided to a web server,
including confidential personal information often provided to
companies in web forms
-- Transmitting a user's confidential information to another web
page or web site
-- Alteration of the appearance or behavior of legitimate web pages
-- Exposure of encrypted data. Because malicious script tags are
introduced before the Secure Socket Layer (SSL) encrypted
connection is established between the user and the server, SSL
encrypts the data with the malicious code attached.
-- Modification of a web site's cookies which create a persistent
security breach
THE SOLUTION eSafe Enterprise and eSafe Desktop automatically protect users against this form of Internet vandal through eSafe' s exclusive Sandbox A restricted environment in which certain functions are prohibited. For example, deleting files and modifying system information such as Registry settings and other control panel functions may be prohibited. technology. eSafe's Sandbox monitors the network or PC for malicious or inappropriate activity. When abnormal activity is detected, eSafe's Sandbox technology automatically quarantines the vandal and blocks the action, preventing access to vital information and damage to network resources. Because eSafe proactively monitors all system activity, rather than scanning for pre-defined or recognized malicious code, it is able to stop vandals without the need for security patches or program updates. eSafe Gateway users can also shield their networks by turning on Smart Script protection that blocks malicious script at the Internet Gateway (1) See cable/DSL gateway. (2) A router or server that converts IP packets to IPX, AppleTalk or some other non-IP format and vice versa. It is used to connect non-IP networks to the Internet. level. Directions to enable Smart Script can be found in eSafe Gateway's release notes or users may visit Aladdin's eSafe technical support Web site at http://esafe.com/support.html, or by calling 1-888-7SAFEPC. ABOUT ESAFE Aladdin's eSafe product suite, which includes eSafe Desktop, eSafe Enterprise and eSafe Gateway, provides the most comprehensive protection available against hostile elements on the Internet and gives users confidence in their ability to navigate the Internet safely. eSafe is the only comprehensive suite of content security solutions on the market to provide proactive protection from the gateway to the desktop. It also is the only one to provide Total Sandbox Quarantine(TM) protection against all forms of malicious content including viruses, vandals and worms. A unique feature found only in Aladdin's eSafe solutions, the sandbox erects a protective wall around vital system files and isolates all potentially dangerous viruses, vandals and worms in a sterile environment, preventing them from damaging, infecting or stealing from system resources (1) In a computer system, system resources are the components that provide its inherent capabilities and contribute to its overall performance. System memory, cache memory, hard disk space, IRQs and DMA channels are examples. . Much more than anti-virus protection, the eSafe suite of products enables businesses to:
-- block users ability to alter vital system files, thereby reducing
IT maintenance and repair costs.
-- stop access to web sites with inappropriate or malicious content,
such as hate literature or pornography, or those sites known to
propagate viruses.
-- restrict outgoing emails from sending classified or prohibited
content.
ABOUT ALADDIN Aladdin (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :ALDN) is a global leader in securing digital content, from applications software to Internet use and access. Aladdin's products include HASP (Houston Automatic Spooling Program) A mainframe spooling program that provides task, job and data management functions. HASP - Houston Automatic Spooling Program and Hardlock, software security systems that protect the revenues of developers and publishers; Privilege, a software licensing platform for the Internet; the eSafe line of anti-vandal, anti-virus and content filtering See Web filtering and parental control software. software for PCs and networks connected to the Internet; and eToken for Internet security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. and authentication (1) Verifying the integrity of a transmitted message. See message integrity, e-mail authentication and MAC. (2) Verifying the identity of a user logging into a network. . Aladdin serves its customers through eight offices located in the world's major software markets as well as a network of 50 distributors serving more than 100 countries. For more information, visit the Aladdin web site at www.aks.com. Note to Editors: All trademarks and registered trademarks are the property of their respective holders. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion