Finjan's latest analysis of Web Security.Finjan have published the latest findings from its Malicious Code Research Center (MCRC MCRC Metastatic Colorectal Cancer MCRC Marine Corps Recruiting Command (USMC) MCRC Malicious Code Research Center (Finjan Software) MCRC Motorcycle Racing Club ). In its Web Security Report http://www.finjan.com/content.aspx?id= 827, Finjan summarizes the analysis of more than 10 million unique URLs based on live web traffic recorded in the UK. The most important findings from Finjan's ongoing research are: * As commercial interests continue to drive e-crime, malicious code is more likely to be hosted on local servers in the US and UK than in countries with less developed e-crime law enforcement policies. * A continuing evolution in the complexity of attacks, specifically the increasing use of code obfuscation ob·fus·cate tr.v. ob·fus·cat·ed, ob·fus·cat·ing, ob·fus·cates 1. To make so confused or opaque as to be difficult to perceive or understand: "A great effort was made . . . using diverse randomization randomization (ranˈ·d  ·m techniques. Over 80% of the malicious code detected by Finjan was
obfuscated, making it virtually invisible to
pattern-matching/signature-based methods in use by anti-virus products.
* Increasing sophistication so·phis·ti·cate v. so·phis·ti·cat·ed, so·phis·ti·cat·ing, so·phis·ti·cates v.tr. 1. To cause to become less natural, especially to make less naive and more worldly. 2. at embedding malicious code within legitimate content (e.g., ad delivery and translation services) and less dependence on outlaw servers in unregulated countries. Finjan's detection and analysis is based on its unique and proprietary methods for analyzing executable code Software in a form that can be run in the computer. It typically refers to machine language, which is comprised of native instructions the computer carries out in hardware. Executable files in the DOS/Windows world use .EXE and . embedded in web content for malicious or dangerous intent. These methods excel in detecting malicious code without depending on location, reputation or a priori a priori In epistemology, knowledge that is independent of all particular experiences, as opposed to a posteriori (or empirical) knowledge, which derives from experience. signature information. Finjan Vital Security Web Appliance See Internet appliance. Finjan also claimed that its patented real-time code inspection technology is the only web security product that detected malicious code on a potentially destructive web page propagated by a malicious Russian website earlier this month. Finjan subsequently communicated its discovery of the malicious code to an independent online security industry benchmark website, VirusTotal.com, which benchmarked the code against 32 well-known web security products. Upon completion of the benchmark, VirusTotal established that the entire list of products failed to detect the code as malicious and as a result did not block it. Finjan's Vital Security Web Appliance claims to be the only security solution that managed to detect and block the code in real-time, without any product update or signature. "The findings of this online benchmark test underscore The underscore character (_) is often used to make file, field and variable names more readable when blank spaces are not allowed. For example, NOVEL_1A.DOC, FIRST_NAME and Start_Routine. (character) underscore - _, ASCII 95. significant trends that we are seeing on the web today: threats are growing more sophisticated and the task of keeping track of dynamic, malicious web content is becoming more difficult," said Finjan. www.finjan.com |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion