Skip to navigation
   
Davey Winder's Blog
RSS

The browser mafia

By Davey Winder in Editorial

Posted in Blog, Security, IBM on February 16, 2008 at 11:18 pm

Permalink | Author Profile

According to IBM, or rather the straight out of a gangster movie sounding IBM X-Force to be precise, your web browser is under siege from organised crime gangs. The 2007 X-Force Security report details something of an expected rise in the sophistication of attacks, and an increase in the rate at which victims computers are being compromised. There is, X-Force says, a ‘complex and sophisticated criminal economy’ which has developed to capitalise on known web vulnerabilities, and underground brokers are now delivering the necessary tools to enable those who would screw you over to do just that and avoid detection by way of obfuscation or camouflage.

The report says that in 2006 only a small percentage of attackers employed camouflaging techniques. Compare and contrast with the first half of 2007 when some 80 percent of attacks did just that, and the 100% that were doing it by the end of the year. Using such by now commonplace techniques, the criminal element can all too easily infiltrate a system and compromise the data upon it. Don’t laugh this off as being just a problem for the home user either, X-Force quite rightly reminds us that when attackers invade an enterprise machine they can steal sensitive company information or use that compromised machine to gain access to other corporate assets behind the firewall.

“Never before have such aggressive measures been sustained by Internet attackers towards infection, propagation and security evasion. While computer security professionals can claim some victories, attackers are adapting their approaches and continuing to have an impact on users’ experiences,” said Kris Lamb, operations manager, X-Force Research and Development for IBM Internet Security Systems. “The Storm Worm provides a microcosm of the kinds of threats users faced in 2007. All in all, the exploits used to spread Storm Worm are a blend of the various threats tracked by X-Force, including spam, phishing and drive-by-downloads by way of Web browser exploitation.”

The X-Force report also reveals that:

  • The number of critical computer security vulnerabilities disclosed increased by 28 percent, a substantial upswing from years past.
  • The overall number of vulnerabilities reported for the year went down for the first time in 10 years.
  • Out of all the vulnerabilities disclosed last year, only 50 percent can be corrected through vendor patches.
  • Nearly 90 percent of 2007 disclosed vulnerabilities are remotely exploitable.
12345
Rated: 100% (1 votes)
Loading ... Loading ...

Previous Post | Next Post

 
 
Comments

Comment by traffictrial - February 18, 2008 on 10:11 am

good article. ….
nice info ..
thanks

Trackback by Jackson Skweres - February 9, 2012 on 3:56 am

sopa de pollo para el alma…

[…]various details in which Judge Rodgers could have failed to exercising […]…

Trackback by Erich Haddaway - February 9, 2012 on 7:58 am

sopa and pipa news…

[…]the publication of my book and a lot more lively promotion […]…

Make a comment

* required

* required

We stop spam using reCaptcha.
Type the words below and click Submit Comment.

   
Tag cloud

Windows Phone 7 Series ISP Hack payments management Health wifi hacking Jesus Phone economy Web Development Browsers Kill Switch Review money outsourcing scareware Amazon graphics virtual machine Sex Mars MiniBook Harry Potter DNS news President Banned hubdub virtual world teleworking Linux PS3 ecommerce Music AMD gaming standards ISPA Europe Rumour hacker Silverlight XP Palm universe Mobile Phones Government Tesco Trojan Funny App Store Addiction Gadget Advertising Browser library Trousers Sony Kin InfoSec Patents computer SMS Twitter survey Enterprise copyright Opinion hardware code Netbook Blog iPad gadgets malware technology debian Russia surveys snooping lawsuit Finjan Cisco Space Business Obama Flash Mobile Phone Education Big Brother BSI theft man-in-the-middle information iPhone 3GS Jobs Adobe Supercomputer services Paris Hilton Yahoo ID Theft Madness xmas nightmare Geeks Windows USA OCR Eee disclosure McKinnon Experiment carbon copy tech CAPTCHA data Software ROFL adware HPC Media second life archiving broadband global betting banks Steve Jobs security console Military Marketing Employment world of warcraft support report green Microchip Vista computers Ballmer network MSNBC VPN eBook China VM campaign Study virus Psion Architecture Analysis Press search worker Google symantec terrorism patent web stupid size scan Guardian banking Johnny Depp credit card fraud smartphone IDC VeriSign service scam rootkits storage Deal RAM remote Internet Explorer Rant Battery GMail Eee PC encryption FBI economics Bill Gates Recall Election dumb Pirate open source School Olympics recession work Michael Jackson memory museum IBM botnet Kindle admin games phishing Retail Texas Instruments Steve Ballmer YouTube Acer family MessageLabs Networks Mafia Nintendo Texting science ASUS Army crime millions iPod EU hypervisor Nexus GSM Children payment server Firefox fraud Kaspersky mail transactional security Apps HP Dell policy football Project poll desktop tax black hat virtualisation trust Data Centre Apple Android spending earth hour shopping Top 10 productivity Facebook Blogging prison Game SSL The Federation Digital Footprint iPhone 3G help NASA Research patch management Porn Performance computing fun Voice monetisation Gateway IP students MSN remote working App development chips Gartner sick statistics Microsoft Intel acquisition fake Programming BOFH Developers Digg spam Conference web 2.0 Death Notebooks IT office documentation Internet politics fool e digitise social networking biometrics Backlash meme data protection NBC Meh worm Google Earth RATM Beta OS Energy e-commerce Psychic exploit innovation Licensing computing holidays hoax Application linkedin Spotify mobile law parental control Video Lotus Zango avatar stupidity workplace staffing home books Parenting environment christmas Windows 7 Palm Pre privacy Noro cloud compromise email credit crunch Scotland printing migration iPhone Top 500
Advertisement

   
Archives

   
Most commented posts

   
Highest Rated Blog Posts

Advertisement