Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Tuesday, September 23, 2008

Cybercriminals Utilize the Latest Web 2.0 Techniques to Inject Their Obfuscated Malware in PDF and F

Finjan Inc., a leader in secure web gateway products, today announced that its Malicious Code Research Center (MCRC) discovered examples of obfuscated code embedded in rich-content files, and not only in HTML-webpages on legitimate websites.  Finjan’s H1/2008 Web Security Survey Report indicates that 46% of respondents stated that their organization didn’t have a Web 2.0 security policy in place.

According to Finjan, code obfuscation remains the preferred technique for cybercriminals for their attacks.

Real-time content inspection is the optimal way to detect and block dynamically obfuscated code and similar types of advanced cybercrime techniques, since it analyzes and understands the code embedded within web content or files in real time - before it reaches the end-users.

Posted on 09/23