New Research Highlights Need For Server Security - InformationWeek
IoT
IoT
Business/E-Business
Commentary
7/31/2008
09:54 AM
Lamont Wood
Lamont Wood
Commentary
50%
50%
RELATED EVENTS
[Cybersecurity] Costs, Risks, & Benefits
Feb 28, 2017
How much should your organization spend on information security? What's the potential cost of a ma ...Read More>>

New Research Highlights Need For Server Security

A recent report indicates that trusted sites are actually a major source of Web infectionsmeaning that in too many cases server security has taken a back seat to expediency.

A recent report indicates that trusted sites are actually a major source of Web infectionsmeaning that in too many cases server security has taken a back seat to expediency.The news concerns a 13-page report from Websense Security Labs, a San Diego-based security software firm, which covered the state of Internet security in the first half of 2008. The upshot of the report was that 75 percent of Web sites offering malicious code were not hacker sites but legitimate sites whose servers had been compromised. The rate of legitimate sites offering infections was up nearly 50 percent compared to the previous six months.

The report claimed that 60 of the top 100 most popular Web sites had hosted malware or otherwise been involved in its transmission during the first half of 2008.

The biggest factor appears to be the new-wave highly interactive Web 2.0 sites, which allow users to upload all the data that their hearts desire. Some of this data will inevitably contain malware, or is actually crafted as an infection, and the host is not geared to check for such things.

The report also complained that Web servers are increasingly under attack from persistent cross-site scripting (XSS) and SQL injection attacks, as well as DNS cache poisoning.

Obviously, if the big sites are having so many problems, no one is safe. Anyone with a Web server must take security seriously.

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
2017 State of the Cloud Report
As the use of public cloud becomes a given, IT leaders must navigate the transition and advocate for management tools or architectures that allow them to realize the benefits they seek. Download this report to explore the issues and how to best leverage the cloud moving forward.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of November 6, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll