New Research Highlights Need For Server Security - InformationWeek
IoT
IoT
Business/E-Business
Commentary
7/31/2008
09:54 AM
Lamont Wood
Lamont Wood
Commentary
50%
50%
RELATED EVENTS
Threat Intelligence Overload?
Aug 23, 2017
A wide range of threat intelligence feeds and services have cropped up keep IT organizations up to ...Read More>>

New Research Highlights Need For Server Security

A recent report indicates that trusted sites are actually a major source of Web infectionsmeaning that in too many cases server security has taken a back seat to expediency.

A recent report indicates that trusted sites are actually a major source of Web infectionsmeaning that in too many cases server security has taken a back seat to expediency.The news concerns a 13-page report from Websense Security Labs, a San Diego-based security software firm, which covered the state of Internet security in the first half of 2008. The upshot of the report was that 75 percent of Web sites offering malicious code were not hacker sites but legitimate sites whose servers had been compromised. The rate of legitimate sites offering infections was up nearly 50 percent compared to the previous six months.

The report claimed that 60 of the top 100 most popular Web sites had hosted malware or otherwise been involved in its transmission during the first half of 2008.

The biggest factor appears to be the new-wave highly interactive Web 2.0 sites, which allow users to upload all the data that their hearts desire. Some of this data will inevitably contain malware, or is actually crafted as an infection, and the host is not geared to check for such things.

The report also complained that Web servers are increasingly under attack from persistent cross-site scripting (XSS) and SQL injection attacks, as well as DNS cache poisoning.

Obviously, if the big sites are having so many problems, no one is safe. Anyone with a Web server must take security seriously.

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
IT Strategies to Conquer the Cloud
Chances are your organization is adopting cloud computing in one way or another -- or in multiple ways. Understanding the skills you need and how cloud affects IT operations and networking will help you adapt.
Video
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll