Drive by automatic downloads Michael Desrosers
This month's topic is a how technology and procedures can be used to divert "drive-by" or automatic downloads such as the recent Internet Explorer exploit, and to prevent drive-by downloads and other Internet threats from damaging your infrastructure and stealing your personal information.
How This Attack Works
Drive-by downloads infect existing websites or create new websites, and trick users into visiting them. Upon landing on the fraudulent site, hackers slip malicious software onto the PC through a browser flaw. The malicious software assists with identity theft, stealing credit card numbers, passwords and other sensitive data by secretly logging everything the victim types. Having an unsecured web browser leaves you vulnerable to a variety of problems from malware installing without your knowledge to intruders taking control of your computer. Exploiting these vulnerabilities in web browsers has become a popular way for attackers to compromise computer systems.
According to a new study by Google, 1 in 10 sites are malicious sites, silently installing viruses and spyware or tricking you into revealing your confidential information. Recent studies found that close to half of all web browsers were not fully secure and half of all Web sites are infested with some form of malware, including many of the leading search, social networking and shopping sites. And a majority of all new malware is released on the same day as the corresponding browser vulnerability is announced. These and other "zero day" attacks illustrate that setting your browser to maximum security and updating the latest security patch alone is not enough.
How Does It Affect You
All of these attacks bypass traditional PC security, such as anti-virus and firewalls, through your web browser damaging your PC while invading your privacy and stealing your money.
Do these scenarios sound familiar?
What Can You Do About It
Malware in action can consume a substantial amount of your computer's memory, leaving limited resources for other legitimate programs to use. This can lead to extremely sluggish performance of vital programs, like your current Internet browser or Operating System and a slow workstation overall.
Here are some smart guidelines that you can follow:
- Don't download from sites that you don't trust;
- Don't enter confidential information into sites you are not familiar with;
- Don't shop at sites you don't know;
- Update your operating system and browser regularly with the most current security fixes;
- Never follow a link from an e-mail that asks you to enter your personal information. Only malicious sites designed to look like real sites will ask for this, because reputable sites would never ask you to do this!
There are also some great plug-ins to grab for your browsers, whether you use Internet Explorer, Firefox, Mozilla, Safari or others. Here are a few tools that will provide additional levels of trust for your browser as you surf the web:
Calling ID - Free anti-phishing browser toolbar and embedded link checking software alerts the user if it detects phishing and related risks.
Show IP - Show the IP addresses of the current page in the status bar. It also allows querying custom information services by IP and hostname and allows you to access DNSstuff tools to verify the location of the site..
Router Status - Shows the current status of your router in the status bar.
Scandoo - This scanning technology scans each and every one of your search results to see if there is anything malicious behind the links and then feeds the security results back into your search page. Great home page!
There you have it. Hopefully some of these techniques and tools will make the potential for hijacks and "man-in-the-middle" attacks less viable for you and your organization. What it does provide, is a solid foundation to use the Internet safely and provide some level of security without being intrusive and preventing business uses for the web.
To view more articles:
or to inquire about an on-site presentation, please feel free to call me at 508-995-4933 or email me at firstname.lastname@example.org.
Until next time.....
Founder & Principal Consultant
Managing Your Security and Risk Needs
Got something to add? Send me email.
(OLDER) <- More Stuff -> (NEWER) (NEWEST)
Printer Friendly Version
Increase ad revenue 50-250% with Ezoic
More Articles by Michael Desrosiers © 2009-11-07 Michael Desrosiers