Thursday, February 14, 2008

Shrewd Attackers Bypass Old Security Defenses With Web Attacks

Dennis Fisher writes on SearchSecurity.com:

During the course of the last 10 years or so, security has gone from being of little to no importance in most enterprises to its current status as one of the top priorities in virtually every IT department. As threats have moved from macro viruses and simple DoS attacks to network-aware worms and Trojans to virtualized rootkits and peer-to-peer malware, the protection technologies have changed with the times. Firewalls, IDS appliances, intrusion prevention systems, content filtering and myriad other innovations have done a fine job of securing our corporate perimeters.

But all of that is about to change. The best and smartest attackers have all but abandoned their old bag of tricks and have taken their game to the Web. And the existing product set that's humming along in your server room and your data center is of little use in defending against these attacks. IDS, endpoint security, antivirus and the rest of it are all well and good, but they stand no chance of preventing users from falling prey to the current and future crop of Web-based attacks.

More here.

0 Comments:

Post a Comment

<< Home