Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

2009 trends in Cybercrime predicted by Finjan

Finjan Software : 10 December, 2008  (Technical Article)
Finjan's Malicious Code Research Centre predicts the use of rich content files for crimeware distribution during 2009
Finjan has announced the latest findings by its Malicious Code Research Centre (MCRC) indentifying and analysing the latest trends in cybercrime.

In its Web Security Trends Report Q4 2008, MCRC shows how cybercriminals are using PDF and Flash files - that are normally considered to be safe - as a vehicle for distributing their malicious code and for infecting end-user PCs.

Cybercriminals take advantage of the specific functionality available in Flash ActionScript that enables the Flash file to interact with its hosted web page (DOM). They embed their malicious code in Flash files and dynamically inject it into the hosting DOM to exploit a browser-vulnerability and to install a Trojan. Although Flash supports the functionality to prevent such interactions, many sites owners are not using it.

The report further unveils that large ad networks serving Flash-based banner ads did not prevent their ads from interacting with the hosting webpage. As demonstrated in the report, the lack of configuration by ad networks to prevent this interaction, between the served Flash-based ad's ActionScript and the DOM, has become a new vector for cybercriminals to serve their malicious code undetected.
"Using rich content applications such as Flash files to distribute malicious code has become the latest trend in cybercrime," said Yuval Ben-Itzhak, CTO of Finjan. "Having the widespread distribution and the popularity of Flash-based ads on the Web, their binary file format enables cybercriminals to hide their malicious code and later exploit end-user browsers to install malware."

Finjan's MCRC has continuously been following and covering the evolution of cybercrime in recent years. In its latest trends report, MCRC provides an overview of cybercrime trends in 2008 and presents its predictions for 2009.

* Cybercrime will keep on rising with an increasing number of unemployed IT professionals joining in.
* Cybercriminals will benefit from the Obama Administration's plan to bring Broadband Internet access to every American.
* Cybercriminals will continue to make use of the most advanced techniques and services that Web 2.0 can offer, with a focus on Trojan technologies.

Concludes Ben-Itzhak: "Cybercriminals will continue to be highly successful in their crimeware attacks, deploying the latest technologies, especially sophisticated data-stealing Trojans. By staying ahead of traditional security methods, they will keep on maximising their considerable profits. The optimal way to prevent malicious files from infecting PCs and corporate networks is active real-time content inspection technologies that can inspect each and every piece of Web content in real-time to detect malicious code without the need for signatures."
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo