ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Browser-based attacks increase as viruses decrease

Joris Evers CNET News.com

Published: 15 Jun 2005 10:45 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

As the threat to IT operations by viruses and worms declines, browser-based attacks are increasing, according to a technology trade organisation.

On Tuesday the Computing Technology Industry Association, or CompTIA, released its third annual report on IT security and the work force. The survey of nearly 500 organisations found that 56.6 percent had been the victim of a browser-based attack, up from 36.8 percent a year ago and a quarter two years ago, CompTIA said.

Browser-based attacks often take advantage of security flaws in Web browsers and other components of the user's PC such as the operating system. The attacks' objective could be to sabotage a computer or steal private data and can be launched when a user visits a Web page that appears harmless but contains malicious code.

One of the ways to lure victims to a bad Web site is through spam emails that include a hyperlink. Phishing, a form of attack that typically includes email and fraudulent Web sites resembling legitimate sites, is on the rise, CompTIA said.

A year ago, 18 percent of organisations said they had become victims of phishing, this year that is up to 25 percent, CompTIA said. Phishing is online fraud that attempts to steal sensitive information such as usernames, passwords and credit card numbers.

Still, viruses and worms continue to be the No.1 IT security threat, though the number of these attacks has levelled off. Two-thirds of organisations reported they had experienced such attacks in the past year, down slightly from 68.6 percent a year ago.

New pests are also affecting users, CompTIA said. Pharming and threats to mobile devices are causing headaches. In pharming attacks users are redirected to a malicious Web site after an attacker hijacks a domain-name system server -- a computer that maps text-based Web site names to actual IP addresses.

CompTIA commissioned TNS Prognostics to conduct the study, which included interviews with 489 professionals from government, IT, financial, education and other sectors, the organisation said.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with HP

Did you find this article useful?
72 out of 124 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Related Jobs

S40198: Customer Service and Call Centre Project Manager

Prepares presentations to communicate project goals - Conduct postmortem review of project and provide feedback on delivery approach Skill Set ...

Senior Developer

Specific duties and responsibilities will include:- - To take requirements captured by the teams business analysts and build or change existing ...

Have you been developing ASP web sites?

Huxley Associates are looking for people with commercial ASP experience to develop web sites for a network of 400 clients in the South West! Our ...

Featured Oracle Resources

businessfirst: Ideas to help small companies retain their successful entrepreneurial spirit

Oracle ONE Magazine: Technology solutions for midsized businesses February 2008 edition

Choosing a Reliable and Powerful IT Infrastructure at a Price You Can Afford

Database Consolidation: Reducing Cost and Complexity

Ensuring Data Protection for Growing Business

Oracle for medium and emerging businesses: protect, strengthen and enhance your organisation

Oracle partner network solutions catalogue

See All White Papers

Sentry Posts Blog

How many headshots does one chairperso...

We got a strange request last week from the head of PR from Russian security experts Kaspersky. It seems although the company was very happy with the interview we recently carried with... More

Post a comment

Google sponsors open source security p...

Google has announced it is to sponsor oCERT, an open source computer emergency response team. In a blog post on Monday, Google security engineer Will Drewry said that one of the... More

Post a comment

Indian officials accuse China of cyber...

China is actively engaged in mapping India's computer networks, according to the Times of India. China is mounting "almost daily" attacks against Indian Government computer systems,... More

Post a comment

Featured Talkback

On the contrary, if vendors were forced to stand behind their products it should increase innovation. It would force more, and better , testing before hitting the sales floor, resulting in fewer updates and less downtime for the consumer. At present the EULA removes responsibility from the vendor, and moves it to the user, which is a step backward. Make the vendor responsibility for their code.

By: ator1940

Read full story:
RSA: Vendor liability may stifle innovation