Advertisement
Promo

Security threats Toolkit

Toxic blogs threaten Web users

Munir Kotadia ZDNet Australia

Published: 04 Oct 2005 09:35 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Blogs started turning toxic in the first half of 2005 as malware authors started using free Web hosting and blogging services to store their malicious files, according to Internet security firm Websense.

 According to the Websense Security Trends Report 2005, the first half of this year saw the Web become "by far the fastest growing attack vector", as malware authors started distributing links to malicious files in socially engineered e-mails instead of sending the actual files, which would most likely be blocked by corporate antivirus and spam filters.

"These aren't the kind of Web sites that someone would stumble upon and infect their machine accidentally. The success of these attacks relies upon a certain level of social engineering to persuade the individual to click on the link. In addition, the blogs are being utilised as the first step of a multi-layered attack that could also involve a spoofed e-mail, Trojan horse or keylogger," the report said.

The increasing popularity of sites offering free blogs and Web space means malware authors now have access to an almost unlimited amount of hosting space in which to store their code. Websense claims that the general lack of security provided by these services means they are now regularly used to launch attacks.

"The blog can be used as a storage mechanism, which keeps malicious code that can be accessed by a Trojan horse that has already been hidden on the user's computer… [blogs] do not require any identity authentication to post information, and most blog hosting facilities do not provide antivirus protection for posted files," the report said.

In July, Websense told ZDNet Australia that it had seen an alarming increase in Web sites offering free hosting services being used to store and distribute malware, which indicates that this trend is set to continue being a problem for the foreseeable future. At the time, Dan Hubbard, senior director of security and technology research at Websense, said more malware was found on free hosting services during the first two weeks of July than in May and June combined.

Munir Kotadia reported from Sydney for ZDNet Australia. For more ZDNet Australia stories, click here.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
115 out of 187 people found this useful


In association with Network Liberation Movement

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:




Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

DNA details of innocent will be kept f...

The government has announced that it plans to keep innocent people's DNA details for up to six years. In response to a consultation it launched last December, the government said... More

5 comments

Motorola Droid Drops Today: Happy Droi...

Motorola Droid Drops Today: Happy Droid Day America! Author: Eric Everson, Mobile Security Expert If you’re wondering what all of the buzz is about with words like Droid and Android... More

Post a comment

Mobile Security Profile: BlackBerry St...

Mobile Security Profile: BlackBerry Storm2 Author: Eric Everson BlackBerry handsets are a staple of office culture; from syncing calendars to sharing business-related data,... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters