ANTenna Blog -- How-To

New Research Highlights Need For Server Security

Posted by Lamont Wood Thursday, Jul 31, 2008, 09:54 AM ET

A recent report indicates that trusted sites are actually a major source of Web infections—meaning that in too many cases server security has taken a back seat to expediency.

The news concerns a 13-page report from Websense Security Labs, a San Diego-based security software firm, which covered the state of Internet security in the first half of 2008. The upshot of the report was that 75 percent of Web sites offering malicious code were not hacker sites but legitimate sites whose servers had been compromised. The rate of legitimate sites offering infections was up nearly 50 percent compared to the previous six months.

The report claimed that 60 of the top 100 most popular Web sites had hosted malware or otherwise been involved in its transmission during the first half of 2008.

The biggest factor appears to be the new-wave highly interactive Web 2.0 sites, which allow users to upload all the data that their hearts desire. Some of this data will inevitably contain malware, or is actually crafted as an infection, and the host is not geared to check for such things.

The report also complained that Web servers are increasingly under attack from persistent cross-site scripting (XSS) and SQL injection attacks, as well as DNS cache poisoning.

Obviously, if the big sites are having so many problems, no one is safe. Anyone with a Web server must take security seriously.


How-To




This is a public forum. CMP Media and its affiliates are not responsible for and do not control what is posted herein. CMP Media makes no warranties or guarantees concerning any advice dispensed by its staff members or readers.

Community standards in this comment area do not permit hate language, excessive profanity, or other patently offensive language. Please be aware that all information posted to this comment area becomes the property of CMP Media LLC and may be edited and republished in print or electronic format as outlined in CMP Media's Terms of Service.

Important Note: This comment area is NOT intended for commercial messages or solicitations of business.


Spotlight on Solutions
(Sponsored By Cisco)


Explore ANTenna Blog
Most Recent Posts
ANTenna Blog Topics
     
     
ANTenna Bloggers
ANTenna Blog Roll



Browse by Category

Imaging How-To Center

Document imaging basics, plus how to select a solution

go

FREE Technology Services Locator!

Search our database of 200,000 solution- provider locations by business activity, technology, vertical market, and customer size. Find a technology partner NOW.

go

Tech Term of the Day: DOS internal command

TechEncyclopedia gives you the meaning of today's word, plus more than 20,000 additional IT terms and definitions.


InformationWeek Business Technology Network
InformationWeekInformationWeek 500InformationWeek 500 ConferenceInformationWeek AnalyticsInformationWeek CIO
InformationWeek EventsInformationWeek ReportsInformationWeek MagazinebMightyByte and SwitchDark Reading
Digital LibraryIntelligent EnterpriseInternet EvolutionNetwork ComputingNo Jitter
space
Techweb Events Network
InteropVoiceConWeb 2.0 ExpoWeb 2.0 SummitEnterprise 2.0 ConferenceMobile Business ExpoSoftware ConferenceCSI - Computer Security Institute
Black HatGTECEnergy CampMashup CampStartup Camp
space
Light Reading Communications Network
Light ReadingLight Reading EuropeUnstrungLight Reading's Cable Digital NewsConstantinopleInternet Evolution
Heavy ReadingLight Reading Live!Light Reading InsiderEthernet ExpoOptical ExpoTeleco TVTower Technology Summit
space
Financial Technology Network
Advanced TradingBank Systems & TechnologyInsurance & TechnologyWall Street & TechnologyAccelerating Wall StreetBank Systems & Technology Executive SummitBuyside Trading SummitInsurance & Technology Executive Summit
space
Microsoft Technology Network
MSDN MagazineTechNetThe Architecture Journal
space