The web is now the favored attack channel for cybercriminals. It’s easy to see why. With millions of websites at their disposal, the web is a cybercriminal’s playground.
Everyday cybercriminals take over 25,000-40,000 legitimate websites. When your users visit one of those sites they can become infected by malware that steals data, consumes computing resources, and/or renders the user’s machine useless.
Cybercriminals take over legitimate websites by embedding invisible iFrames within the sites’ HTML code. When the user goes to an infected website, the iFrame executes on the user’s machine but is not rendered on the screen. The iFrame points to a website that the cybercriminal controls and that contains malware. If the user has the vulnerable application installed that the malware exploits, the machine becomes infected.
User education is a large part of preventing web-based malware infections. In the old days, malware and spam was a “push” effort. It was sent to users through the network gateway. Now users are tricked into “pulling down” bad content. We advise companies to educate users on safe web browsing practices. In addition, you should implement rigorous patching processes and a comprehensive web security and control solution. Such a solution can minimize your risk of web-based malware infection by:
- Limiting your vulnerabilities with application control
- Preventing users from visiting offensive content with live URL filtering
- Blocking the latest drive-by script attacks with anti-malware filtering
- Protecting data and malware from “calling home” with data loss prevention control