Click here to receive your FREE subscription to Campus Technology
News
Malicious Code Hidden in Rich Content Files Tough To Detect, According to Finjan Report
9/26/2008
Finjan, a company that sells security products, said it has uncovered examples of obfuscated code embedded in rich-content files, and not just in HTML-based Web pages on legitimate Web sites. According to the vendor, code obfuscation remains the preferred technique for cybercriminals for their attacks.Since JavaScript is the most-used scripting language for communication with Web browsers, third-party applications such as Flash player, PDF readers and other multimedia applications add support for JavaScript writing as part of their application, the company reported in its September 2008 "Malicious Page of the Month." This offers "crimeware" authors the opportunity to inject malicious code into rich-content files used by ads and user-generated content on Web 2.0 Web sites.
According to the report, only three of 36 virus-scanning products tested were able to detect the presence of that type of malicious code, which is dynamically embedded in the JavaScript.
Online ads and user-generated content on Web 2.0 Web sites are becoming more popular in directing users unwittingly to malware-infected content files. A recent survey by the company found that 46 percent of respondents stated that their organization didn't have a Web 2.0 security policy in place.
The company said real-time content inspection is the optimal way to detect and block dynamically obfuscated code, since it analyzes and understands the code embedded within Web content or files in real time--before it reaches users, who may unintentionally execute the Trojan on their machines.
Dian Schaffhauser is a writer who covers technology and business. Send your higher education technology news to her at dian@dischaffhauser.com.
Cite this Site
copy text (above) for proper citation
Recommended Reading
- UNLV Hospitality Students Learn on Micros Opera
The William F. Harrah College of Hotel Administration at the University of Nevada, Las Vegas (UNLV) has received a donation from Micros Systems that will allow the college's students to use its Opera hospitality software in classes.
- Cambridge Reduces Support Needs in Move to New Wireless System
The University of Cambridge is deploying Aruba Networks' wireless LAN equipment to replace a legacy network that had become unmanageable and a drain on resources. Since early 2008, about 100 Aruba AP-65 access points have been deployed, along with dual MMC-6000 Multi-Service Mobility Controllers.
- iKnow Social Learning Platform Expands Language Support
Cerego has released new content creation tools for its iKnow social learning platform, adding support for creating learning modules in any of 188 languages. The company has also expanded language support for the text-to-speech technology used in the iKnow platform.
- Smart Debuts Updated Whiteboard Lineup
Smart Technologies last week unveiled updates to its Smart Board 600i interactive whiteboard system. The new lineup includes both a standard 4:3 and a widescreen 16:10 model, each featuring new boom-mounted, short-throw projectors.
- SUNY's Binghamton Monitors Network with Lancope's StealthWatch
Binghamton University, part of the State University of New York (SUNY) system, is using StealthWatch from Lancope to help streamline network management, control, and security with visibility of network behavior. Binghamton has an IT network that spans 20,000 client endpoints and six geographic locations. After contending with worm propagation and other security threats that affected network performance, the university's network management team sought a way to increase visibility of network traffic and analyze network behavior for potential threats.
- Tufts Grants Rights for Mileage-Increasing Transportation Technology to Electric Truck
Tufts University has optioned rights to a technology that can recharge the batteries of any hybrid electric and electric-powered vehicle while it is driven. The Tufts-developed technology could increase by 20 percent to 70 percent the miles per gallon or total driving range performance of vehicles like the Honda Civic, Ford Escape, and Toyota Prius hybrids and the Tesla Motors and Phoenix Motorcars electric vehicles.
