Security Vault - Conventional Security Missing Attacks

Networks of Web malware-infected "robot" machines are the underlying infrastructure enabling an epidemic of Internet cybercrime.

"...the accelerated use of the Internet has also enabled a dramatic rise in criminal activity that exploits this inter- connectivity for illicit financial gain and other malicious purposes," according to the US GAO

Legacy security such as firewalls, desktop antivirus and network intrusion prevention have been rendered essentially useless against the multi-vector, polymorphic malware threat. By utilizing zero-day vulnerabilities, social engineering, and blended attacks, cyber criminals are aggressively using Web malware to compromise computers worldwide and grow their 'botnets'.

• Zero day attacks enable criminals to exploit vulnerabilities before patches or signatures are available. Web malware can spread undetected by legacy network security products when Web technologies are exploited to circumvent traditional scan & block models.
• Targeted attacks are designed specifically to disrupt and evade security mechnisms using polymorphic variants to bypass signature pattern matching and infiltrating slowly, but steadily, thereby dodging anomaly detection techniques.
• Social engineering attacks manipulate users into installing malicious software bypassing desktop & network security protections.

This exposes enterprises to major liability and financial losses. Web malware and botnets are among the most destructive and expensive threats facing today's enterprises.