Online content-control specialist Websense Inc. has this week revealed that diligent researchers from its Websense Security Labs outfit were first on the scene in uncovering a sizeable Javascript injection attack that recently targeted hundreds of thousands of legitimate Web destinations including sites belonging to the United Nations and British government.
New Javascript attack targeted UN and UK websites, says Websense. Credit: Websense.
While Websense is keen to point out that its Websense Web security customers were not affected by the attack, and that essential information was duly protected, the California-based company has outlined that the attack was certainly designed to steal potentially sensitive user information.
According to a CNN report, this latest Javascript offensive echoes a growing trend in attacks that look to abuse exploits in security systems designed to protect their users and customers through signatures and Web reputation. Also, by simultaneously targeting such large quantities of reputable destinations, the attack is able to reap a significant amount of user information in an extremely short period of time.
“This attack seeks to exploit users who trust that their favorite, legitimate Web sites are safe,” commented Dan Hubbard, VP of security research at Websense Inc. “Unfortunately, we believe that attacks that target popular Web sites -- those with the most unique visitors -- will be on the rise.”
Websense indicates that certain similarities in methodology suggest the latest assault emanates from the same group responsible for targeting tens of thousands of reputable Web sites last month. Specifically, the security outfit says that March targets not yet fully protected following the prior attack have once again fallen into the crosshairs.
In referencing the new Javascript attack against popular sites, Websense is also highlighting the ever-increasing need for real-time online protection via its Websense ThreatSeeker Network, which tracks and runs analysis on literally billions of pieces of unusual Net content each day.
By adopting such a thorough and rapid real-time monitoring method, the protection system is capable of swiftly spotting infected sites and also those about to be infected. Websense also offers that the ThreatSeeker Network can adapt to the potential perils hidden within the Internet much quicker than standard online security solutions and conventional Web filters.
There are currently no comments for this article. Be the first to comment!
Advertising
There are currently no comments for this article. Be the first to comment!