| The Cloud Security Newsletter |
| The most trusted source for security and IT professionals | June 2010 Edition |
| |
| | | | | | | | | | LEAD STORY OF THE MONTH | | June SEO Attack Target – World Cup 2010 Fans |
|  |
| Search Engine Optimization (SEO) is a commonly accepted marketing tactic employed by many organizations and attackers. SEO attacks have two main components; ensuring the malicious website is included in the top search results, and convincing users to download and install a malicious executable. But how does one determine what topics are hot at any given time? It is as easy as using tools like Google Trends. It is not surprisingly that in June attackers have taken advantage of the FIFA World Cup -- the most widely viewed sporting event in the world – to target end users. They abuse Hypertext-Matching and PageRank algorithms to force their pages to the top of popular search results. The pages themselves host various types of malware like fake ActiveX controls amongst others. Learn More  | | | | TECH TALK | | Goldman Sachs Security Spending Survey: Big Growth Opportunity for SaaS | | The latest Goldman Sachs Security Spending Survey suggests increased adoption of cloud computing as the proportion of SaaS users grew from 10% to 20%. Consequently, there is also a growing demand for cloud delivered security and IDC predicts 25% growth in SaaS security solutions between 2008 and 2013. Learn More | | | | SECURITY INNOVATIONS | | SQL Injection Attack Targets 1000+ Websites | | The state of internet security remains so poor, that it is trivial for an attacker to find vulnerable web sites that allow for malicious content to be injected. On Monday June 7 2010, Zscaler's Nanolog technology detected one such attack with requests to ww.robint.us/u.js. Over a thousand websites had been infected with a simple <script> tag including the Wall Street Journal and the Jerusalem Post. Learn More | | | | NEWS HIGHLIGHTS | | Can shortened URLs be trusted? | | Those tiny URLs or shrunken web addresses often used in social media sites like Twitter and Facebook could be a potential hazard to your computer. | | | | Google: Malware spreads by using SEO techniques | | At the Usenix workshop on large-scale exploits and emergent threats, Google said that fake antivirus programs accounted for 15 percent of all malware threats that it detects on the web. As of February 2010, it found that more that 11,000 domains were involved in fake antivirus operations. | | | | Malware Is South America's New Growth Industry | | Malware syndicates in China have been implicated in a number of recent high-profile, targeted cyber attacks against American companies and organizations, but the latest data from security software vendor Zscaler indicates a new and equally dangerous threat is emerging in South and Central America. | | | | SECURITY PRACTITIONER'S COLUMN | | Booth Newspapers Boosts Security with The Cloud | | Booth Newspapers, a strategic media group consisting of eight newspapers in the state of Michigan, struggled to find a comprehensive solution to secure and manage Internet traffic for thousands of employees. Ron Klock, Director of Information, explored various appliance-based options but the high costs of backhauling traffic to a central location or maintaining local point products made the solutions infeasible, prompting the investigation of SaaS solutions. Learn More | | | | | "[Cloud delivered security] has freed us from the operational chores of managing appliances and reduced the time required for Internet access administration." |  | | - Ron Klock, Director of Information | | | | | EDUCATIONAL REPORT | | GARTNER: Magic Quadrant for Secure Web Gateway 2010 | | The pressure continues to build on organizations to open up their network to Web 2.0 applications and Secure Web Gateways are evolving rapidly. Obtain a complete overview of the market and understand the selection criteria necessary to identify an ideal for your business. Learn More | | | | | | | | | If you or your colleagues would like to receive this newsletter, please sign up.
| | | | | | Copyright 2010 Zscaler, Inc.
392 Potrero Avenue, Sunnyvale, CA 94085 | 1.866.902.7811 | info@zscaler.com. |  | | |
 |
Note: Your e-mail is in our mailing list as security.world@gmail.com, if you wish to be removed from our mailing list please use the link below to unsubscribe from any future mailings. We will respect all unsubscribe requests http://cp20.com/Tracking/t.fo?B9Mh--KCV-7KXAo2 
No comments:
Post a Comment