About
Subscribe

Vandals on the rise

By Brett Myroff
Johannesburg, 14 Feb 2000

A recent report produced by the FedCIRC Advisory issued warnings generated by several US federal security teams that vandal threats are on the rise. eSafe, the anti-virus and content security company, has long since recognised the threat of malicious code and were the first anti-virus company to develop vandal protection as part of their content protection solution for enterprise and SoHo environments.

The increased awareness of vandal threats point to a focus emerging in the hacker community , says Brett Myroff, CEO of eSafe Technologies SA. "The fact that governmental watchdogs are recognising the escalating threat of vandals should alert people to the risks associated with use of the Internet and electronic mail," says Myroff.

Hackers use a method called cross-site scripting. It involves embedding hostile HTML script or tags that are not usually recognised by Internet servers that process queries - such as a search engine for example - resulting in any user of a Web browser or system being vulnerable to attack.

"As soon as a user clicks on a link that contains the malicious script, the code is send to the Web server. The Web server will return the HTML along with the hostile code embedded in it. As the page is viewed the code could be executed," explains Brett Myroff, CEO of eSafe Technologies SA. "eSafe, however, has taken a proactive stance to content security and has technology in place that nullifies these threats."

Myroff is referring to a fundamental feature in all eSafe products, namely the Sandbox facility that constantly monitors both computer and Internet for hostile activity. If malicious code attempts hostile activity eSafe traps and quarantines the vandal, alerting users to its activity and allowing appropriate action without damage to data.

eSafe Gateway blocks malicious Java/Vbscripts in any Web page even if it is dynamically generated, while eSafe Enterprise/Desktop will do the same but offers additional protection against commands that access the user`s hard drive or perform other dangerous activity.

"Traditionally reactive content security can not keep pace with hacker`s endeavours to infiltrate networks, causing eSafe to be a step ahead of the traditional security institutions due to the fact that vandal activity can be recognised and isolated without the latest table updates," Myroff concludes.

Share

Editorial contacts

Deborah O`Connell
PR Connections
(011) 885 3141
esafe@pr.co.za
Brett Myroff
eSafe Technologies
(011) 444 4000
brettm@esafe.co.za