You're safe; how about your customers?
Filed in archive Security by Scott Wilson on March 29, 2008
Hopefully, dear readers, you are not among those many organizations which are currently undergoing sustained attack of their websites by the suddenly expanding iframe vulnerability designed to infect users computers from cached search results.
As the obvious, or easy, attack vectors are being slowly eliminated in web server operating systems and web services, these sorts of attacks are becoming increasingly common and probably represent the next wave of significant threats. They're going to be difficult to combat for traditional security staff, because they are oriented more toward the organization's clients or customers than internal technology assets. Dealing with such vulnerabilities requires a substantially different mindset and core mission and it remains to be seen how quickly IT departments (which have thus far shown amazing flexibility in responding to threats) will adapt.
As the obvious, or easy, attack vectors are being slowly eliminated in web server operating systems and web services, these sorts of attacks are becoming increasingly common and probably represent the next wave of significant threats. They're going to be difficult to combat for traditional security staff, because they are oriented more toward the organization's clients or customers than internal technology assets. Dealing with such vulnerabilities requires a substantially different mindset and core mission and it remains to be seen how quickly IT departments (which have thus far shown amazing flexibility in responding to threats) will adapt.
Permalink: You're safe; how about your customers?
Tags:
security web attack 2007 2008 open+source january+2008 book+yours
Trackback: http://www.creative-weblogging.com/cgi-bin/mt-tb.pl/118469
