World Wide Web Day on 1 Aug 2023: Comment from Satnam Narang, Sr. Staff Research Engineer, Tenable

“On this World Wide Web Day, it’s important to recognise the significant strides made in web browser security. Towards the earlier part of this century, browsers were problematic, as flaws in Microsoft Internet Explorer, the most popular browser at the time, as well as browser plug-ins like Microsoft ActiveX and Adobe Flash, provided attackers with reliable entry points onto the systems of internet users.

“Decades later, through improvements in technology such as sandboxing, which isolates the ability to access the underlying system, cybercriminals have broadly pivoted away from web browsers as a primary threat vector. That said, advanced persistent threat (APT) groups remain determined to find what is known as vulnerability chains, which pair two or more vulnerabilities, to escape browser sandboxes and reach the underlying system. These APT groups aren’t interested in targeting the average consumer.

“While web browsers were the de facto way of accessing the world wide web, the evolution of mobile phones has also evolved how we interact with the web, primarily through the use of apps. Now, threat actors may develop malicious apps and post them on official and unofficial app stores, which can enable them to financially benefit from their victims by signing them up for premium services or stealing sensitive information from their devices.” Satnam Narang, Sr. Staff Research Engineer, Tenable.

 

Related posts

Advancing IT Support to the Next Era: TeamViewer Integrates Microsoft Teams into its AI-Powered Insights

“Automation Anywhere: Pioneering the Transformation of Enterprise Business Processes in India”

Accenture Expands Generative AI-Powered Cybersecurity Services and Capabilities to Accelerate Clients’ Resilience and Reinvention

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Read More