Security Threats — Part I

Targeted phishing. While consumers are becoming aware of generalised phishing, organizations’ employees are much less prepared to deal with targeted phishing. We expect to see more phishing targeting specific companies.

 

Operating Systems Kernel Vulnerabilities. Though traditionally more difficult to exploit, vulnerabilities in an operating system kernel are far more severe than application vulnerabilities in that they can affect a multitude of applications and can be exploited in ways that silently subvert security defences.

 

Client-side vulnerabilities. We expect to see a continued rise in vulnerabilities affecting everything from JavaScript parsing in media players to spreadsheet applications.


Web-based worms. The number of worms propagating using Web-based cross-site scripting attacks in 2006 only scratched the surface of this potentially enormous threat. We expect to see a significant rise in worms that spread by injecting code into Web forms such as blog comments and shared community sites.

Comments are closed.