Government Technology
Government Technology: State & Local Government News Articles

Security Vulnerabilities Discovered in New Web 2.0 Environments



Print
Comment
Computer Security

Jul 28, 2008, News Report

Today's Web 2.0 world sparks opportunities for Internet interactivity and community-building, but at the same time, leaves many Web sites and online users vulnerable to open security attacks. Underscoring the importance of security in Web 2.0 environments, executives from Radware will offer valuable security insights as session participants at the upcoming Black Hat USA 2008 Briefings, August 4-7, 2008 in Las Vegas. The Black Hat Briefings are a series of highly technical information security conferences that bring together thought leaders from all facets of the information security world.

Itzik Kotler, Security Operation Center (SOC) team leader and Jonathan Rom, security researcher at Radware, will drive the session, "Jinx - Malware 2.0," and will examine how the shift in browser technologies to compete more aggressively with operating systems (OS) have led toward the rapid development of Web 2.0 malware that is OS and architecture independent.

"Web 2.0 is pushing the boundaries of what today's interactive web sites can do, however in the rush to add features, security often becomes an afterthought," stated Kotler. "During our presentation at Black Hat, we will demonstrate and share the source code of Jinx, a fully implemented JavaScript malware, which is the creation of our research that unlocks a number of interesting vulnerabilities within many Web 2.0 operating environments, including the popular Mozilla product line."

Radware's appearance at Black Hat comes on the heels of the company's launch of its APSolute Immunity security initiative, a new strategic approach that maintains business continuity by protecting the applications infrastructure against existing and emerging network-based threats that cannot be detected by traditional intrusion prevention systems (IPS) such as: application misuse threats, SSL attacks and VoIP service misuse. Coupled with Radware's award-winning DefensePro security solution, this umbrella security strategy allows organizations to move beyond static IPS by mitigating attacks that use legitimate application services for malicious activity.


If You Liked This Article, You May Also Like...


Latest Government Technology News


Industry Solutions for Government

Read real world deployments of technology in government from our sponsors.

View All Industry Solutions

Related Products and Services

Marketplace



This section
brought to you by:


Mobile Communications Survey Executive Summary

More than 200 responses were captured to help gauge the effectiveness and types of communications and situational awareness capabilities currently deployed for emergency response. View the Executive Summary Now!

Dispatch Operations and Interoperability

A New Era in Public Safety BlackBerry® smartphones running on Sprint networks deliver a wide range of applications that are transforming public safety operations.


Hurricane Preparedness Tips When a hurricane hits, are you prepared to keep in touch?


Case Study - Morris County, New Jersey The Morris County Communications Center upgraded to a new trunked radio system with the benefits of a cellular network, extending coverage beyond county lines


Case Study - Iredell County, North Carolina Spanning over 570 sq miles, it became imperative that the Iredell County Emergency Communications, Operations and Management extend it's communications systems to enhance reliability, security, and coverage.


Case Study - City of Anaheim, California The City of Anaheim saw an opportunity to leverage existing GST and partner with nearby cities to enhance safety operations through data interoperability.


Case Study - Charlottesville, Virginia Fire Department Taking advantage of a range of interoperability solution, the Charlottesville Fire Department has achieved a network that can serve as backup to their existing public safety network.


Sprint ERT Go-Kit with GST Optima Rapid, interoperable communications for emergencies, drills and field exercises.


Optimal Interoperability Until recently it was not possible to cost effectively connect commercial networks to LMR systems. Improvements in communications technology have resulted in greatly enhanced operational capability and have reduced the log-term cost of communications system ownership.


Multi-agency interoperability for Public Safety Establishing cross-agency, real-time situational awareness is critical to effective incident management as well as daily resource management.


Video


DHS Grant Links

DHS Grants and Assistance Programs Link to overview of available grants administered by The Department of Homeland Security (DHS)


Fact Sheet: Fiscal Year 2008 Preparedness Grants Major changes in funding and focus for 2008 DHS grant programs


Remarks on 2008 Homeland Security Grant Guidance DHS Secretary Michael Chertoff and FEMA Administrator David Paulison


$1.8 billion in DHS Homeland Security Grant Program Awards


Funding Public Safety Communications Whether you are a law enforcement agency, looking for funding to support an interoperable communications solution or a school, seeking to improve communications between building administrators, grants may provide the funding you need to implement a robust, scalable communication system.


Yes! I would like more information about Sprint's dispatch operations and interoperability solutions.