WedgeNetworks

Home About Wedge

Security Matters Magazine

  • Share
  • Print

SECURITY MATTERS Magazine Uses Wedge Networks Expertise to Describe How Businesses Can Ensure Security Against Web Threats, Like Conficker.

CALGARY, AB. April 1, 2009 – Today is April Fool’s Day and millions of people are on edge to learn if the Conficker virus will attack their systems. Last week, media reported the possibility of an April Fool’s Day scare where the Conficker virus will be triggered to exploit vulnerable Microsoft operating systems, take control of PCs, send spam, infect other computers and more.

Hoax or not, web threats remain serious issues. Malware attacks are rapidly evolving to advanced, polymorphic stages that are beginning to cripple business systems – take the German Defense Ministry as an example. The Conficker worm is no exception.

Current PC-based patching solutions are equivalent to antibiotics preventing infectious diseases. These patching solutions are costly and largely ineffective in preventing web-based viruses like the Conficker worm from attacking vulnerable endpoints, including computers, laptops, and servers. The solution is this: prevent attacks from even reaching PCs. While not every organization has specialized security measures in place, there are steps they can take to increase their security from web threats.

Step 1: Ensure security updates are completed and current.

Patching is the traditional protection method, but according to industry group Secunia, only 5 per cent of computers are properly patched. If traditional protection is the only option at current, it is highly advised that IT departments ensure all system and antivirus programs are up to date.

Step 2: Monitor Trends and Threats

Malicious code like Conficker can also disable endpoint anti-virus engines and take advantage of “lag” periods between outbreak and inclusion as a signature. All these updates, patches, and changes need to be monitored and maintained; however, this increases overhead costs and human error becomes inevitable.

Step 3: Educate Your Staff

Most business employees are not educated about malware and threats. Therefore, it is important for businesses to proactively educate staff about proper internet usage.

SIDEBAR: CONFICKER FACTS

  • Conficker is essentially a 'remote control' program that is expected to contact a command center come April 1, 2009 to further exploit PCs and servers. Once activated, it exploits other computers and forms a 'peer-to-peer' network, where the virus can be commanded to send spam, infect other computers, and so on.
  • Conficker (Downup, Downadup, or Kido) targets systems using Microsoft Windows operating systems (Windows 2000, Windows XP, Windows Vista, Windows Server 2003 as well as Windows Server 2008 R2 Beta and Windows 7 Beta).
  • First known threat of Conficker was a few days after Microsoft released its emergency patch for Windows on October 15, 2008 (MS08-067).
  • Conficker is a polymorphic malware and has the ability to attack using multiple vulnerability vectors.
  • It is projected to be the worst infection since the SQL Slammer of 2003 with an estimated 7 to 15 million PCs infected worldwide.

Step 4: Implement Network-level Protection

Today, more and more businesses are moving away from traditional endpoint protection to network-level web security appliances. These new security platforms prevent attacks from even reaching endpoints by performing content reconstruction, inspection, and manipulation to determine safe content.

When these steps are taken with due diligence, businesses are protected against threats like Conficker more securely and, as a result, require less IT resources, thus saving on overhead costs.

Hongwen Zhang is the President and CEO of Wedge Networks Inc., a technology leader in high performance network-based web security solutions (www.wedgenetworks.com). Its technology leadership in deep content inspection allows companies to protect against new and emerging web-based threats that traditional scanning methods have difficulty intercepting and controlling. Specialized in malicious-code detection and filtering at the network layer, Wedge Networks’ solutions touch millions of users from SMBs to enterprises.

For more information about Wedge Networks and its BeSecure appliance, please visitwww.wedgenetworks.com.

About Wedge Networks Inc.

Wedge Networks provides high performance network based web security solutions to enterprises and service providers worldwide. Our technology leadership in deep content inspection allows organizations to protect against new and emerging web based threats that traditional scanning methods have difficulty intercepting and controlling. Specialized in malicious-code detection and filtering at the application layer, our solutions touch millions of users and provide protection for utilities, service providers, heath care, oil and gas, government, web sites, and many other enterprise customers. Wedge Networks is headquartered in Calgary, Canada and has international offices in San Jose, USA and Beijing, China. For more information, please visit www.wedgenetworks.com.

About Wedge BeSecure

Wedge Networks’ award-winning BeSecure Web Security appliance allows enterprises and service providers the ability to detect, block and defend against web-based malicious attacks that steal data, disrupt networks and damage credibility. The BeSecure suite of products include: BeSecure Web Anti-Virus Module, BeSecure Anti-Spam Module, and BeSecure Webfilter Module. For more, please visit http://www.wedgenetworks.com/products.html.

Media Contact:

Arlene Worsley
Brookline Public Relations, Inc.
P: 403-538-5641 x106
C: 403-650-7086
This e-mail address is being protected from spambots. You need JavaScript enabled to view it