Websense: NEW RESEARCH: Websense Security Labs Reports 'User Trust' Targeted Attacks

Websense, Inc. (NASDAQ: WBSN) today revealed the findings from its bi-annual research report Websense Security Labs, State of Internet Security, Q3-Q4 2009. The full report can be downloaded at http://www.websense.com/threatreport. Major findings from the report include:

Websense Security Labs identified 13.7 percent of searches for trending news/buzz words (as defined by Yahoo! Buzz & Google Trends) led to malware. Search engine optimization poisoning attacks target the top searches enabling hackers to drive traffic to their sites.

In contrast to the first half of the year where mass injection attacks like Gumblar, Beladen and Nine Ball promoted a sharp rise in the number of malicious Web sites, Websense Security Labs has seen a 3.3 percent decline in the growth of the number of Web sites compromised. Malware authors have replaced their traditional scattergun approach with focused efforts on Web 2.0 properties with higher traffic and multiple pages.

Overall, comparing the second half of 2009 with the same period in 2008, there has been an average growth of 225 percent in malicious Web sites.

Malware authors continue to capitalize on Web site reputation and exploiting user trust with the second half of 2009 revealing 71 percent of Web sites with malicious code are legitimate sites that have been compromised.

Web 2.0 sites allowing user-generated content are a top target for cybercriminals and spammers. Websense Defensio technology enabled Websense Security Labs to identify that 95 percent of user-generated comments to blogs, chat rooms and message boards are spam or malicious.

Websense Security Labs found that 35 percent of malicious Web attacks included data-stealing code, demonstrating that attackers are after essential information and data.

The Web continues to be the most popular vector for data-stealing attacks. In the second half of 2009 the Websense Security Labs found that 58 percent of data-stealing attacks are conducted over the Web.

Tens of thousands of Hotmail, Gmail and Yahoo! email accounts were hacked and passwords stolen and posted online which resulted in a marked increase in the number of spam emails.

Websense Security Labs identified that 85.8 percent of all emails were spam.

During the second half of the year, 81 percent of emails contained a malicious link.

Every hour, Websense Security Labs ThreatSeeker Network scans more than 40 million Web sites and ten million emails for unwanted content and malicious code. Using more than 50 million real-time data collecting systems, ThreatSeeker Network monitors and classifies Web, email and data content -providing Websense with unparalleled visibility into the state of content on the Internet and in email.

Quote:

Websense Chief Technology Officer Dan Hubbard -- "Malicious hackers are really focusing their efforts to ensure they're driving their victims straight to them. By poisoning search results and focusing on Web 2.0 sites, their efforts are often more efficient and effective. The blended nature of today's threats combined with compromised legitimate sites, takes full advantage of an increased perception of trust when using search engines and interacting with friends or acquaintances online." Links:

Full Report: http://www.websense.com/threatreport

Webinar: http://connect.websense.com/system/content/folder/listing?date=2010-02-03T22:12:53.750%2B00:00&sco-id=10596123&set-lang=en

Archived Webinars: http://www.websense.com/content/ProductResources.aspx

Video:

State of the Internet video recap: http://www.youtube.com/watch?v=Tih6hLNu5S8

Websense Security Labs on YouTube: http://www.youtube.com/user/wslabsutube

Websense YouTube Channel: http://www.youtube.com/user/WBSNMKTG

Click to Tweet:

13.7 percent of searches for trending news led to malware @websenselabs threat report http://bit.ly/LTrbE

225 percent growth of malicious Web sites from last year @websenselabs threat report http://bit.ly/LTrbE

71 percent of Web sites with malicious code are legitimate sites that have been compromised @websenselabs threat report http://bit.ly/LTrbE

35 percent of malicious Web attacks included data-stealing code @websenselabs threat report http://bit.ly/LTrbE

Other Resources:

The Websense ThreatSeeker Network: Leveraging Websense HoneyGrid Computing http://securitylabs.websense.com/content/Assets/ThreatSeeker_whitepaperFNL.pdf

Websense Security Labs Security Effectiveness Center: http://securitylabs.websense.com/content/ThreatUpdateCenter.aspx

Websense Security Labs Attack Information Center: http://securitylabs.websense.com/content/threatResource.aspx

Join Websense on Facebook: http://www.facebook.com/websense

Follow Websense Security Labs on Twitter: http://twitter.com/websenselabs

Websense Blog RSS feed:

All Websense News RSS Feed Websense Security Labs Alerts RSS feed: http://securitylabs.websense.com/content/alertsRSS.xml

Websense Security Labs Blog RSS feed: http://securitylabs.websense.com/content/blogsRSS.xml

About Websense, Inc.

Websense, Inc. (NASDAQ: WBSN), a global leader in integrated Web, data and email security solutions, provides Essential Information Protection for approximately 40,000 customers worldwide. Distributed through its global network of channel partners, Websense software and hosted security solutions help organizations block malicious code, prevent the loss of confidential information and enforce Internet use and security policies. For more information, visit www.websense.com.

Websense is a registered trademark of Websense, Inc. in the United States and certain international markets. Websense has numerous other registered and unregistered trademarks in the United States and internationally. All other trademarks are the property of their respective owners.

CONTACT: Jennifer Wong, Websense e-mail: jewong@websense.com WWW: http://www.websense.com/

((M2 Communications disclaims all liability for information provided within M2 PressWIRE. Data supplied by named party/parties. Further information on M2 PressWIRE can be obtained at http://www.presswire.net on the world wide web. Inquiries to info@m2.com.

Related terms: email, e-mail, internet, nasdaq, online, security, software, technology, traffic, video, web