Comments on: Anti-Virus For All http://www.cutawaysecurity.com/blog/archives/618 Cutaway's Observations, Opinions, Rants, Raves, Tantrums, and Tirades Tue, 16 Feb 2010 06:48:31 +0000 http://wordpress.org/?v=2.8.4 hourly 1 By: cutaway http://www.cutawaysecurity.com/blog/archives/618/comment-page-1#comment-31170 cutaway Wed, 29 Jul 2009 14:25:10 +0000 http://www.cutawaysecurity.com/blog/?p=618#comment-31170 @doob, Thank you for your input. Don @doob,

Thank you for your input.

Don

]]> By: Richard Wang http://www.cutawaysecurity.com/blog/archives/618/comment-page-1#comment-31161 Richard Wang Mon, 27 Jul 2009 19:08:46 +0000 http://www.cutawaysecurity.com/blog/?p=618#comment-31161 Protecting your own servers, whatever the operating system may be, is about more than being a good internet neighbor. If your site is broken into it may be used to launch attacks against targets much closer to home than an overseas company. Attacks installed on your site can affect your visitors and thereby have a direct consequence for your own reputation. For example, it is believed that the theft of FTP credentials, used to upload content to websites, was behind a significant proportion of the recent <a href="http://www.sophos.com/blogs/gc/g/2009/05/14/malicious-jsredir-javascript-biggest-malware-threat-web/" rel="nofollow">Gumblar (Troj/JSRedir-R)</a> attacks against websites. Stolen credentials work irrespective of your server platform, but anti-virus protection would alert you to the breach as malicious code is installed on your servers. Richard Wang - SophosLabs Protecting your own servers, whatever the operating system may be, is about more than being a good internet neighbor. If your site is broken into it may be used to launch attacks against targets much closer to home than an overseas company. Attacks installed on your site can affect your visitors and thereby have a direct consequence for your own reputation.
For example, it is believed that the theft of FTP credentials, used to upload content to websites, was behind a significant proportion of the recent Gumblar (Troj/JSRedir-R) attacks against websites. Stolen credentials work irrespective of your server platform, but anti-virus protection would alert you to the breach as malicious code is installed on your servers.

Richard Wang – SophosLabs

]]>