Top Five Vulnerabilities Attackers Use Against Browsers

Home

Slideshows

1 | 2 | 3 | 4 | 5 | 6 | 7

Top Five Vulnerabilities Attackers Use Against Browsers-3

Code execution exploits in plug-ins

Plug-ins are probably the most well-known vector for drive-by downloads (attacks that silently download and run native code on your system). From Flash to Silverlight to Java, even plug-ins from large, reputable vendors have been repeatedly found to have vulnerabilities used in malware attacks. Like browser exploits, vulnerabilities of this type are typically patched by vendors in short order, but outdated copies of browser plug-ins far outnumber the updated ones.

Ways to avoid: Keep your plug-ins updated, and uninstall plug-ins and extensions that you don't use. Browsers are getting better at warning users about outdated plug-ins, so don't ignore the warnings.

Web browsers are the primary target for many attackers these days, because so much sensitive data passes through them. From casual shopping to enterprise management systems to military operations, browsers have become the primary vehicle people use to access network-connected systems. Unfortunately, browsers have a long and storied history of vulnerabilities that have provided attackers with a lucrative and near-endless supply of victims upon which to prey. Quarri Technologies, Inc., a Web information security software company, has identified some of the top vulnerabilities attackers use against browsers.

Note: This slideshow is focused on browser vulnerabilities, not website vulnerabilities (SQL injection attacks, XSS, XSRF, et al). The distinction is subtle but important.

More Slideshows

PAM Solutions: Critical to Securing Privileged Access

To protect the company from those insiders who abuse their privileged access and from hackers with stolen credentials, many companies are turning to a privileged access management (PAM) solution. ... More >>

How Can We Fix the Fake News Problem?

Is fake news a security issue? Some say yes, as it can be used as a social engineering tool to spread disinformation and conceivably to get unsuspecting users to click on malicious links. ... More >>

The World According to Blockchain

Blockchain comes with many costs and is surrounded by confusion. Here, we examine realistic use cases, drawbacks and the potential of blockchain. ... More >>

Subscribe Daily Edge Newsletters

Advertiser Disclosure: Some of the products that appear on this site are from companies from which QuinStreet receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. QuinStreet does not include all companies or all types of products available in the marketplace.