White Paper From Exploit Prevention Labs Examines New Realities of Web 2.0 Security

The Paper Demonstrates How Conventional Approaches are Inadequate Against New Breed of Web Security Threats

ATLANTA, Dec. 22 /PRNewswire/ -- Exploit Prevention Labs (http://www.explabs.com/), a leading developer of safe surfing software that protects against phishing, social engineering, and other web-based exploits, today published a new paper exploring the new security risks accompanying the rise of Web 2.0. The white paper, entitled, "Securing Web 2.0: Why Security 1.0 is no Longer Enough," is available for download at http://www.explabs.com/about/resCenter/wp.asp.

"We've looked at how the popularity of Web 2.0 sites like MySpace and YouTube creates unintended security risks for users," said Roger Thompson, CTO and co-founder of Exploit Prevention Labs. "Unlike previous generations of Web applications, today's Web 2.0 applications are characterized by heavy reliance on user-generated content and cross-linking across multiple sites using IFRAMEs, RSS, and cross-site scripting. When users visit a trusted Web 2.0 site, their browser is pulling information, data and malware from many other sources, some of which may not be so trustworthy."

Amongst the topic covered are the nefarious techniques used by international cybercrime organizations to raid bank and brokerage accounts or steal usernames, passwords, account numbers and other personally identifiable information. Other techniques discussed include drive-by downloads that take advantage of known security vulnerabilities in common applications; ransomware that extorts payment from users at virtual gunpoint; social engineering and phishing scams; botnet recruitment, and identity theft.

By dissecting Web 2.0 security risks, the paper demonstrates that traditional security solutions such as anti-virus, anti-spyware, firewalls, and patch management -- while critical -- are woefully inadequate when it comes to protecting against today's threats. The paper calls instead for a fresh approach to Web 2.0 security that recognizes and leverages the collaborative nature of Web 2.0.

By harnessing the collective virtual eyes and ears of Web 2.0 users, next generation security solutions, such as those offered by Exploit Prevention Labs, will provide real-time threat monitoring and protection against dynamic Web 2.0 threats.