Web Security Survey Report – H1/08
Finjan’s Web Security Survey H1/2008 shows, that almost all participating organizations perceive cybercrime as a major business risk, including loss of customers, brand name damage and potential lawsuits.  The majority also indicated that they see sensitive corporate information and IP to be at risk of data theft. The survey also found that the majority of the CIOs and CSOs are more concerned about data-stealing malware entering their networks than about downtime and loss of productivity due to virus infections.

Web Security Trends Report - Q2/2008
This report outlines the latest developments in today’s Crimeware business environment. We show the business cycle of data collecting and trading by today’s cybercriminals. Today’s cybercrime enemy is organized in hierarchical cybercrime organizations, and operates and benefits from stolen data deploying sophisticated pricing models, Crimeware business models for optimal operation, and Crimeware drop zones and campaigns for optimal distribution of the Crimeware.

Web Security Trends Report - Q1/2008
This report talks about Crimeware-as-a-Service as the latest development in the ongoing commercialization of cybercrime.
We take a look at the history of the cybercrime commercialization economy, and show the latest trend that focuses on the commercialization of user and business data as a service (a data feed service that provides “customers” with stolen data generated from successful infections).

Web Security Trends Report - Q4/2007
This report describes findings related to a new genre of crimeware Trojans that utilize regular Web 2.0 technology and websites to provide cybercriminals with an easy and scalable command and control scheme. The latest “Trojan 2.0” attacks exploit the trust that legitimate web services enjoy vis-a-vis reputation-based security services. It also presents a review of the year’s web security trends, a summary of 2007 forecast versus reality and an outlook for 2008.

Web Security Trends Report - Q3/2007
This report presents new findings related to a new attack vector exploiting vulnerabilities in widgets and gadgets. It also discusses the growing use of sophisticated Trojan, keylogger, and rootkit crimeware that targets financial institutions, including a detailed analysis of a crimeware Trojan customized to steal information from users performing online financial transactions. The report includes several “in the wild” examples illustrating the proliferation of crimeware toolkits and affiliation networks. Suggested advice as to how corporate users can protect themselves from these threats is also provided.

Web Security Trends Report - Q2/2007
This report presents new findings and “in the wild” examples related to a new genre of evasive attacks, as well as revealing the financial affiliations and business models driving modern website attacks. The report provides examples illustrating the growing use of online advertising as an attack vector to reach large numbers of users. The report offers suggestions as to how companies can protect themselves from these threats.

Web Security Trends Report - Q1/2007
This report presents new research and statistical breakdowns illustrating the universal nature of malicious code, as well as exposing the presence of malicious code on webpages translated by online translation services. The report includes “in the wild” examples of dynamically obfuscated malicious code, as well as suggestions as to how companies can protect themselves from these threats.

Web Security Trends Report - Q4/2006
This report presents new findings and “in the wild” examples related to the increased use of code obfuscation as a means of bypassing traditional signature-based solutions in order to propagate malicious code. It also provides a summary of key trends identified by Finjan’s MCRC during 2006 and a brief outlook for 2007. The report offers suggestions as to how companies can protect themselves from these threats.

Web Security Trends Report - Q3/2006
This report presents new findings related to malicious code found on storage and caching servers, as well as new insight into trends related to sophisticated threats that target Web 2.0 platforms and technologies. The report includes examples of malicious code found by MCRC “in the wild”, and provides suggestions as to how companies can protect themselves from these threats.

Web Security Trends Report - Q2/2006
This report describes the current trends in the web security sector during Q2 2006, as reflected in MCRC’s ongoing research activities. The report includes “In the Wild” examples of malicious code, as well as suggestions as to how companies can protect themselves from these threats.

Web Security Trends Report - Q1/2006
This report describes general trends in the security industry during 2005 up to the end of the first quarter of 2006, including examples from our own research, and takes a look ahead at the types of new and emerging threats we can expect to see.

The Story behind Microsoft Data Access Components (MDAC) Vulnerability

Malicious Code In The Wild
This report presents examples of malicious code in the wild, as detected by Finjan’s Malicious Code Research Center (MCRC).

New Critical Vulnerability in the Microsoft Data Access Components (MDAC) Function Which Can Be Exploited via Internet Explorer
Remote code execution vulnerability exists in the RDS.Dataspace ActiveX object that is provided as part of the ActiveX Data Objects (ADO) and distributed in MDAC. This vulnerability was discovered by Finjan’s Malicious Code Research Center.

Vulnerability in CreateTextRange() Function Remote Code Execution Exploit
A vulnerability was found in Microsoft Internet Explorer HTML Rendering Engine which can allow remote code execution. An attacker can exploit this vulnerability by creating a specially crafted script and uploading it to a malicious website.

Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
WMF image files are being used by attackers to run malicious code. This malicious code is executed the moment the image is viewed. A user does not necessarily need to click on the image file in order to trigger the exploit.