|By Marketwired .||
|July 23, 2014 12:00 AM EDT||
CUPERTINO, CA -- (Marketwired) -- 07/23/14 -- Bromium®, Inc., the pioneer of a new model of endpoint security using micro-virtualization, today announced the publication of "Endpoint Exploitation Trends H1 2014," a Bromium Labs analysis of public vulnerabilities and exploits from the first six months of 2014. The research determined that Internet Explorer vulnerabilities have increased more than 100 percent since 2013, surpassing JAVA and Flash vulnerabilities. The report also dissects the anatomy of emerging zero-day attacks, including Action Script Spray and Adobe Reader Sandbox Escape.
Highlights from "Endpoint Exploitation Trends H1 2014" include:
- Hackers increasingly target Microsoft Internet Explorer - Analysis indicates that Microsoft Internet Explorer vulnerabilities have increased more than 100 percent since 2013, a trend underscored by a progressively shorter time to first patch for its past two releases.
- Public JAVA zero-days decline - In 2013, JAVA led among vulnerabilities and public exploits, but this trend has reversed in 2014. In fact, in the first six months of 2014, there has not been a single public JAVA exploit.
- Action Script Spray drives zero-day attacks - Both Internet Explorer and Flash zero-day attacks have leveraged Action Script Sprays, an emerging technique that bypasses address space layout randomization (ASLR) with a return-oriented program (ROP) chain.
"End users remain a primary concern for information security professionals because they are the most targeted and most susceptible to attacks," said Rahul Kashyap, chief security architect, Bromium. "Web browsers have always been a favorite avenue of attack, but we are now seeing that hackers are not only getting better at attacking Internet Explorer, they are doing it more frequently."
Read the Bromium Labs blog about "Endpoint Exploitation Trends H1 2014" at http://labs.bromium.com/2014/07/23/h1-2014-endpoint-exploitation-trends/
Read the Bromium Labs report "Endpoint Exploitation Trends H1 2014" at http://www.bromium.com/sites/default/files/bromium-h1-2014-threat_report.pdf
About Bromium, Inc.
Bromium is re-inventing enterprise security with its powerful new technology, micro-virtualization, which was designed to protect businesses from advanced malware, while simultaneously empowering users and delivering unmatched threat intelligence to IT. Unlike traditional security methods, which rely on complex and ineffective detection techniques, Bromium protects against malware from the Web, email or USB devices, by automatically isolating each user-task at the endpoint in a hardware-isolated micro-VM, preventing theft or damage to any enterprise resource. Bromium's technological innovations have earned the company numerous industry awards including being named as a CNBC Disruptor and a Gartner Cool Vendor for 2013. Bromium counts a rapidly growing set of Fortune 500 companies and government agencies as customers, including NYSE and BlackRock.
Sr. PR Manager
Dec. 3, 2016 02:15 PM EST Reads: 6,943
Dec. 3, 2016 02:00 PM EST Reads: 438
Dec. 3, 2016 02:00 PM EST Reads: 2,463
Dec. 3, 2016 01:30 PM EST Reads: 2,115
Dec. 3, 2016 01:15 PM EST Reads: 581
Dec. 3, 2016 01:00 PM EST Reads: 1,853
Dec. 3, 2016 01:00 PM EST Reads: 284
Dec. 3, 2016 12:45 PM EST Reads: 727
When it comes to cloud computing, the ability to turn massive amounts of compute cores on and off on demand sounds attractive to IT staff, who need to manage peaks and valleys in user activity. With cloud bursting, the majority of the data can stay on premises while tapping into compute from public cloud providers, reducing risk and minimizing need to move large files. In his session at 18th Cloud Expo, Scott Jeschonek, Director of Product Management at Avere Systems, discussed the IT and busin...
Dec. 3, 2016 12:45 PM EST Reads: 3,764
Dec. 3, 2016 12:45 PM EST Reads: 1,942
Everyone knows that truly innovative companies learn as they go along, pushing boundaries in response to market changes and demands. What's more of a mystery is how to balance innovation on a fresh platform built from scratch with the legacy tech stack, product suite and customers that continue to serve as the business' foundation. In his General Session at 19th Cloud Expo, Michael Chambliss, Head of Engineering at ReadyTalk, discussed why and how ReadyTalk diverted from healthy revenue and mor...
Dec. 3, 2016 12:15 PM EST Reads: 1,493
Effectively SMBs and government programs must address compounded regulatory compliance requirements. The most recent are Controlled Unclassified Information and the EU's GDPR have Board Level implications. Managing sensitive data protection will likely result in acquisition criteria, demonstration requests and new requirements. Developers, as part of the pre-planning process and the associated supply chain, could benefit from updating their code libraries and design by incorporating changes. In...
Dec. 3, 2016 12:00 PM EST Reads: 933
"Coalfire is a cyber-risk, security and compliance assessment and advisory services firm. We do a lot of work with the cloud service provider community," explained Ryan McGowan, Vice President, Sales (West) at Coalfire Systems, Inc., in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Dec. 3, 2016 12:00 PM EST Reads: 724
CloudJumper, a Workspace as a Service (WaaS) platform innovator for agile business IT, has been recognized with the Customer Value Leadership Award for its nWorkSpace platform by Frost & Sullivan. The company was also featured in a new report(1) by the industry research firm titled, “Desktop-as-a-Service Buyer’s Guide, 2016,” which provides a comprehensive comparison of DaaS providers, including CloudJumper, Amazon, VMware, and Microsoft.
Dec. 3, 2016 11:45 AM EST Reads: 685
"We are an all-flash array storage provider but our focus has been on VM-aware storage specifically for virtualized applications," stated Dhiraj Sehgal of Tintri in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Dec. 3, 2016 11:45 AM EST Reads: 451