by Ermie C
This article is about security researchers from ESET are detecting new ways on how new Malware is being inserted into websites. This was discovered in a Russian web space and was really found unexpectedly through the use of mouse cursor movement. However, they reveal that this isn’t a regular attack anymore to just make a program that redirects and installs a program automatically unto a user’s computer, this is actually a rogue js code that installs itself in the head tag in an html page. This makes it so that it’s harder to find. Now that because more and more developers are using JS for their websites, it’s becoming a more common thing to learn and manipulate. A hacker’s use of the mouse movement program to is evade the purpose of web crawlers that companies use for security to detect malware. The researchers in ESET seem impressed because programmers are getting more “proactive” in changing up their game plan to infect user computers.
I chose this article because it’s very smart on how these hackers are changing their strategy to hack. It means that their just not throwing in mindless bots to hack other peoples pages. It’s obviously a crime but, i’m more on the impressed side because as web developers needing to learn java script, we need to make the code an extension of our knowledge. This is because if we’re just mindlessly creating code to make something look pretty, then we’re forgetting that there are two sides of the spectrum. The aesthetic side and the secure side, we must know both in order to become a genuine web developer for web applications and that is also the reason why it pertains to the class.
Constantin, L. (2012, April 9). Web Attacks Use Smart Redirection to Evade URL Security Scanners. PC World. Retrieved May 13, 2012, from http://www.pcworld.com/businesscenter/article/253426/web_attacks_use_smart_redirection_to_evade_url_security_scanners.html