Sourceforge Wiki Page Filled with Search Engine Spam…

Sourceforge.net has a wiki subdomain which allows solution providers to add their own relevant content. In a recent security incident, spammers filled the user-generated wiki page with keywords and links to pornography sites, therefore leveraging the popular domain and its subdomains to rank the sites higher in search engine results.

As revealed in the Cyberoam threat trends report for Q3 2009, the above incident could have as easily involved malware hosting sites which puts the users of collaborative, open source environment such as wikis at great risk from unknown external threats.

WebCat, Cyberoam’s automated site categorization engine, with its extensive site database of 82+ categories offers protection to visitors against such threats since it categorizes the internal pages in addition to the home URL.

Among other incidents, spammers are continuing to stick to major news events such as the current financial crisis and the debate around health care reform in the US. Some of the more creative examples used include a letter from the “F.B.I.” promising to help recover money for 419 scam victims. Financially squeezed recipients are more likely to fall for such tactics especially during a recession.

The use of legitimate file sharing services such as Google spreadsheets has prompted traditional spam filters to trust these sources. In this particular example, pharmaceutical spammers encrypted the end key (a unique combination of letters/numbers) of the acceptable Spreadsheet URL “http://spreadsheets.google.com/pub?key=” to bypass spam filters so that they would fail to detect when the key is malicious.

Another version of pharmaceutical spam was related to Facebook with its familiar blue-header, designed to fool spam filters that may not properly identify image-based spam.

This quarter also saw spam levels reaching a record high of 97% in July averaging around 80% for most of the quarter. For the 2nd quarter in a row, Cyberoam saw spikes in email-borne viruses with delayed detection time between 6 to 90 hours for major anti-virus engines. Two particular viruses named Mal-Bredo A and Mal Behav-340 saw the highest number of attacks with more than 10,000 and 1900 distinct variants respectively!

Read the complete threat report

Cyberoam iView salutes Open Source Community on Software Freedom Day!

September 19 is the Software Freedom Day! Cyberoam iView salutes the spirit of open source on this day as communities worldwide celebrate the contribution of Open Source software and its use for the benefit of the public.

The day holds significance for us because we recently launched Cyberoam iView, our open source logging and reporting solution. With help from the open source community, we plan to deliver a cost effective and efficient logging and reporting solution to organizations.

If you have not already downloaded the beta version of Cyberoam iView, you may download it now from http://sourceforge.net/projects/cyberoam-iview/ and see for yourself how iView can help you achieve higher levels of security, data confidentiality while meeting the requirements of regulatory compliance.

Cyberoam iView launched!

Cyberoam iView – the open source, intelligent logging and reporting solution, has been launched! Cyberoam iView provides organizations network visibility across multiple devices to achieve higher levels of security, data confidentiality while meeting the requirements of regulatory compliance.

With its web-based GUI, Cyberoam-iView offers a consolidated view of the entire network activity. Organizations can view information across hundreds of users, applications and protocols on a single dashboard in addition to identity-based usage information that allows administrators to enhance security levels. Further, identity-based bandwidth, application usage reports and more enables organizations to manage their resources efficiently.

Cyberoam iView is currently integrated with industry’s leading UTM/Firewall solutions Cyberoam, SonicWall, Fortigate and the popular HTTP Proxy, Squid. Integration with more software and appliances is coming soon!

To know more about Cyberoam iView, please visit www.cyberoam-iview.org

It’s Open Source. It’s freely downloadable.

Cyberoam in Visionaries Quadrant of Leading Analyst Firm’s Magic Quadrant for SMB Multifunction Firewall for 2009

Cyberoam was positioned as a ‘Visionary’ by Gartner in its July 2009 Magic Quadrant for SMB Multifunction Firewalls. The worldwide SMB multifunction firewall market is forecasted by Gartner to grow at CAGR of 20% to 25% through 2012.

In this highly competitive market, according to Gartner Analysts, Adam Hils and Greg Young, "Differentiation comes in the form of integration among security features, licensing flexibility, management console/reporting, and pricing."

The recognition holds greater importance for us in the light of increasing awareness about insider threats and their subsequent loss to organizations. Cyberoam’s Identity-based security solution enables organizations to know “who is doing what” in their network, securing them against internal as well as external threats. Cyberoam continues to be the first to address customer’s critical pain points and is committed to offer advanced and high performance security.