Date Added: Jul 2009
Enterprises must be more resourceful than ever to thwart new kinds of web-based attacks. The dominant threat to endpoint security now combines characteristics of historically effective attacks with new, more elusive methods of delivery and infection. The result: attacks are extremely difficult to stop and more serious in consequence than previous exploits. This paper describes the emergence and characteristics of modern web-based attacks and why they are so common. The key idea is that traditional endpoint security controls are important, but are unable to fully cope with such attacks because they focus on the wrong things.