A new ENISA report explains the risks of Web 2.0

Aktuelles ENISA-EU-Agentur Positionspapier erklärt Risiken des Web 2.0

Printer-friendlyE-mail this news to a friend

A new ENISA report explains the risks of Web 2.0 - photo sharing, wikis, social bookmarking and social networking - and "malware 2.0", a new breed of web-borne infections you can catch just by visiting a web page and gives advice to tackle them

Web applications have become amazingly sophisticated to keep up with the demand for new services. "Web 2.0 applications are pushing existing Web technologies to their limits - as a result, even the best developers have had to resort to 'hacks' and loopholes in the system to make their applications work." says Giles Hogben, an ENISA expert. "It’s no surprise that criminals are attacking these applications, and are using them as vehicles to distribute malicious code to users." The black-market in malware installations is now so well-organised and lucrative that criminals are offering package deals with standard prices per "installation".

The success of Web 2.0 is fundamentally about enabling users to contribute content and communicate. But, at the same time, that success creates new challenges: For example it is more difficult to know whether to trust information when you don’t know who the original author was or where it came from. The related ENISA survey analysed what tactics people use to decide if a web page is fake. The result is highly surprising: Most people will trust a source as long as it appears more than once on the web.

The tendency of blogs and wikis to replicate rumours means this is no longer a rational strategy. For example, some stories originating in the blogosphere about US vice-presidential candidate Sarah Palin have since been proven false. Another example is web based pump and dump stock rumours where share prices are artificially inflated. "We need better ways to establish trust in information in the Web 2.0 world", says Mr. Andrea Pirotti, Executive Director of ENISA.

ENISA compiled the report using input from a group of international web security experts. It recommends a set of initiatives in web standards and architecture, as well as policy actions. These include eg., incentives for more secure programming and measures to protect personal data exchanged among private individuals.

For full report:

12.12.2008, Ulf Bergström


Subscribe to the newsletter

Never miss a story and stay informed with our newsletter.
Your email:  
RSS-Feed: All current newsOur News on your website

More current news

Fewer than One in Ten Companies Evaluate Vendors or Train Employees on Cloud Security
Koobface Now Using Christmas Theme
A new ENISA report explains the risks of Web 2.0
Symantec Announces MessageLabs Intelligence 2008 Annual Security Report
Cellcrypt secures voice communications on Windows Mobile devices

News on other topics

Rittal Makes the Switch: e-Spirit's CMS Selected as Platform for Global E-Commerce Portal
abas user conferences and ERP seminars around the world
Monitoring licenses automatically
Barrier-Free Paranet Website Launched with CONTENS
One Globe - One Network - One ABAS

Nachtclubs
© 1999-2010 FEiG & PARTNER | Disclaimer
The Content Management PortalThe Document Management PortalThe IT Security PortalThe Customer Relationship Management PortalThe E-Commerce PortalThe Enterprise Resource Planning PortalPortal on VoIP and mobile communication The directory of Clinic IT SolutionsThe directory for IT professionals
homeimprintprivacy policycontactadvertising

know how
virus, malware & spam
topics & trends
case studies
security culture
roundtables
it law
compliance & governance
studies & market
data security
safety engineering
mobile security
industrial security
risk management
biometric
exhibitions
firewall & vpn
content & web security
archive
search

news
current news
news archive
search
our news on your website

events
calendar

security alerts
security alerts
virus map

Quick search