Realtime prevention of JavaScript cyberattacks, by Rohde & Schwarz

January 24, 2017 // By Graham Prophet
The Cybersecurity arm of Rohde & Schwarz has disclosed a customer deployment of its realtime detection and extraction solution that prevents JavaScript-based cyberattacks including sophisticated ransomware.

To offer enterprises and organizations advanced network solutions for protection against script-based cyberattacks, IT security vendor Infotecs uses the realtime JavaScript detection and extraction capabilities of Rohde & Schwarz Cybersecurity’s DPI engine in its next-generation firewall.

 

JavaScript attacks are devastating, especially for companies and organizations. Not only do they have to deal with data breach and damage to their reputation but also with direct costs. In particular, the advent of ransomware coded in JavaScript presents a new challenge for IT security administrators. According to security experts, ransomware cybercriminals took in about $1billion (US$) in 2016. This figure – and the frequency of attacks on organizations – is expected to grow to unprecedented levels in 2017.

 

IT security vendor Infotecs opted to embed JavaScript content & metadata extraction capabilities developed by Rohde & Schwarz Cybersecurity in its next-generation firewall.

 

JavaScript, as a major technology for building web content, is a popular tool for cybercriminals who abuse the programming language for malicious attacks. Particularly, cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks are typical JavaScript security threats that top the list of web application vulnerabilities provided by the Open Web Application Security Project (OWASP).

 

Cross-site scripting enables attackers to use JavaScript to inject malicious scripts into web pages viewed by unsuspecting users. The script allows cybercriminals to steal sensitive user data, tamper with accounts, spread malware or steal financial credentials. The highly critical XSS security flaw in Yahoo’s consumer email service back in 2016 is one example of how a script-based attack can allow cybercriminals to read any user’s emails and affect millions of user accounts.

 

R&S PACE 2 – the Deep Packet Inspection (DPI) engine by Rohde & Schwarz Cybersecurity – enables Infotecs’ ViPNet xFirewall to inspect web content for potential malicious or injected code and to block Javascript threats in realtime. This way, R&S PACE 2 and the ViPNet xFirewall ensure network security without