Secure e-mail and Web gateway security provider Marshal, today announced that all customers using WebMarshal, the company's secure Web gateway, are protected from threats that may be created from the recently disclosed Domain Naming System (DNS) security vulnerability.
"We know that many of our customers were alarmed when they read about the DNS vulnerability and we've been assuring them that if they are using WebMarshal, they are fully protected as long as they are using integrated malware scanners," said Bradley Anstis, VP of Products for Marshal. "Unlike Web security solutions that provide protection only through URL filtering, WebMarshal also provides real-time content scanning and analysis. These extra layers of protection keep malicious code embedded in Web sites from being downloaded and infecting desktop computers and servers."
The recent disclosure of a significant DNS security vulnerability this month prompted operating system and DNS software vendors to create and release patches before details of the flaw were disclosed. Unfortunately, those details were leaked on 25 July before some vendors could produce security patches, leaving Internet users to question the safety of visiting Websites until all patches are in place.
The DNS security vulnerability makes it possible for hackers to "poison" the DNS cache, translating users' reputable Web site requests into bogus addresses for sites that could contain any manner of malicious code. Because the site names would appear legitimate, active scans of the pages that are returned are necessary in order to block these exploits. The typical Web security products that companies use today are based on URL filters and will not detect the problem, leaving users vulnerable to any security threats that reside on the hacker's Web site.
WebMarshal's content filtering is also effective against anonymizer proxy sites, which allow employees to bypass URL filter rules put in place by companies to restrict access to offensive websites. On 26 July, Binary Day published a list of more than 900 proxy sites that can be used to skirt around Web security products that employ URL filtering alone to help organisations prevent visits to unauthorised Web sites.
"WebMarshal is engineered to provide enterprise-wide protection from Web-based security threats at the gateway, provide Web access control to support corporate acceptable use policies, and prevent data leakage," said Anstis. "WebMarshal customers can rest assured that their company is protected from any DNS security issue that may arise and any other Web-based threat."
Share