Skip to main content

Malicious Code in Cached Web Pages Served by Storage and Caching Servers

A new report by Web security Solution provider Finjan highlights the discovery of malicious content residing in cached web pages on storage and caching servers, such as those used by ISPs, enterprises and leading search engines.

"This malicious code can be referenced by third-party web pages and can be used to exploit an end user's machine," said Yuval Ben-Itzhak, Finjan's Chief Technology Officer. "Even if the malicious site has been taken down, its malicious content is still stored and served by the caching servers. The exploit can result in the installation of Spyware, Trojans, and other malware that compromise a user's privacy and identity."

The report presents several instances of malicious code found on public storage and caching servers. "This is more than just a theoretical danger," Ben-Itzhak said. "Owing to this exploit, it is possible that storage and caching servers could unintentionally become the largest 'legitimate' storage venue for malicious code.

Such 'infection-by-proxy' introduces new risks for businesses and consumers." Ben-Itzhak noted that as the number of malicious sites continues to increase, it is important to raise users' awareness regarding the potential dangers that may be lurking in cached web pages.

Désiré Athow

Désiré has been musing and writing about technology during a career spanning four decades. He dabbled in website building and web hosting when DHTML and frames were en vogue and started writing about the impact of technology on society just before the start of the Y2K hysteria at the turn of the last millennium. Following an eight-year stint at where he discovered the joys of global tech-fests, Désiré now heads up TechRadar Pro. Previously he was a freelance technology journalist at Incisive Media, Breakthrough Publishing and Vnunet, and Business Magazine. He also launched and hosted the first Tech Radio Show on Radio Plus.