For the longest time Windows has been the defacto standard for all malware authors to target their little gems of scripting prowess; however according to a report from Finjan Inc we could be seeing a shift to the use of storage and caching servers as the launching platforms.
Storage and caching servers used by businesses, ISP’s and search engine companies are being used by attackers to exploit end users’ machines. “Since the malicious code is duplicated and stored on such servers, even if the original malicious site is taken down, its malicious content still remains and is served by these storage and caching servers until removed,” according to the report. The result is the installation of spyware, Trojans and other malware used to acquire personal information, said Finjan chief technology officer Yuval Ben-Itzhak.
