What Makes Browsers Such a Good Target?
After all, the internet has unquestionably revolutionised the world over the past 30+ years. The sophistication and ease that web browsers have brought to internet use, in particular, have enabled unprecedented productivity gains for individuals and especially for businesses. Browsers today represent the primary means of interacting with the information and apps we need to do our work and, in the case of web-based email, instant messaging, and collaboration apps, the way we stay connected with fellow employees. On many people’s devices, the browser (personally only Chrome is acceptable – does anyone use Edge?) is open and active whenever the device is, as a primary space where work happens. Fantastic, right? What was the stuff of futuristic fiction just a few short decades ago has now taken on a dystopian tinge. Today, web browsers are the target of choice for hackers and cybercriminals seeking to harm your organisation for profit or even just to watch the world burn.
Why focus attacks on the web and email? The simple answer is because it works. Criminals have identified the web and email as the paths of least resistance for delivering ransomware and other forms of malware to endpoints and from there, to the rest of the network. I’m sure I don’t need to remind people of the many headlines we have seen talking about a web and email attack.
So What’s The Solution?
I suspect you are reading this as you want a solution to your problem? As I have said in my previous article, as a Commercial Lead in a customer-driven, problem-solving company such as LoughTec, we only provide genuine solutions that we can offer to customers to solve their specific problems. This is how we build relationships with customers – we add value to their business and make their lives easier by solving problems.
Our solution to the problem of web browsing and phishing emails is called Remote Brower Isolation (RBI). This adds value to organisations by moving websites to isolated containers located in the cloud, and delivers only a safe interactive media stream to end-users, on their standard browser. No active content ever reaches the endpoint. Users enjoy secure, seamless, hassle-free access to the sites that they need – with no risk of anything malicious hitting the organisation’s network. This is because browser isolation stops 100% of malware-based attacks delivered via the critical web and email vectors. In layman’s terms, this effectively puts a large dome around your browser.
In addition to browser protection, Remote Browser Isolation also offers phishing protection. When it comes to phishing attacks, user training just isn’t enough, no matter how many simulated phishing attacks you run – it only takes one mistake by a colleague. Remote Browser Isolation executes email-embedded URLs away from endpoints, in the same cloud-based remote virtual browsers, so no malware can reach endpoints. For extra protection from credential theft, the clean media streams can be sent to endpoints in read-only mode, preventing users from entering sensitive data such as user IDs and passwords. The value add here is clear, as 94% of businesses have had malware delivered by email! Also, 1 in 3000 emails that pass through a traditional email gateway contain malware. How many emails does your organisation receive a day? 3000 quickly becomes a small number.
The value that remote isolated browsing can add is clear. Since most attacks originate from the Internet, the mere act of shifting the browsing process away from the endpoint and into a safe zone reduces the attack surface. Gartner estimates that firms that isolate browsing will see a 70% reduction in attacks that compromise end-user systems. While this doesn’t solve all of the world’s cyber issues (let’s be honest, nothing can, no matter how many products there are) this will provide a lot more security and a lot fewer headaches.
Contact Cyber Security Company LoughTec for a free no-obligation discussion on your business cyber security posture. Call +44 (0) 28 8225 2445 or email email@example.com.