The number of unique phishing sites has reached an all-time high. As the preferred way for attackers to gather confidential personal information about their targets, phishing and spear-phishing (targeted attacks on specific individuals or companies), represent a significant threat to anyone transacting business on the Internet.
These attacks obfuscate URLs and direct traffic to counterfeit websites that attempt to trick users into divulging sensitive information. Webroot SecureAnywhere® Web Security Service uses new proprietary real-time antiphishing technology to protect users by ensuring they are always connected to the legitimate website with which they intended to interact.
Webroot really excelled when we needed help protecting our mobile user’s Internet access. Previously we could not identity remote users and this was causing us a huge problem. Webroot helped us deal with this tricky problem by delivering a very elegant solution that really works.
- Ivan Shiel, Scope’s IT Operations Manager
Webroot developed its new real-time antiphishing technology to catch and stop advanced phishing attacks that can cause security breaches and data losses. It incorporates the same extensive experience in machine learning, content classification, and active learning that is contained in Webroot web and IP threat recognition technologies. In extensive testing, this world-leading approach has detected phishing sites three to five days ahead of any other popular anti-phishing technology. This represents a critical breakthrough, as early detection of these criminal sites is essential because they appear and then are taken down quickly to avoid detection.
Our real-time antiphishing technology works by evaluating any URL requested by a user and scores it for phishing risk using hundreds of “features” of the site. These include the content on the page, reputation information of the domain, and numerous other factors. Machine learning determines which features are significant for each scanned URL and what weight to apply to each in the classification. It then feeds back human evaluation into the machine model to continually increase accurate determinations.
To further limit accidental data leakage, administrators can filter online content based on the web application, attachment type, MIME type, and file type or size. Webroot identifies over 96 file and content types by file extension, MIME type and close examination of individual file headers, thereby eliminating any chance that a file can bypass Webroot content filtering.
The service also blocks an additional eight MIME type categories — for example, if “Other Video Streams” is blocked, then any video stream identified by the general MIME type for video, regardless of whether it is in a specific list, will be blocked. Webroot also allows adding ‘custom options’ for MIME types and files extensions.
Advertisements of an inappropriate nature or the need to reduce bandwidth usage may make it necessary to strip advertisements from web content. Webroot SecureAnywhere Web Security Service compresses and reformats web pages on the fly to strip advertisements without leaving blanks areas and missing content symbols.