Enterprises must be more resourceful than ever to thwart new kinds of web-based attacks. The dominant threat to endpoint security now combines characteristics of historically effective attacks with new, more elusive methods of delivery and infection. The result: attacks are extremely difficult to stop and more serious in consequence than previous exploits.

This paper describes the emergence and characteristics of modern web-based attacks and why they are so common. The key idea is that traditional endpoint security controls are important, but are unable to fully cope with such attacks because they focus on the wrong things.

New controls for strong web security must extend to users’ behaviors as well as PC software and configurations. Overreliance on signatures won’t stop new attacks. And underpinning a security strategy simply by removal of malicious software will not block new attacks. The paper concludes with Check Point’s enterprise solution to these web-based attacks: WebCheck for Check Point Endpoint Security.