Mitigating Browser Based Exploits through Behavior Based Defenses and Hardware Virtualization

As the adoption of the Internet grows worldwide, the volumes of valuable data being transmitted and stored in digital format become increasingly attractive targets. Vulnerabilities and weaknesses in web architectures and environments which are tasked with storing and preserving this data have been and continue to be exploited every day. In recent years there has been a trend to directly exploit the browser bypassing traditional perimeter security defenses to gain access to internal networks and databases, resulting in the theft of valuable corporate, non-profit and government data from closed networks. This paper studies how implementing behavior based browser defenses and application isolation through virtualization with Invincea, organizations can help bolster defenses against this type of attack and mitigate the impact of client side browser exploits. It will also examine configuration options in Invincea that can greatly help limit exposure to malware and help prevent providing the attackers a beach head into a victim's network through exploiting the browser.