Internet Explorer 8 best at blocking malware sites, says study
A recently released report claims that Internet Explorer 8 (IE8) is more than twice as effective at blocking malware sites than its nearest rival.
According to NSS Labs Inc., which conducted the Microsoft-sponsored study, IE8 blocked 69% of the 492 malware-distributing Web sites that were included in the survey data. Mozilla Corp.'s Firefox, meanwhile, blocked only 30% of those same sites.
"I was surprised that IE8 did as well as it did," Rick Moy, the president of NSS Labs, said in an interview Tuesday. "But Microsoft has put a lot of effort into security in IE8."
NSS tested six Windows-based browsers -- IE8 RC1, Firefox 3.0.7, Safari 3, Chrome 1.0.154, Opera 9.64 and IE7 -- against so-called "socially engineered" malware: Sites that dupe visiting users into downloading attack code. Typically, the download is disguised, often as an update to popular software such as Adobe's Flash Player.
The tests did not include sites that attack browsers without any user interaction, an increasingly common tactic by hackers who often infect legitimate sites with kits that try a number of different exploits in the hope of compromising an unpatched PC.
To defend against the kind of malware sites that NSS tested, browser makers have been adding anti-malware features to their software. Mozilla, for example, added malware site blocking to Firefox 3.0, which shipped last June.
All browsers that include such a tool -- or anti-phishing tools, which operate in a similar fashion -- rely on a "blacklist" of some sort. The list, which includes known or suspected malware sites, is used to display warnings before a user reaches a site, but after the URL is typed in.
Microsoft debuted the feature, which it calls "SmartScreen Filter," in IE8, which launched as final code last Thursday.
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
internet explorer
Powered by Twitter
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
