E-mail anti-virus not enough

Until now, the security services offered by service providers were limited to antivirus and anti-spam for the ISP e-mail, and to offering a desktop security product or providing URL filtering, primarily as a ‘parental control’ service with very limited security. But the fact remains that modern attackers do not rely on e-mail for infection. Rather, they exploit zero-day vulnerabilities to infect website visitors with spyware, Trojans and rootkits. Many of the latest attacks originate from phishing e-mail, luring unsuspecting users to malicious or spoofed websites. This is particularly prevalent with users participating in Internet banking and for which a security compromise can have serious financial consequences. In addition to antivirus, today’s PC users are told they need anti-spyware, anti-spam, and a personal firewall, not to mention being told that they must make sure their operating system and applications are updated with the latest security patches. For network users, the problem is multiplied, forcing managers or their IT support personnel to become security experts, which they are unlikely to be and most often do not want to be bothered with. Computer users are also being hit hard by spyware. Statistics for spyware on home users’ PCs indicate that as many as 80% are infected with 93 different types of spyware – and that 88% of infected users are not even aware that they are infected.

Desktop based anti-spyware can also be confusing and can interfere with the user's normal work habits, as well as the performance of their computer. The best solution is a first layer of defense at the gateway, where a single point of update is faster and more efficient than enterprise-wide deployment.  Whether home or business, ISP customers are flooded with threats which they find difficult, if not impossible, to handle. These threats include aggressive spyware that steals files and information; commercial spyware; adware, that slows computers and compromises privacy; trojans and rootkits hidden in web pages; and other newly discovered security vulnerabilities. Adware and commercial spyware also invade privacy and display annoying advertisements. They affect both customers and ISPs, slowing down computer performance and Internet connection speeds, often resulting in dissatisfaction with the ISP. Even though most users have some security, they are still being hit by motivated computer criminals attacking weak spots not covered by existing solutions.

It is for these reasons that local ISP BCSnet has taken the initiative and partnered with security solutions provider Aladdin Knowledge Systems to offer Internet users SecureSurfing. The eSafe SecureSurfing solution is an innovative platform for Internet service providers, enabling them to offer – for the first time – content security services to their customers at the same high-level content security that only enterprise, financial and government customers have previously enjoyed. Installed within the ISP infrastructure, eSafe SecureSurfing cleans the line from threats before reaching the PC user. “Practically, this means that users can finally have a true "clean pipe"– transparently protecting them from web threats, spyware, Trojans, viruses, worms, phishing and more”, comments Niël de Wet, Director of BCSnet. “And all of this is done without requiring the user to install any software, and without impacting web access speed, surfing experience or performance, adds deWet.

“Consumers will demand a safe Internet service, and if an ISP doesn't measure up on security, members will flee to a rival provider. Customers will absolutely demand a clean pipe.” Forrester, July 2005