SAN JOSE, California, September 5 /PRNewswire/ --

- During August, Finjan SecureBrowsing Alerted Users to More Crimeware 
Than in the Previous Three Months Combined

Finjan Inc., a leader in secure web gateway products, today announced
that its Finjan SecureBrowsing has uncovered a growing number of specific
cases of crimeware toolkits (malicious code software packages) used by
criminals in August. The increased usage of crimeware toolkits by
cybercriminals was forecasted by Finjan in its recently published quarterly
and monthly reports.

Finjan SecureBrowsing is a leading browser plug-in that adds safety
ratings to URLs of search results, Web 2.0 and other popular websites.
Leveraging the same patented real-time content inspection technology as
implemented in Finjan's Secure Web Gateway solutions, Finjan SecureBrowsing
identified 10 different types of crimeware toolkits in August alone. These
crimeware toolkits are being sold by hackers for only a few hundred dollars,
and are being used by criminals on the web today.

August's crimeware toolkit list includes the known MPack, NeoSploit,
IcePack, WebAttacker, WebAttacker2 and MultiExploit toolkits, as well as new
toolkits such as random.js, vipcrypt, makemelaugh and dycrypt.

Each of these crimeware toolkits is being updated frequently to include
recent exploits and new anti-forensic techniques that allow them to bypass
and escape detection by traditional signature, reputation and URL based
security products. The dozens of versions for each of the crimeware toolkits
provide the basis for hundreds of unique toolkits in use by cybercriminals
today. The dramatic increase in the use of these crimeware toolkits was
forecasted in Finjan's Malicious Page of the Month report for May 2007.

Finjan SecureBrowsing has also identified dozens of active criminals
using these crimeware toolkits. As indicated in its Malicious Page of the
Month report for July 2007, Finjan detected 58 criminals which have used the
MPack toolkit to successfully infect over 500,000 unique users in a single
month.

During August, Finjan SecureBrowsing alerted users to crimeware found on
compromised financial and government sites as well as on many top-ranked
portals and Web 2.0 sites. On a single day during August, Finjan
SecureBrowsing issued alerts on 300 MySpace unique profiles referencing
potentially malicious content on profile layouts.

In addition, Finjan SecureBrowsing identified six active affiliation
programs (iframedollar, iframebiz, iframe911, iframestat, Neon, Vera) that
typically pay website owners for infecting their visitors with crimeware.
Such affiliation programs utilize the "iframe" method described in detail in
Finjan's Web Security Trends Report Q2 2007. Each affiliation program is
present on hundreds of websites infecting their visitors for cash.

The prevalence of code obfuscation -- a technique commonly used to bypass
traditional signature, reputation and URL based solutions that was predicted
in Finjan's Web Security Trends Report Q4 2006 -- is also on a constant rise.
An analysis of the Finjan SecureBrowsing data indicates that more than 90% in
the use of code obfuscation to infect end-user PCs with crimeware.

In addition, as recently noted on ZDNet post [
http://blogs.zdnet.com/security/?p=487], Finjan SecureBrowsing successfully
alerted users to a crimeware toolkit used on the compromised Bank of India
website, known as the IcePack toolkit.

Finjan SecureBrowsing is available for download at
http://securebrowsing.finjan.com

Finjan's Web Security Trends Reports are available for download at
http://www.finjan.com/TrendReports

Finjan's Malicious Page of the Month reports are available for download
at http://www.finjan.com/MPOM

About Finjan SecureBrowsing

Finjan SecureBrowsing is a free service that proactively alerts web users
to potential malicious content hiding behind links of search results, ads and
other selected web pages. Finjan SecureBrowsing accesses each of the URLs in
its current form on the web, and scans the relevant pages in real time using
Finjan's patented real-time content inspection technology. Finjan
SecureBrowsing then displays a safety rating next to each link it has
scanned. Utilizing innovative security technologies, proven in large
enterprise environments, it helps keep web users safe from online scams as
they search and browse the web.

About Finjan

Finjan is a global provider of secure web gateway solutions for the
enterprise market. Our real-time, appliance-based web security solutions
deliver the most effective shield against web-borne threats, freeing
enterprises to harness the web for maximum commercial results. Finjan's
real-time web security solutions utilize patented real-time content
inspection technology to repel all types of threats arriving via the web,
such as spyware, phishing, Trojans, obfuscated code and other malicious code,
securing businesses against unknown and emerging threats, as well as known
malware. Finjan's security solutions have received industry awards and
recognition from leading analyst houses and publications, including IDC,
Butler Group, SC Magazine, eWEEK, CRN, ITPro, PCPro, ITWeek, Network
Computing, and Information Security. With Finjan's award-winning and widely
used solutions, businesses can focus on implementing web strategies to
realize their full organizational and commercial potential. For more
information about Finjan, please visit http://www.finjan.com.

(c) Copyright 1996-2007. Finjan Software Inc. and its affiliates and
subsidiaries. All rights reserved. All text and figures included in this
publication are the exclusive property of Finjan and are for your personal
and non-commercial use. You may not modify, copy, distribute, transmit,
display, perform, reproduce, publish, license, create derivative works from,
transfer, use or sell any part of its content in any way without the express
permission in writing from Finjan. Information in this document is subject to
change without notice and does not present a commitment or representation on
the part of Finjan. The Finjan technology and/or products and/or software
described and/or referenced to in this material are protected by registered
and/or pending patents including U.S. Patents No. 6092194, 6154844, 6167520,
6480962, 6209103, 6298446, 6353892, 6804780, 6922693, 6944822, 6993662,
6965968, 7058822, 7076469, 7155743, 7155744, 7185358 and may be protected by
other U.S. Patents, foreign patents, or pending applications.

Finjan, Finjan logo, Vital Security, Vulnerability Anti.dote and
Window-of-Vulnerability are trademarks or registered trademarks of Finjan
Inc., and/or its affiliates and subsidiaries. All other trademarks are the
trademarks of their respective owners.

Media Contacts

    United States
    Jan Wiedrick-Kozlowski
    Activa PR
    Tel. +1-585-392-7878
    jan@activapr.com

    UK
    Neil Stinchcombe
    Eskenzi PR Ltd.
    Tel: +44-(0)208-449-1007
    neil@eskenzipr.com