Your web browsers are the target – protect your organisation from your own users with isolation web browsing

isolation web browsing - LoughTec

There was one problem that kept coming back into my mind - how do you protect your organisation from the potentially harmful content on websites that your staff accidentally browse?

In our latest blog, hear from LoughTec’s Jonathan Adams on why cybercriminals target web browsers as a means for attack and what you can do to stop them.

Thanks for taking the time to read my second article – after the roaring success of my first, (if I say so myself) I decided to write another! Thanks to everyone who engaged and reached out to me from my past article.

Layman’s Point of View

When I stepped into the world of cyber security a few months ago (do all cyber months feel like years, or is it just me?) I began to get an education on all the fancy and complex solutions to solve problems that I didn’t even know existed – I expect some very seasoned professionals have problems they do not know about! As I was a novice, this was part and parcel of being a novice in such a deep and diverse industry. There was one problem that kept coming back into my mind – how do you protect your organisation from the potentially harmful content on websites that your staff accidentally (not hinting at any foul play here!) browse?

From my layman’s PoV, this was the biggest problem facing organisations. I recall a family member telling me a story, of how an organisation had undergone a cyber attack when a colleague had received a phishing email and entered their details on a website that appeared legitimate. The entire business was brought down with financial and reputational consequences. To me, it was clear how dangerous the Internet is.

"Today, web browsers are the target of choice for hackers and cybercriminals seeking to harm your organisation for profit or even just to watch the world burn."

What Makes Browsers Such a Good Target?

After all, the internet has unquestionably revolutionised the world over the past 30+ years. The sophistication and ease that web browsers have brought to internet use, in particular, have enabled unprecedented productivity gains for individuals and especially for businesses. Browsers today represent the primary means of interacting with the information and apps we need to do our work and, in the case of web-based email, instant messaging, and collaboration apps, the way we stay connected with fellow employees. On many people’s devices, the browser (personally only Chrome is acceptable – does anyone use Edge?) is open and active whenever the device is, as a primary space where work happens. Fantastic, right? What was the stuff of futuristic fiction just a few short decades ago has now taken on a dystopian tinge. Today, web browsers are the target of choice for hackers and cybercriminals seeking to harm your organisation for profit or even just to watch the world burn.

Why focus attacks on the web and email? The simple answer is because it works. Criminals have identified the web and email as the paths of least resistance for delivering ransomware and other forms of malware to endpoints and from there, to the rest of the network. I’m sure I don’t need to remind people of the many headlines we have seen talking about a web and email attack.

So What’s The Solution?

I suspect you are reading this as you want a solution to your problem? As I have said in my previous article, as a Commercial Lead in a customer-driven, problem-solving company such as LoughTec, we only provide genuine solutions that we can offer to customers to solve their specific problems. This is how we build relationships with customers – we add value to their business and make their lives easier by solving problems.

Our solution to the problem of web browsing and phishing emails is called Remote Brower Isolation (RBI). This adds value to organisations by moving websites to isolated containers located in the cloud, and delivers only a safe interactive media stream to end-users, on their standard browser. No active content ever reaches the endpoint. Users enjoy secure, seamless, hassle-free access to the sites that they need – with no risk of anything malicious hitting the organisation’s network. This is because browser isolation stops 100% of malware-based attacks delivered via the critical web and email vectors. In layman’s terms, this effectively puts a large dome around your browser.

In addition to browser protection, Remote Browser Isolation also offers phishing protection. When it comes to phishing attacks, user training just isn’t enough, no matter how many simulated phishing attacks you run – it only takes one mistake by a colleague. Remote Browser Isolation executes email-embedded URLs away from endpoints, in the same cloud-based remote virtual browsers, so no malware can reach endpoints. For extra protection from credential theft, the clean media streams can be sent to endpoints in read-only mode, preventing users from entering sensitive data such as user IDs and passwords. The value add here is clear, as 94% of businesses have had malware delivered by email! Also, 1 in 3000 emails that pass through a traditional email gateway contain malware. How many emails does your organisation receive a day? 3000 quickly becomes a small number.

Value Add

The value that remote isolated browsing can add is clear. Since most attacks originate from the Internet, the mere act of shifting the browsing process away from the endpoint and into a safe zone reduces the attack surface. Gartner estimates that firms that isolate browsing will see a 70% reduction in attacks that compromise end-user systems. While this doesn’t solve all of the world’s cyber issues (let’s be honest, nothing can, no matter how many products there are) this will provide a lot more security and a lot fewer headaches.

If you wish to reach out and have a conversation on how isolated browsing can add value to your organisations (or again discuss Electric Vehicle’s) please feel free to DM me, email me on jonathan.adams@loughtec.com or call me on +44 (0) 7775826874.

Share this post

Share on facebook
Share on linkedin
Share on twitter

LoughTec: Watertight Cyber Security and IT Solutions