Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Internet Explorer top at preventing drive-by download attacks, says NSS Labs

Rival web browsers offer less malware security than Microsoft

Article comments

Internet Explorer is better at defending against drive-by downloads than competitors' browsers and the contest isn't even close, according to a worldwide test of browsers by security research firm NSS Labs.

Internet Explorer scored a 99.2% protection score in the firm's most recent test of socially engineered malware distribution, with Google Chrome coming in a distant second with 13.2%. Trailing behind it were Safari and Firefox tying with 7.6% each, and Opera pulling up last with 6.1%.

Browsing protection

NSS tried to access URLs known to download malware to computers used by site visitors and kept track of whether browser protections warned or blocked against these sites using in-the-cloud databases of known malicious sites.

The report, "Web Browser Security, Socially Engineered Malware Protection," credits Microsoft's SmartScreen URL and Application Reputation features with landing the big score.

NSS tested Internet Explorer 9, Chrome 12, Opera 11, Firefox 4 and Safari 5 during 14 days, May 27 through June 10. The test included 1,188 URLs that NSS had verified contained malware, and an average of 86 new ones were added each day.

Chrome's score represents a big improvement over its performance in last year's test when it scored just 3%. Firefox lost ground against last year's test when its score was 19%.

As soon as NSS discovered new malicious URLs, they were added to the test, then NSS measured how long it took the browsers to recognise them as such, only recording the calculation if the browser actually recognised a URL as malicious. If it never recognized a given malicious site, it wasn't used in the calculation.

Block speed

Internet Explorer blocked sites on average within .56 hours. Safari was second with 4.9 hours, then Firefox (6.07 hours), Chrome (17.64 hours) and Opera (18.39 hours).

Chrome, Firefox and Safari all use the same data feed of malicious URLs, Google's Safe Browsing, which explains why their overall protection ratings are similar, the report says. Supporting this notion is that results for the three browsers rose and fell in unison over time.

The testers noted that Opera would detect a malicious site sometimes, but later would miss it. That could be attributed to the fact that in some cases the warning that a site was malicious would pop up after the malware had already downloaded or even downloaded and executed, the report says.

In general, users are four times more likely to be socially engineered into downloading malware than they are to fall victim to a software exploit.


More from Techworld

More relevant IT news


BullShtCard said: I call your BS

Klaskalas said: this cant be true 99 and the rest way offhmm very fishy

Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *