Drive by Download

Cyber Attack

What is a Drive by Download Attack?

What is a Drive-by Download attack?


Through malware on a legitimate website, a program is downloaded to a user’s system just by visiting the site. It doesn’t require any type of action by the user to download.


How does it work?


Typically, a small snippet of code is downloaded to the user’s system and that code then reaches out to another computer to get the rest and download the program. It often exploits vulnerabilities in the user’s operating system or in different programs, such as Java and Adobe.


How can I prevent it?


The best way is to be sure all of your operating systems and software programs are up to date. This lowers your risk of vulnerability. Additionally, try to minimize the number of browser add-ons you use as these can be easily compromised. For example, if your computers don’t need Flash or the Java plug-in, consider un-installing them.

Some worrying Statistics


Detected Attacks

and 25% of Large Firms experience a breach at least once per month




of all businesses set cyber security standards for their suppliers



Have Written

a formal written cyber security policy to protect their business



Recommended Action

to identify risks from Cyber Attacks

Stay Safe, Stay Sure, BE SECURE!

Cyber attacks are being performed every second of every day.

You must review your current Cyber defences and continue to have them tested by professional organisations.

View the NORSE attack map
View Cyber Attacks from NorseCorp