1. 0 Click Jacking
The website buttons or other DOM/Inputs are layered over a normal HTM form and when the victim clicks, it triggers the attack.
Our solution – signatures, parameters validation, hidden fields protection URL rewriting – The solution will scan for illegal inputs to prevent initial injection.
2.0 Adobe Flash binary (AMF)
XSS SQL injection or other exploits come through adobe flash instead of HTML Forms.
Our solution – AMF3 protocol which will decode flash action message format (AMF) to scan.
Zombies attack the server
Our solution – IP reputation where compromised clients are blacklisted.