Malicious Active Content

What Does Malicious Active Content Mean?

Malicious active content refers to malicious code that is inserted into scripting languages. This code is typically downloaded onto a Web browser and launched without authorization on an unknowing user’s local system. Malicious active content is used to embed worms and viruses, resulting in the collection of local user information as well as other computer issues. Vigorous scripting language such as JavaScript has been known to be the most vulnerable to malicious active content attacks. Interactive websites can also contain malicious active content. Weather maps and stock ticking can be vulnerable to malicious active content, as can embedded objects and opt-in features like Internet polls. What is particularly destructive about malicious active content is that by the time a computer has been infected with it, it is already too late to fix the problem.


Techopedia Explains Malicious Active Content

Malicious active content and legitimate active content can be hard to differentiate. Hex and UTF-8 formats within JavaScript make detecting malicious active content nearly impossible, as the attacker can bypass some of the policy rules of active content protection tools such as ProxySG. Also this type of appliance-style device can ward off many malicious active content attacks, computer experts recommend installing layers of protection because some are better suited to certain scripting languages than others.

Plug-ins such as ActiveX are notorious for their vulnerability to malicious active content. In addition, malicious active content can steal a password or pin and later access a website with confidential information while making it look as though it was accessed by the authorized user. This can make it even harder to track whether malicious active content has been used in the attack.


Related Terms

Latest Internet Terms

Related Reading

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…