iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Microsoft Blames Apps For Security Vulnerabilities
Search:
[ insider_reports_insider ]

Microsoft Blames Apps For Security Vulnerabilities



SecurityProNews
Staff Writer
2008-11-03

SecurityProNews: Insider Reports Insider Reports RSS Feed


Microsoft, typically the darling of security vulnerability coverage, says targeting the operating system is old school. These days, the bad guys are targeting third-party applications.

Microsoft Blames Apps For Security Vulnerabilities
Microsoft Blames Apps For Security Vulnerabilities
The company's biannual Security Intelligence Report claims over 90 percent of disclosed vulnerabilities in the first half of 2008 affected applications, leaving just ten percent of security flaws for operating systems. Operating system vulnerabilities declined by six percent, but Microsoft still patched 77 security vulnerabilities.

This new set of targets, apps, may account for the rise of malware and unwanted software removed from computers, growing by 43 percent in the first half of the year. Meanwhile Microsoft vulnerabilities were down 33.6 percent. This is due in large part to the added security layers in Vista-though all those system-based popups wasn't much of a selling feature.

While half of the top-ten browser vulnerabilities affecting Windows XP are/were due to Microsoft-originating flaws, all of the top-ten browser vulnerabilities affecting Vista originate from form third-party apps-including, the company is happy to note, Apple and RealNetworks.

Otherwise the increase in malware attacks the fault of organized crime and naïve users. Thirty percent of worldwide malware is made up of Trojan downloaders and droppers, intended to obtain personal information. Access is most often granted by users too trusting of email attachments and instant messaging, something the company calls "the dancing pony problem" because users clicking on anything that looks enticing. Overall, vulnerabilities are decreasing while those left are becoming easier to exploit.

The biggest problems, though, are in the developing world. China led the way with more infected computers than anywhere else, according to data collected from Microsoft's Malicious Software Removal Tool (MSRT). Japan was the cleanest, with just 1.8 in every 1,000 computers. The highest infection rate was in Afghanistan, with 76.4 computers infected for every 1,000. In the US, it was 11.2 per 1,000, a 25.5 percent increase.


About the Author:
SecurityProNews is a daily online and email publication focusing on internet security issues.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - $line) { echo $line ; } ?> All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds