Language Selection

English French German Italian Portuguese Spanish

Security tools face increased attack

Filed under
Security

Software makers of ubiquitous anti-virus products have not yet been forced to acknowledge and fix potential problems in their code, analysts with Yankee Group wrote in a research paper published Monday in the US. As a result, antivirus software is like low-hanging fruit to hackers, according to the analysts.

Microsoft's Windows operating system has been a favorite target of hackers, but new security flaws are being discovered in security products at a faster rate than in Microsoft's products, the analysts wrote. In the 15-month period ending March 31, 77 separate vulnerabilities have been reported by security vendors, they wrote.

Symantec, F-Secure and CheckPoint Software Technologies are among the vendors that have seen a rise in the number of security issues that affect their products in the past years, according to Yankee Group.

If the trend continues, the number of vulnerabilities for security products will be 50 percent higher than 2004 levels, according to the analysts. While Microsoft flaws continue to flow, the rate has decreased notably, according to the analysts. They credit the release last year of Windows XP Service Pack 2, a security-focused update.

Yankee Group predicts a "rising tide" of vulnerabilities will be found in security products. Software makers should look at their security processes, and users need to get ready to patch security products, the analysts wrote. Also, buyers should ask tough security questions when buying new products, they advise.

Source.

More in Tux Machines

Android Leftovers

4 open source Android apps for writers

While I'm of two minds when it comes to smartphones and tablets, I have to admit they can be useful. Not just for keeping in touch with people or using the web but also to do some work when I'm away from my computer. For me, that work is writing—articles, blog posts, essays for my weekly letter, e-book chapters, and more. I've tried many (probably too many!) writing apps for Android over the years. Some of them were good. Others fell flat. Here are four of my favorite open source Android apps for writers. You might find them as useful as I do. Read more

How a trip to China inspired Endless OS and teaching kids to hack

Last year, I decided to try out Endless OS, a lightweight, Linux-based operating system developed to power inexpensive computers for developing markets. I wrote about installing and setting it up. Endless OS is unique because it uses a read-only root file system managed by OSTree and Flatpak, but the Endless company is unique for its approach to education. Late last year, Endless announced the Hack, a $299 laptop manufactured by Asus that encourages kids to code, and most recently the company revealed The Third Terminal, a group of video games designed to get kids coding while they're having fun. Since I'm so involved in teaching kids to code, I wanted to learn more about Endless Studios, the company behind Endless OS, The Third Terminal, The Endless Mission, a sandbox-style game created in partnership with E-Line Media, and other ventures targeted at expanding digital literacy and agency among children around the world. I reached out to Matt Dalio, Endless' founder, CEO, and chief of product and founder of the China Care Foundation, to ask about Endless and his charitable work supporting orphaned children with special needs in China. Read more

AMD Releases Firmware Update To Address SEV Vulnerability

A new security vulnerability has been made public over AMD's Secure Encrypted Virtualization (SEV) having insecure cryptographic implementations. Fortunately, this AMD SEV issue is addressed by a firmware update. CVE-2019-9836 has been made pulic as the AMD Secure Processor / Secure Encrypted Virtualization having an insecure cryptographic implementation. Read more