Language Selection

English French German Italian Portuguese Spanish

Hackers aren't just picking on Microsoft - study

Filed under
Security

Online criminals turned their attention to antivirus software and media players like Apple Computer Inc.'s iTunes in the first three months of 2005 as they sought new ways to take control of users' computers, according to a survey released on Monday.

While hackers continued to poke new holes in Microsoft Corp.'s popular Windows operating system, they increasingly exploited flaws in software made by other companies as well, the nonprofit SANS Institute found.

As more Windows users agreed to receive security upgrades automatically, hackers looked to take advantage of other software programs that might not be patched as frequently, the head of the cybersecurity training and research organization said.

"Operating systems have gotten better at finding and fixing things and auto-updating, so it's less fertile territory for the hackers," said SANS Chief Executive Alan Paller.

Malicious hackers exploit security holes to lift credit-card numbers and other sensitive personal information from a user's computer, or commandeer it to send out spam and pornography.

More than 600 new Internet security holes have surfaced in 2005 so far, SANS found.

Of those, 20 were deemed most dangerous because they remain unfixed on a large number of Internet-connected computers even though software makers quickly made patches available.

As always, Microsoft products were a popular target.

Hackers found ways to take control of a user's computer by tunneling through Microsoft's Web browser, media player and instant-messaging software, as well as Windows software for servers and personal computers.

But software by Oracle Corp. and Computer Associates International Inc. also made the list, along with media players like Apple's iTunes, RealNetworks Inc.'s RealPlayer, and Nullsoft's Winamp.

Anti-virus products from Symantec Corp.. F-Secure, TrendMicro and McAfee Inc. proved vulnerable as well, a prospect Paller found particularly discouraging.

"We ought to do better in our industry -- we should be a model for others," he said.

The complete list can be found at sans.org.

Source.

More in Tux Machines

today's howtos

Linux and Linux Foundation

KDE and GNOME

Debian Family

  • Devuan GNU/Linux 1.0.0 "Jessie" Just Around the Corner, Release Candidate Out
    It's been five almost five months since the developers behind the Debian-based Devuan GNU/Linux operating system launched the second Beta version towards the first stable release of the OS, and they now announced the Release Candidate. The Devuan project continues its vision of providing a libre Debian fork without using the systemd init system, and the Release Candidate (RC) version brings the GNU/Linux distribution closer to a final release. The interesting fact is that this RC appears to be stable enough to be used for production work.
  • Budgie 10.3 Released, Here’s How to Install it on Ubuntu
    A new version of the Budgie desktop is available to install on Ubuntu. Budgie 10.3 adds a new Alt+Tab switcher, and brings a stack of bug fixes to the table.
  • Ubuntu 17.10 Codename Released "Artful Aardvark"
  • openHAB
    Partners Canonical, openHAB Foundation and Azul Systems have collaborated hard to drive development of the new openHAB 2.0 smart-home platform as a snap package. An alternative to Apple Homekit and Samsung SmartThings, openHAB from openHAB Foundation is completely free and open source, and acts as a control hub for home IoT setups.