Language Selection

English French German Italian Portuguese Spanish

Hackers aren't just picking on Microsoft - study

Filed under
Security

Online criminals turned their attention to antivirus software and media players like Apple Computer Inc.'s iTunes in the first three months of 2005 as they sought new ways to take control of users' computers, according to a survey released on Monday.

While hackers continued to poke new holes in Microsoft Corp.'s popular Windows operating system, they increasingly exploited flaws in software made by other companies as well, the nonprofit SANS Institute found.

As more Windows users agreed to receive security upgrades automatically, hackers looked to take advantage of other software programs that might not be patched as frequently, the head of the cybersecurity training and research organization said.

"Operating systems have gotten better at finding and fixing things and auto-updating, so it's less fertile territory for the hackers," said SANS Chief Executive Alan Paller.

Malicious hackers exploit security holes to lift credit-card numbers and other sensitive personal information from a user's computer, or commandeer it to send out spam and pornography.

More than 600 new Internet security holes have surfaced in 2005 so far, SANS found.

Of those, 20 were deemed most dangerous because they remain unfixed on a large number of Internet-connected computers even though software makers quickly made patches available.

As always, Microsoft products were a popular target.

Hackers found ways to take control of a user's computer by tunneling through Microsoft's Web browser, media player and instant-messaging software, as well as Windows software for servers and personal computers.

But software by Oracle Corp. and Computer Associates International Inc. also made the list, along with media players like Apple's iTunes, RealNetworks Inc.'s RealPlayer, and Nullsoft's Winamp.

Anti-virus products from Symantec Corp.. F-Secure, TrendMicro and McAfee Inc. proved vulnerable as well, a prospect Paller found particularly discouraging.

"We ought to do better in our industry -- we should be a model for others," he said.

The complete list can be found at sans.org.

Source.

More in Tux Machines

Windows 'Upgrade'

  • When A Computer Is Ready for the Junk Pile
    To that point, there was a report that a mail server failure in a large business office remained a mystery for two days until someone found an old Pentium II back in the corner of some obscure closet with a burned out power supply. It is reported that the Slackware/Debian/Red Hat machine had been plugging away as a mail server for a number of years, completely unattended. That’s feasible I suppose, but I further suppose that it’s a modern day parable about how open source can indeed, carry the day.
  • Microsoft draws flak for pushing Windows 10 on PC users
    With about a month left for many PC users to upgrade to Windows 10 at no charge, Microsoft is being criticized for its aggressive — some say too aggressive — campaign to get people to install the new operating system.
  • Microsoft forks out thousands over forced Windows 10 upgrade
    Microsoft has had to pay a Windows user in California US$10,000 over a forced upgrade to Windows 10, according to a report in the Seattle Times. The user, Teri Goldstein, runs a travel agency in Sausalito, a San Francisco Bay Area city in Marin County, California.
  • A lawsuit over an unwanted Windows 10 upgrade just cost Microsoft $10,000
    Microsoft recently paid a (very small) price for its Windows 10 upgrade tactics, and that was before they became increasingly aggressive.
  • Updategate: California woman awarded $10,000 for borked Windows 10 upgrade
    A CALIFORNIA woman has set a precedent after a court ruled that she was entitled to damages over the installation of Windows 10 on her machine. Teri Goldstein, a travel agent, testified that the new operating system had auto-downloaded, started to install, failed, and left her Windows 7 computer running painfully slowly and often unusable for days. "I had never heard of Windows 10," Goldstein told reporters. "Nobody ever asked me if I wanted to update."
  • Microsoft pays out $10,000 for automatic Windows 10 installation
    Company withdraws appeal leaving it liable for $10,000 compensation judgment after botched automatic upgrade of travel agent’s computer
  • Microsoft Pays Woman $10,000 Over Its Forced Windows 10 Upgrade
    As a result of a legal suit, Microsoft has paid a woman $10,000 over the forced Windows 10 upgrade.
  • 'I urge everyone to fight back' – woman wins $10k from Microsoft over Windows 10 misery
    A California woman has won $10,000 from Microsoft after a sneaky Windows 10 update wrecked the computer she used to run her business. Now she's urging everyone to follow suit and "fight back." Teri Goldstein – who manages a travel agency in Sausalito, just north of San Francisco – told The Register she landed the compensation by taking Microsoft to a small claims court. Rather than pursue a regular lawsuit, she chose the smaller court because it was better suited to sorting out consumer complaints. Crucially, it meant Microsoft couldn't send one of its top-gun lawyers – or any lawyer in fact: small claims courts are informal and attorneys are generally not allowed. Instead, Redmond-based Microsoft had to send a consumer complaints rep to argue its case.

Canonical Releases New Kernel Update for Ubuntu 12.04 LTS and Ubuntu 14.04 LTS

We reported the other day that Canonical released a major kernel update for its Ubuntu 16.04 LTS (Xenial Xerus) operating system, and it appears that it also affected users of the Ubuntu 15.10 (Wily Werewolf) distribution. Read more

This programmable, open source outlet can do things that off-the-shelf smart plugs can't

Excited by the idea of an open-source, Arduino-based outlet, capable of remotely controlling your various household devices? If so, you’ll definitely want to check out the Portlet: a versatile portmanteau of “portable” and “outlet,” which — despite only consisting of 4 buttons and a simple 2×15 character LCD screen — can be programmed to do everything from switching your lights on at a certain time to keeping your coffee heated at the perfect temperature. Read more

How I welcomed an immigrant family with a Linux laptop

From the LibriVox website, I downloaded the free, public domain audio reading of Helen Keller’s amazing autobiography, The Story of My Life, which is an excellent book that was first published in 1903. Then, I downloaded the text of the book (it's in the public domain) from Project Gutenberg and imported the text into Calibre, the free ebook reading software. Using my favorite Linux screencasting software, SimpleScreenRecorder, I married the text (in a large font) to the audio recording. I created the first 11 chapters of the book as video files in this way, and uploaded them to YouTube. I also copied these onto the Dell Inspiron 9400, so these video files could be viewed offline. Read more