Newsletters

Select newsletters below and click the button to sign up!

Boston News NY News
DC News Internet Daily
SiliconValley News
InternetNews Business Report




Become a Marketplace Partner


Partner With Us


Internetnews Bloggers

Recent Entries

Archives

September 2009
Sun Mon Tue Wed Thu Fri Sat
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30      

Monthly Archives

Search The Blog

Netstat -vat by Sean Michael Kerner (bio)

A command line view of IT



Operating Systems not the key security risk anymore

By Sean Michael Kerner on September 15, 2009 1:23 PM
sans_small.gif
From the 'Security Stats' files:

The SANS Institute is out today with a new Cyber Security Risks report. Among their top conclusions is the assertion that operating systems are not the biggest IT security problem.

Add-on applications and web application vulnerabilities, top SANS list for security vulnerabilities. 
"Waves of targeted email attacks, often called spear phishing, are exploiting client-side vulnerabilities in commonly used programs such as Adobe PDF Reader, QuickTime, Adobe Flash and Microsoft Office," the report states. "This is currently the primary initial infection vector used to compromise computers that have Internet access."
This is not a surprising finding to me.

Users are not updating apps as often as they should, whether it's Adobe Flash or Apple QuickTime. Other security researchers have pointed out the same issue, time and again as well.

The other big issue is web application vulnerability, which again is something that is no surprise either.

"Attacks against web applications constitute more than 60% of the total attack attempts observed on the Internet," the report states. "Despite the enormous number of attacks and despite widespread publicity about these vulnerabilities, most web site owners fail to scan effectively for the common flaws and become unwitting tools used by criminals to infect the visitors that trusted those sites to provide a safe web experience."
It's not all doom and gloom though.

SANS did find that one type of attack that I used to see every so often has now declined.  SANS reported that there has been a large decline in the number of "PHP File Include" attacks. The decline comes from improved processes used by developers and security pros, according to SANS.

All this doesn't take the operating system vendors off the hook, in my view.

What has happened is attackers are looking for the best route to compromise the most machines, regardless of OS. If a web app is vulnerable, all the attacker needs to do is infect the one server in order to propagate their attack to thousands (or millions of users).
"There are few attacks against the operating system itself, and patching has become pretty robust when it comes to the operating system and its core components," SANS researchers Johannes B. Ullrich blogged.

| Comments (0) | TrackBacks (1) | Share

1 TrackBacks

Listed below are links to blogs that reference this entry: Operating Systems not the key security risk anymore.

TrackBack URL for this entry: https://swarm.jupitermedia.com/mt-tb.cgi/8913

» Making Sense of the SANS “Top Cyber Security Risks” Report from The New School of Information Security

The SANS Top Cyber Security Risks report has received a lot of positive publicity. I applaud the effort and goals of the study and it may have some useful conclusions. We should have more of this. Unfortunately, the report has some major problems. Th... Read More

Tracked on September 22, 2009 11:51 AM

Leave a comment