SANS study: Hackers aren't just picking on Microsoft
Results 1 to 3 of 3

Thread: SANS study: Hackers aren't just picking on Microsoft

  1. #1
    In And Above Man Black Cluster's Avatar
    Join Date
    Feb 2005
    Posts
    912

    SANS study: Hackers aren't just picking on Microsoft

    This just approves the saying that ..... if you can't open doors .. then you have windows to break into from ... this means that black hats won't stop looking for new ways to turn over the new obstacles ...

    They are now attacking anything may come thier way .... your AV .. the updates .. your MP3 applications ... anything you may think of

    Source
    Online criminals turned their attention to antivirus software and media players like Apple Computer Inc.'s iTunes in the first three months of 2005 as they sought new ways to take control of users' computers, according to a survey released today.
    While hackers continued to poke new holes in Microsoft Corp.'s popular Windows operating system, they increasingly exploited flaws in software made by other companies as well, the nonprofit SANS Institute found.

    As more Windows users agreed to receive security upgrades automatically, hackers looked to take advantage of other software programs that might not be patched as frequently, the head of the cybersecurity training and research organization said. "Operating systems have gotten better at finding and fixing things and autoupdating, so it's less fertile territory for the hackers," said SANS CEO Alan Paller.

    Malicious hackers exploit security holes to lift credit card numbers and other sensitive personal information from a user's computer, or to commandeer the computer to send out spam and pornography.

    More than 600 new Internet security holes have surfaced in 2005 so far, SANS found. Of those, 20 were deemed the most dangerous because they remain unfixed on a large number of Internet-connected computers -- even though software makers quickly made patches available.

    As always, Microsoft products were a popular target. Hackers found ways to take control of a user's computer by tunneling through Microsoft's Web browser, media player and instant messaging software, as well as Windows software for servers and PCs.

    But software from Oracle Corp. and Computer Associates International Inc. also made the list, along with media players like Apple's iTunes, RealNetworks Inc.'s RealPlayer and Nullsoft's Winamp.

    Antivirus products from Symantec Corp., F-Secure Corp., Trend Micro Inc. and McAfee Inc. proved vulnerable as well, a prospect Paller found particularly discouraging. "We ought to do better in our industry -- we should be a model for others," he said.
    \"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards - and even then I have my doubts\".....Spaf
    Everytime I learn a new thing, I discover how ignorant I am.- ... Black Cluster

  2. #2
    Elite Hacker
    Join Date
    Mar 2003
    Posts
    1,407
    Makes sense. Attack whatever is the most convenient and logical to attack. Maybe now users will start becoming more aware and be proactive about patching instead of expecting the software to do it automatically (including myself). Either that or we may start seeing all software have automatic updates. I prefer the former, but whatever.

  3. #3
    In And Above Man Black Cluster's Avatar
    Join Date
    Feb 2005
    Posts
    912
    That's right h3r3tic,
    I think this approves that .... {Popularity equals vulnerability} ..... As hackers are looking to use the most popular application to compromise as much as possible systems ....
    Usere must be more secuirty-oriented in order to keep pace with the new vulnewrabilities and thier latest patches .... But this might arise the possibilities of compromised systems ... {the reason is crystal-clear, lazy users} .....
    \"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards - and even then I have my doubts\".....Spaf
    Everytime I learn a new thing, I discover how ignorant I am.- ... Black Cluster

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •