Language Selection

English French German Italian Portuguese Spanish

Hackers aren't just picking on Microsoft - study

Filed under
Security

Online criminals turned their attention to antivirus software and media players like Apple Computer Inc.'s iTunes in the first three months of 2005 as they sought new ways to take control of users' computers, according to a survey released on Monday.

While hackers continued to poke new holes in Microsoft Corp.'s popular Windows operating system, they increasingly exploited flaws in software made by other companies as well, the nonprofit SANS Institute found.

As more Windows users agreed to receive security upgrades automatically, hackers looked to take advantage of other software programs that might not be patched as frequently, the head of the cybersecurity training and research organization said.

"Operating systems have gotten better at finding and fixing things and auto-updating, so it's less fertile territory for the hackers," said SANS Chief Executive Alan Paller.

Malicious hackers exploit security holes to lift credit-card numbers and other sensitive personal information from a user's computer, or commandeer it to send out spam and pornography.

More than 600 new Internet security holes have surfaced in 2005 so far, SANS found.

Of those, 20 were deemed most dangerous because they remain unfixed on a large number of Internet-connected computers even though software makers quickly made patches available.

As always, Microsoft products were a popular target.

Hackers found ways to take control of a user's computer by tunneling through Microsoft's Web browser, media player and instant-messaging software, as well as Windows software for servers and personal computers.

But software by Oracle Corp. and Computer Associates International Inc. also made the list, along with media players like Apple's iTunes, RealNetworks Inc.'s RealPlayer, and Nullsoft's Winamp.

Anti-virus products from Symantec Corp.. F-Secure, TrendMicro and McAfee Inc. proved vulnerable as well, a prospect Paller found particularly discouraging.

"We ought to do better in our industry -- we should be a model for others," he said.

The complete list can be found at sans.org.

Source.

More in Tux Machines

NVIDIA Linux Performance-Per-Dollar: What The RX 480 Will Have To Compete Against

There's a lot of benchmarking going on this weekend at Phoronix in preparation for next week's Radeon RX 480 Linux review. Here are some fresh results on the NVIDIA side showing the current performance-per-dollar data for the NVIDIA Maxwell and Pascal graphics cards for seeing what the RX 480 "Polaris 10" card will be competing against under Linux. Read more

RaspAnd Project Brings Android 6.0 Marshmallow to Raspberry Pi 3, Now with GAAPS

Android-x86 and GNU/Linux developer Arne Exton has informed Softpedia today, June 25, 2016, about the immediate availability of a new build of his RaspAnd distribution for Raspberry Pi single-board computers. RaspAnd Build 160625 is the first to move the Android-x86-based distro to the latest Android 6.0.1 Marshmallow mobile operating system created by Google. And in the good tradition of the RaspAnd project, both Raspberry Pi 3 Model B and Raspberry Pi 2 Model B are supported. Read more

BSD Leftovers

  • FreeBSD 11.0 Alpha 5 Released, Schedule So Far Going On Track
    The fifth alpha release of the huge FreeBSD 11.0 operating system update is now available for testing. FreeBSD 11.0 is bringing updated KMS drivers, Linux binary compatibility layer improvements, UEFI improvements, Bhyve virtualization improvements, and a wide range of other enhancements outlined via the in-progress release notes.
  • DragonFly's HAMMER2 File-System Sees Some Improvements
    The HAMMER2 file-system is going on four years in development by the DragonFlyBSD crew, namely by its founder Matthew Dillon. It's still maturing and taking longer than anticipated, but this is yet another open-source file-system.

Debian GNU/Linux 9 "Stretch" to Ship with GCC 6 by Default, Binutils 2.27

Debian developer Matthias Klose has announced that the new GCC 6 compiler, which will be made the default GCC compiler for the upcoming Debian GNU/Linux 9 "Stretch" operating system, is now available in the Debian Testing repos. Debian users who are currently using Debian Testing can make GCC 6 the default compiler by installing the gcc/g++ packages from experimental. If installing it, they are also urged to help fix reported built failures in Debian Testing and Debian Unstable. Read more