IN FOCUS: Symantec's New Internet Security Threat Report > ArGoStuff

	Register Login
	December 3, 2008

Search Web Site

You are here: Articles

Home

ArGoStuff

Forums

Articles

Cyber Security Tips

FAQ

Downloads

Links

Article Categories

Email/Internet Security Issues and Tips (6)

How To (1)

In Focus (5)

News from the Web (11)

Reference (10)

Articles

Current Articles | Categories | Search

IN FOCUS: Symantec's New Internet Security Threat Report
Posted by SteveT on Thursday, March 29, 2007 :: Last Updated on Sunday, January 20, 2008:: Views 780

by Mark Joseph Edwards, News Editor, mark at ntsecurity / net

Security vendors often release reports based on their perspective of current and future Internet-related security threats. The reports are useful in learning what the vendor sees, which in turn can lead you to your own widened perspective on potential problems.

Symantec recently released "Internet Security Threat Report, Trends for July-December 2006." While the report is based on historical data, it does lend some insight into the future.

The company said it bases its findings on a network of more than 40,000 sensors in more than 180 countries, more than 2 million decoy email accounts, and information collected from its BugTraq mailing list. Some interesting highlights from the report include the discovery that of all the attacks that affected Web browsers, approximately 77 percent were aimed at Microsoft Internet Explorer (IE). Ninety-three percent of all attacks were aimed at home users.

Another interesting data point is that Symantec tracked over 5,200 Denial of Service (DoS) attacks per day. That's a lot! Interestingly enough, the company said that figure dropped from last year when it tracked more than 6,100 DoS attacks per day.

The company also documented more than 2,500 vulnerabilities; 66 percent of them were related to Web applications, and 79 percent were "easily exploitable."

Another interesting set of points are patch turnaround times for OSs. Symantec measured five vendors: Microsoft, Sun Microsystems, Apple, HP, and Red Hat. Of those five companies, Symantec found that Microsoft had the fastest average turnaround time overall, Red Hat was second, HP was third, Apple was fourth, and Sun was fifth.

The number of vulnerabilities measured for each vendor varied as did the response time, when comparing the second half of 2006 with the first half. For example, HP's average response time in the first half of 2006 was 53 days for the seven vulnerabilities the company disclosed. In the second half of 2006, HP's number of disclosed vulnerabilities increased to 98 and the company's average response time increased to 101 days.

Even though we'll most likely see fewer vulnerabilities in Vista than we do in previous Windows platforms, I expect Microsoft's average vulnerability response time will remain steady since it uses a monthly patch release schedule.

Vista will no doubt affect the future reports of most any Windows-based security vendor--Symantec certainly included. The report predicts that third-party software developers could become the source of a significant percentage of attacks against the OS.

That's just the tip of the iceberg of the information in Symantec's 104-page report. Other information includes trends regarding specific types of attacks, what future trends might be, and a lot of detail about some of the topics I covered briefly here. If you're interested in reading the entire report, you can get a copy in PDF format at the URL below:

http://list.windowsitpro.com/t?ctl=4FC12:E0792EBBCDE7A61A435D3A90B127C8E8

Previous Page | Next Page

Donations

Find our site useful? Make a donation to show your support

ArGoStuff Supporters

News from ArGoSoft

1 2 3 4 5 6

Mail Server Pro v1.8.9.6

Improved Export to .NET function - sometimes email messages were not getting exported, because the database of email messages was not up to date. Now each folder gets rebuilt before the export function;

12/2/2008 11:19:02 PM

Email Address Validator

We have discontinued our email address validation service, and launched new web site:

http://www.emailaddressvalidator.com

It provides the web service interface to validate lists of email addresses. We hope that our service will help to reduce unwanted traffic on Internet, ensuring that mail is sent only to valid and legitimate addresses.

11/25/2008 10:13:02 AM

Mail Server v1.0.5.8

Mail Server

Mailbags now have an option to accept mail only when specified server is down - will help to fight with spam which attempt to deliver mail bypassing the main server;
When delivering mail, if main exchanger returns 4xx reply (temporary problem), the server will not try other exchangers, will retry later the main exchanger;
Server options moved from registry to a XML file. 64 bit versions of Vista and 2008 server appear to be having access rights problems to the Windows registry, and the change will make our server more compatible with 64 bit versions;
Added an option to specify the number of lines on the log screen, when using the user interface. Was causing memory problems if left running for long time;
Fixed couple of problems, which were showing when SQL server was set up to use case sensitive SQL statements;
Made changes in the remoting interface to allow logging in using aliases;

Web Interface

Made changes to allow logging in using aliases;
When viewing folders, web interface now displays the name of logged in user;

11/12/2008 2:31:31 PM

FTP Server v1.0.1.6

Server settings have been moved from registry to the XML file, which will be located in the common application data directory. 64 bit versions of Windows were having trouble writing into the registry; similar change is coming to the mail server;
If used, XML files (Users.XML, Groups.XML and ServerOptions.XML) will also be moved to the common application data directory;

11/8/2008 11:41:29 PM

FTP Server v1.0.1.5

When performing active data transfers on systems with multiple IP addresses, data connections were using first available IP address, rather than one on which the control connection was active. It was causing confusion with firewalls and routers;

11/2/2008 9:39:24 PM

1 2 3 4 5 6

Protect Your Computer today with

Home:ArGoStuff:Forums:Articles:Cyber Security Tips:FAQ:Downloads:Links
Copyright 2006-2008 by ArGoStuff Terms Of Use Privacy Statement