printable version

12/6/2005

Computer Security Back At 1999 Levels
by Timothy Lee, Associate Extension Specialist, UALR Lead Center

The SANS Institute reports "[computer] security has been set back nearly six years in the past 18 months." Six years ago attackers targeted operating systems and the operating system vendors didn't do automated patching.

Now the attackers are targeting popular applications, and the vendors of those applications do not do automated patching. The most noticeable set of applications targeted by attackers are the backup and recovery tools as well as antivirus and other security tools that most organizations think are keeping them safe from attacks and from loss of data.

Top vulnerabilities in Windows systems
- Windows services
- Internet Explorer
- Windows Office and Outlook Express
- File sharing applications Windows

Top vulnerabilities in cross-platform applications
- Backup software
- Antivirus software
- PHP-based applications
- Database software
- DNS software
- Instant Messaging applications
- Web browsers

For the current list of SANS Twenty Most Critical Internet Security Vulnerabilities, visit http://www.sans.org/top20/ .

Recent | 2007 | 2006 | 2005 | 2004 | 2003

Subscribe right now to our FREE bi-monthly E-News service!
You will receive articles two full weeks before they appear on the Arkansas SBDC web site!

Index of 2005 articles

The Arkansas Small Business and Technology Development Center is funded in part through a cooperative agreement with the U.S. Small Business Administration through a partnership with the University of Arkansas at Little Rock College of Business and other institutions of higher education. All opinions, conclusions or recommendations expressed are those of the author(s) and do not necessarily reflect the views of the SBA. It is the goal of UALR to eliminate discriminatory harassment and to promote equal opportunity regardless of race, gender, color, national origin, sexual orientation, age, religion, veteran's status, or disability.