Nov 052012
 

According to media reports, the security firm Kaspersky has released the report of the “IT threats change” of the third quarter. As usual, some of the conclusions in the report are concerning, of which the most concerning is none of Microsoft’s product is in the 10 most vulnerable products list, which is mainly due to Microsoft introduced in the auto-update mechanism in the most recent version Windows operating system to improve the safety performance of the product.

The top 10 most vulnerable products Kaspersky released includes Oracle’s Java, Adobe Flash Player, Adobe Reader/Acrobat, Apple QuickTime, Apple iTunes, Winamp, Adobe Shockwave Player and Adobe Flash player, etc..

Details as follows:

1, Oracle Java Multiple Vulnerabilities, the degree of risk: high risk;

2, Oracle Java Three Vulnerabilities, the degree of risk: extremely dangerous;

3, Adobe Flash Player Multiple Vulnerabilities, the degree of risk: high risk;

4, Adobe Flash Player Multiple Vulnerabilities, the degree of risk: high risk;

Adobe Reader / Acrobat Multiple Vulnerabilities degree of risk: extremely dangerous;

6, Apple QuickTime Multiple Vulnerabilities, the degree of risk: high risk;

7, Apple iTunes Multiple Vulnerabilities, degree of risk: high risk;

8, Winamp AVI / IT File Processing Vulnerabilities, degree of risk: high risk;

9, Adobe Shockwave Player Multiple Vulnerabilities, degree of risk: high risk;

10, Adobe Flash Player Multiple Vulnerabilities, the degree of danger: extremely dangerous.

The above ranking is based on the products user proportion.

A few years ago, Microsoft’s products have been in this list. However, since the release of Windows Vista, Microsoft’s product safety performance has been significantly improved. Windows 7 and Windows 8 forward a step on the basis of the Windows Vista and further enhance the safety of products. However, due to the large market share, Windows is still the main target of hacker attacks, such as Windows 8 was exposed to have zero-day bug.

In addition, Kaspersky report also provides some important data:

1,28% attacked mobile devices are running the Android 2.3.6 operating system, which was released in September 2011;

2, in the third quarter of this year, 56% sniffing attacks exploit vulnerabilities of Java;

3, in the third quarter of this year, the total number of URLs with malicious code is 91.9 million, an increase of 3% than the second quarter.

Among which the second list deserves concerning, which is why unless users must use it, or should not install Java.

 Leave a Reply

(required)

(required)


four − 2 =

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>