Kaspersky’s Security Researchers Leave Microsoft off the Top 10 Most Vulnerable List. Apple not so lucky.

11

Comments

+ Add a Comment
avatar

Xenite

Here is the thing though, those programs are all widely used. Virtually all users are running some form of java, shockwave, reader, iTunes etc.

These programs will always be the target for nasty exploits. Nobody is going to hammer on finding an exploit for a program that 200 people use, it's a waste of time.

It's why Apple's OS enjoyed so few problems, it simply didn't have enough users in the large spectrum of things, Microsoft did.

Can more be done? Of course, but you also need to cut a little slack at the same time. it's not easy having a product that is hammered on a daily basis by hackers and botnet exploiters.

avatar

thematejka

All this being said, be smart and do a couple smart things:

1) run a good anti-virus
2) backup or clone your system
3) Don't be stupid on the internet

It's easy to protect yourself despite the fact that vulnerabilities exist in programs.

avatar

noobstix

Didn't think WinAMP would be prone to something of this nature. I actually kinda liked WinAMP for the time I used it when I found some nice skins for the player back then.

avatar

Slugbait

Well, "back then" was before AOL bought WinAMP. Considering the history of their other apps like AIM, I don't believe AOL has ever taken security all that seriously.

avatar

Athlonite

So really we are only looking at the top 4 not top 10 if you go by corporation instead product

as for winamp well it's a good reason why all plug-ins should be well vetted before allowing them on the public list of downloads if it does something funky then send it back for review with a note stating this is whats wrong please fix it and resubmit apple do it with apps Opera does it with widgets/extensions is it really that hard

avatar

phatbody

I have a chance to meet Mr. Kaspersky this Friday. Anyone have any good questions in case I get to ask one? Thanks in advance. b well

avatar

dgrmouse

@phatbody: In the context of this article, I'd ask him whether he sees anything on the horizon that protects users from vulnerabilities like these that are never really going to go away. It seems to me that user permissions are limited in their usefulness when everything from video games to web browsers require administrative rights for installation of products and (Lord help me) system services. Perhaps I'd ask him what it would take to bring robust isolation controls to the average user - something that would give a per-file or per-resource granularity of access control for each application.

I'd ask Kaspersky what it is going to take to bring proper security to the mobile world, and whether initiatives like the Trusted Platform Module (TPM) are really beneficial to end-users, or just to OEMS; how useful is "platform integrity" to me when I can't fully trust the applications that I run? If my media player can still leak information from my e-mail account, in what way do I really benefit? Optimum software security would require no trust in any software other than the very core of the OS, so what needs to happen to get us there?

And if I wanted to pressure Kaspersky, I'd probably mention that AV companies were the first to promote the idea of software as a service, and ask him how much he likes the idea on a personal level now that it's so pervasive.

avatar

phatbody

Loved your last statement. (Window 9 $9.99 a month?) Thank you for the input.

avatar

Architek9

doesnt suprise me with flash being as bloated as it is same with java

avatar

GavinFarrington...

Ouch Adobe. Half of the top ten? Not particularly surprising given the products involved, but still...

I always *did* think iTunes and Quicktime were more like viruses than apps. ;)

avatar

Neufeldt2002

Some really don't surprise me, Flash, Java, Adobe Reader, the usual suspects. I guess iTunes really doesn't surprise me either, but I am a little shocked that Winamp is listed. However a quick Google search makes me believe it is plug-in related, so as long as you use Winamp for music you should be okay. Though I could very well be wrong.

Log in to MaximumPC directly or log in using Facebook

Forgot your username or password?
Click here for help.

Login with Facebook
Log in using Facebook to share comments and articles easily with your Facebook feed.