Jump to content

Welcome to MSFN Forum
Register now to gain access to all of our features. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more. This message will be removed once you have signed in.
Login to Account Create an Account



Photo

Malware attack vectors

- - - - -

  • Please log in to reply
3 replies to this topic

#1
JorgeA

JorgeA

    FORMAT B: /V /S

  • MSFN Sponsor
  • 3,242 posts
  • Joined 08-April 10
  • OS:Vista Home Premium x64
  • Country: Country Flag

I read somewhere recently that nowadays the majority of security threats to PCs and their users lies not in the operating system itself, but in the installed applications and in software platforms such as Flash and Java.

 

Does anybody have solid statistics (or a link to such) as to the proportion of PC attacks/infections that are attributable to the vulnerabilities that Mcrosoft deals with on Patch Tuesday, vs. those that are due to vulnerabilities in platforms like Flash and Java, or to the programs residing on a PC?

 

--JorgeA

 




How to remove advertisement from MSFN

#2
jaclaz

jaclaz

    The Finder

  • Developer
  • 14,593 posts
  • Joined 23-July 04
  • OS:none specified
  • Country: Country Flag

I guess you are asking a bit too much.

Particularly the "solid", but in any case it doesn't work really-really like this.

 

I mean, there are several stages that do not allow IMHO to draw a line.

 

A "vector" may be (in my personal experience the "best" vector is the user clicking on random things AND Outlook Express :ph34r:) Flash or Java, but 1/3 to 4/5 of *any* program nowadays access the Internet, at the very least to check for it's own updates, so it is difficult to say.

 

But the "vector" is only HOW the malware enters a machine, then the "payload" may make use of *any* vulnerability present on the system.

 

Loosely I would say that  the patches on "Patch Tuesday" (those that tend to lead to "Exploit Wednesday" ;)) - with the singular exception of Internet Explorer (and Outlook/Outlook Express) patches - are largely preventing the "payload" from doing damages/work, and very little about the "vectors", but it is difficult - as said - to draw a line between the two.

 

jaclaz



#3
JorgeA

JorgeA

    FORMAT B: /V /S

  • MSFN Sponsor
  • 3,242 posts
  • Joined 08-April 10
  • OS:Vista Home Premium x64
  • Country: Country Flag

Thanks, jaclaz. It's too bad that there don't seem to be (and that it may not even be possible to have) good studies on this question that offer statistical breakdowns.

 

If the issue of hacking somebody's PC is a dynamic process where (say) the existence of a Java vulnerability then enables the use of a hole in the OS, then it all becomes a tangled mess and it's hard to tease out the causes.

 

--JorgeA



#4
JorgeA

JorgeA

    FORMAT B: /V /S

  • MSFN Sponsor
  • 3,242 posts
  • Joined 08-April 10
  • OS:Vista Home Premium x64
  • Country: Country Flag

Maybe this report will throw some light on the issue. Scroll down to the "Vulnerabilities" section.

 

If I read it right, it sounds like the great majority of security holes nowadays are in Adobe or Java products rather than the operating system.

 

Anybody have better (clearer or more definitive) numbers?

 

--JorgeA

 

P.S. Also check this out, especially the charts on pages 31 and 42 of the Full Report.

 

P.P.S. And one more:

 

Eighty-seven percent of the vulnerabilities found in the top 50 programs affected third-party programs such as Adobe Flash and Reader, Java, Skype, various media players and others outside the Microsoft ecosystem. That means the remaining 13 percent “stem from operating systems and Microsoft programs,” according to Secunia’s Vulnerability Review report, released yesterday.

Edited by JorgeA, 22 November 2013 - 12:54 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users