You are here: silicon.com > Software > Security Strategy

Security Strategy

Security software faces increased hack attacks

Antivirus products ripe for exploitation, say analysts

Tags: hackers, security, antivirus, windows

By Joris Evers

Published: 21 June 2005 09:25 GMT

As the pool of easily exploitable Windows security bugs dries up, hackers are looking for holes in security software to break into PCs, analysts said.

Software makers of ubiquitous antivirus products have not yet been forced to acknowledge and fix potential problems in their code, analysts with Yankee Group wrote in a research paper published on Monday. As a result, antivirus software is like low-hanging fruit to hackers, according to the analysts.

Microsoft's Windows operating system has been a favourite target of hackers but new security flaws are being discovered in security products at a faster rate than in Microsoft's products, the analysts wrote. In the 15-month period ending 31 March, 77 separate vulnerabilities have been reported by security vendors, they wrote.

CheckPoint Software Technologies, F-Secure and Symantec are among the vendors that have seen a rise in the number of security issues that affect their products in the past years, according to Yankee Group.

If the trend continues, the number of vulnerabilities for security products will be 50 per cent higher than 2004 levels, according to the analysts. While Microsoft flaws continue to flow, the rate has decreased notably, according to the analysts. They credit the release last year of Windows XP Service Pack 2, a security-focused update.

Yankee Group predicts a "rising tide" of vulnerabilities will be found in security products. Software makers should look at their security processes, and users need to get ready to patch security products, the analysts wrote. Also, buyers should ask tough security questions when buying new products, they advise.

Joris Evers writes for CNET News.com

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Nick Heath Your top HR tech priorities for next year revealed How to make human resources IT work for you

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business


  • Jobs
Penetration Testers Required - Must be CREST / CHECK Accredited

Overview • To work in their security testing team, you will need a strong technical background in the area of network security including a ...

Technical Analyst - SMS, SCCM, WSUS - Patch & Release

The role will involve the assessment of vulnerabilities, patch testing and application deployment via remote systems such as SMS/SCCM, WSUS and ...

Product Helpdesk Support Specialist

Document, track and report technical bugs and product issues to all product stakeholders. To assist the company in achieving its business objectives ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.





Quick Sitemap Links: