Showing results for 
Search instead for 
Did you mean: 

SANS - New Cyber Security Risk Report

SANS - New Cyber Security Risk Report
The Internet Storm Center has issued an excellent up-to-date study on key dangers related to the web and email.

SANS - New Cyber Security Risk Report

QUOTE: Some of the key findings include that operating systems are for the large part less and less of a problem. There are few attacks against the operating system itself, and patching has become pretty robust when it comes to the operating system and its core components. However, third party applications (think Adobe, Java, Quicktime) are a big problem, and they are usually not well covered by existing controls.

On the server side, web applications are of course the big entry point for an attacker. In particular the combination of vulnerable web applications and vulnerable client software is frequently used to inject a client exploit into a web application in order to pivot and attack inside the attacked network.

DETAILED REPORT - As of September 2009