Browsers still going unpatched, says study

**Glaswegian** · 07-02-2008, 02:05 PM

Only 59 percent of people use fully patched web browsers, putting the remainder at risk from growing threats from diligent hackers, according to a study by Swiss researchers.

The study is one of the most comprehensive analyses of what versions of web browsers people are using on the Internet. The study was conducted by researchers at The Swiss Federal Institute of Technology, Google and IBM Internet Security Services.

Web browsers are often a weak link in the security chain, as software vulnerabilities can make it easy for hackers to gain control of a PC. When that happens, hackers can perform malicious acts such as stealing personal data or turning PCs into spam-spewing drones.

What the researchers found is that although software vendors provide patches for security problems, it can take days, weeks or months before people update their applications. In the meantime, those users are at risk.

But it's not entirely the fault of users, since web browser vendors haven't exactly made patching easy, said Stefan Frei, a doctoral student at the institute, which is known as ETH Zurich, and one of the report's authors. The web browser is still fairly young technology, and the industry has yet to settle on a dominant, well-tested design, he said.

http://www.techworld.com/security/ne...&NewsID=102061

07-02-2008, 02:05 PM	#1 (permalink)
Glaswegian Moderator/ Rangemaster TSF Academy; Analyst, Security Team; Oor Wullie; TSF Surgeon and Resident Comic Join Date: Sep 2005 Location: Glasgow Posts: 20,985 OS: Win XP Pro SP3 My System Blog Entries: 9	Browsers still going unpatched, says study Only 59 percent of people use fully patched web browsers, putting the remainder at risk from growing threats from diligent hackers, according to a study by Swiss researchers. The study is one of the most comprehensive analyses of what versions of web browsers people are using on the Internet. The study was conducted by researchers at The Swiss Federal Institute of Technology, Google and IBM Internet Security Services. Web browsers are often a weak link in the security chain, as software vulnerabilities can make it easy for hackers to gain control of a PC. When that happens, hackers can perform malicious acts such as stealing personal data or turning PCs into spam-spewing drones. What the researchers found is that although software vendors provide patches for security problems, it can take days, weeks or months before people update their applications. In the meantime, those users are at risk. But it's not entirely the fault of users, since web browser vendors haven't exactly made patching easy, said Stefan Frei, a doctoral student at the institute, which is known as ETH Zurich, and one of the report's authors. The web browser is still fairly young technology, and the industry has yet to settle on a dominant, well-tested design, he said. http://www.techworld.com/security/ne...&NewsID=102061 __________________ Iain - Defender of the Haggis and all things Scottish. I don't help by PM - post in the Forums. Ad-Aware::SpywareBlaster::SpyBot::SpywareGuard::SnoopFree::AVG Free::HOSTS File::HijackThis::Donate::5 Steps For Infected PCs