First for mac news, reviews and know-how
  
Welcome Guest  Register Log in
  Advanced 

News 

[PSUs]
Friday 23rd March 2007
Windows beats Mac OS X on security says report 8:18AM, Friday 23rd March 2007
Mac OS X would appear to be less secure than Windows, as findings show that in the last six months of 2006 Microsoft patched its operating system fewer times than any rival, and turned around those patches far quicker.

The information appears in Symantec's newly-published Internet Security Threat Report, which covers the period 1 July to 31 December 2006. Windows Vista was not released to retail until January 2007, so is not included in the report, although as it points out 'In December 2006, Symantec reported a vulnerability in previous versions of Windows that also affects the version of Windows Vista that was released to consumers in January. This indicates that Microsoft's Security Development Lifecycle, while thorough, does not necessarily identify all potential vulnerabilities.'

Praise for Microsoft's patch development was based on evidence that it took an average of 21 days to develop each patch, based a sample set of 39 vulnerabilities. While better than Sun, HP, Red Hat or Apple, it still represented a slow-down over the first six months of the year, in which it was patching vulnerabilities in an average of 13 days from notification.

Apple took an average of 66 days to patch vulnerabilities.
 
 
ADVERTISEMENT
This metric was based on a sample set of 43 vulnerabilities, of which only one was considered to be of 'high severity'. Of Microsoft's sample, five were tagged 'high severity'. Again, Apple's turn-around slowed in the second half of the year, as it had been patching vulnerabilities in an average of 37 days between January and June 2006.

However, Internet Explorer's ubiquity helped it achieve the unattractive distinction of being the most targeted web browser, as it was the subject of 77% of all malicious online attacks. Symantec documented 54 vulnerabilities in IE, compared to just 40 in Safari, although while Microsoft patched exploited vulnerabilities in its browser in around 10 days, it took Apple 62 days to do the same with its own default browser. Symantec explains this as being 'skewed by a smaller sample set of patched vulnerabilities and exploits'.

Elsewhere, the report noted that the government sector accounted for 25% of all identity theft-related data breaches, which was more than in any other sector.

However, Denial of Service attacks were down, dropping from 6110 a day in the first six months of the year to 5213 a day in the second six. While the United States was the most common target of such attacks (52% of all attacks detected) it was also the originator of more data-related malicious activity than any other country, accounting for a full 31% of all activity on record.

The full report can be found here.
Nik Rawlinson

Submit to: Digg  |  Slashdot  |  Del.icio.us  |  Technorati

Related News


Back to top
› See more News

Columns

Editorial: Touching on a painful lesson

Storing all your data on a mobile device isn't always a good thing. › See full Opinion
› See more Columns

MAC GUIDE

The Independent Guide to the Mac 2

Featuring all the essential tips, crafty techniques and information you need, this fully updated publication is the definitive guide to the Apple range and a must have for any switched on individual.
If you would prefer a digital version for only £5,  click here

IPOD GUIDE

The Ultimate iPod Guide

Hundreds of tips to make the most of your iPod - covering every iPod, old and new.

IPHONE GUIDE

The Independent Guide to the iPhone

Master the iPhone, tool by tool. Everything you need to know about the most remarkable portable gadget.

GRAPHIC GUIDE

The Ultimate Guide To Graphic

Covering Photoshop, InDesign, QuarkXPress and more, this comprehensive guide compiled by experts across the field of computing, presents the reader with the vital knowledge of how to harness the power of their computer and use this to create professional, appealing and engaging projects.