SANS Report Says Organizations Focusing On the Wrong Security Threats 98
yahoi writes "Companies around the world are leaving themselves wide open to Web- and client-side attacks, according to a new report released today by the SANS Institute that includes real attack data gathered from multiple sources. SANS found that most organizations are focusing their patching efforts and vulnerability scanning on the operating system, but they're missing the boat: 60 percent of the total number of attacks occur on Web applications, and many attacks are aimed at third-party applications such as Microsoft Office, and Adobe Flash and other tools. Exacerbating the problem, they're taking twice as long to patch Microsoft Office and other applications than to patch their operating systems."
Most type of exploit is 'other' (Score:3, Funny)
From the "No Duh" department... (Score:5, Funny)
Wait, let me get this straight... Attackers are going after the things that aren't getting fixed as quickly? Who would have guessed!
Re:We are just lucky I guess (Score:3, Funny)
IE6 (Score:4, Funny)
Re:We are just lucky I guess (Score:3, Funny)
Re:We are just lucky I guess (Score:1, Funny)
awwww... someone has a man crush.
Re:We are just lucky I guess (Score:5, Funny)