All the latest UK technology news, reviews and analysis


Java named top attack target by Kaspersky

02 Nov 2012
Java logo

Oracle's Java platform is the most popular attack target online, accounting for more than half of all malware exploit attempts, according to Kaspersky Lab.

The security firm said that in the last quarter, 56 per cent of all attacks on systems in its security network sought to exploit unpatched Java flaws as an entry point for malware attacks.

Researchers believe that the popularity of Java, combined with the lack of a set update schedule or automatic installation mechanism, helped to make Java a popular target for malware writers and automatic exploit kits.

"According to Oracle, different versions of this virtual machine are installed on more than 1.1 billion computers. Importantly, updates for this software are installed on demand rather than automatically, increasing the lifetime of vulnerabilities," wrote Kaspersky researcher Yury Namestnikov.

"In addition, Java exploits are sufficiently easy to use under any Windows version and, with some additional work by cybercriminals, as in the case of Flashfake, cross-platform exploits can be created."

The second most popular target amongst malware writers was Adobe Acrobat Reader, which was targeted in 25 per cent of reported attacks. Microsoft Windows was a distant third in the rankings with four per cent of attacks, followed by Adobe Flash with three per cent and Android root exploits, which accounted for two per cent.

The company noted that attacks on Android devices continue to be on the rise. In the quarter researchers logged some 9130 new variants of Android malware over the quarter, up from just 5441 at the beginning of the year.

Researchers believe that the meteoric growth is likely to continue as users become more accustomed to browsing the web on their handsets.

"It is obvious that the devices with the later versions of operating systems installed on them are better suited to actively working online," wrote Namestnikov.

"Unfortunately, more active web surfing often leads users to sites hosting malicious content."

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

BYOD vs CYOD vs BYOC poll

Which approach is your firm taking to managing employees' mobile devices?
23%
14%
4%
17%
30%
12%

Popular Threads

Powered by Disqus
samsung-galaxy-s5-smartphone

Samsung Galaxy S5 video review

We break down the key strengths and weaknesses of Samsung's latest Android flagship

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv33

Data protection: the key challenges

Deduplication is a foundational technology for efficient backup and recovery

rdc2

iPad makes its mark in the enterprise

The iPad can become a supercharged unified communications endpoint, allowing users to enhance their productivity

Bilingual 1st Line IT Service Desk Analyst – Global Product Supplier

Bilingual 1st Line IT Service Desk Analyst – Global Product...

Front End Developer

OOJS | BACKBONEJS | ANGULARJS | HTML5 | CSS3 | RESPONSE...

Ruby on Rails Developer

RUBY | RAILS | REST API | MONGODB | REDIS | AWS | | GIT...

Senior Quality Assurance Engineer Tester

Senior Quality Assurance Engineer Tester (Robot Framework...
To send to more than one email address, simply separate each address with a comma.