All the latest UK technology news, reviews and analysis


Java named top attack target by Kaspersky

02 Nov 2012
Java logo

Oracle's Java platform is the most popular attack target online, accounting for more than half of all malware exploit attempts, according to Kaspersky Lab.

The security firm said that in the last quarter, 56 per cent of all attacks on systems in its security network sought to exploit unpatched Java flaws as an entry point for malware attacks.

Researchers believe that the popularity of Java, combined with the lack of a set update schedule or automatic installation mechanism, helped to make Java a popular target for malware writers and automatic exploit kits.

"According to Oracle, different versions of this virtual machine are installed on more than 1.1 billion computers. Importantly, updates for this software are installed on demand rather than automatically, increasing the lifetime of vulnerabilities," wrote Kaspersky researcher Yury Namestnikov.

"In addition, Java exploits are sufficiently easy to use under any Windows version and, with some additional work by cybercriminals, as in the case of Flashfake, cross-platform exploits can be created."

The second most popular target amongst malware writers was Adobe Acrobat Reader, which was targeted in 25 per cent of reported attacks. Microsoft Windows was a distant third in the rankings with four per cent of attacks, followed by Adobe Flash with three per cent and Android root exploits, which accounted for two per cent.

The company noted that attacks on Android devices continue to be on the rise. In the quarter researchers logged some 9130 new variants of Android malware over the quarter, up from just 5441 at the beginning of the year.

Researchers believe that the meteoric growth is likely to continue as users become more accustomed to browsing the web on their handsets.

"It is obvious that the devices with the later versions of operating systems installed on them are better suited to actively working online," wrote Namestnikov.

"Unfortunately, more active web surfing often leads users to sites hosting malicious content."

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Windows 10 poll

What are your first impressions of Windows 10?
13%
4%
10%
4%
22%
4%
43%

Popular Threads

Powered by Disqus
V3 Sungard roundtable event - Cloud computing security reliability and scalability discussion

CIOs debate how to overhaul businesses for the digital era

V3 hosts roundtable with Sungard Availability Services

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Application Support Analyst

Are you looking for a career with a dynamic, growing...

Statistical Analyst - Data Modeling / Marketing Insights SaaS

Statistical Analyst - Data Modeling / Marketing Insights...

Technical Support Analyst (Java / J2EE) - Systems Integrator

Application Implementation Support Analyst – Oracle...

Technical Business Analyst

Salary: £35-45K + bens Industry: Insurance Key...
To send to more than one email address, simply separate each address with a comma.