Microsoft's defences against cyber attacks
By Robin Whitlock
Microsoft Windows 7 is coming under increasing threat of cyber attack according to recent warnings from computer security firm Sophos in its 2011 threat report. The company's senior technology consultant, Graham Cluley, told Computing.co.uk "malware creators are now starting to hone their attacks to specifically target Windows 7 and this trend will continue as the platform and its users become an ever-larger target".
Last year, Chinese hackers used an attack technique called a 'Zero Day vulnerability' to infiltrate Microsoft Internet Explorer and use it as a means of penetrating the systems of over 30 US corporations including Google, Adobe and Juniper. This form of attack is so called because it occurs on or before the first day on which the developer becomes aware of the vulnerability of its software to attack. Web browsers are popular targets because of their widespread usage and another method is to conceal Malware in email attachments that activate when opened. Fortunately many Microsoft applications such as Microsoft Windows 7, Microsoft XP Service Pack 2 and Vista have built-in protection against such methods. It seems that the Chinese attack originated in Taiwan where a computer using Microsoft XP and running Internet Explorer 6 was targeted. This was later confirmed by Mike Reavey of the Microsoft Security Response Centre.
According to 'Jim W', a Symantec employee, part of the problem with Windows 7 has been that people seem to imagine that just because a new software application has been released that automatically means they can relax their security on the basis that the new software will have security built in. "No operating system can be completely secure against attacks on its own" he writes in a Symantec blog, "today's hackers are more sophisticated and today's businesses more susceptible to Web-based viruses and malicious code that are using social engineering techniques to propagate". He goes on to state that the sheer number of cyber-attacks each year is 'mind-boggling'. He says that Symantec's research found more than 1.6 million new malicious threats worldwide in 2008 alone. The key to defending against these attacks he states is for businesses to develop a "comprehensive, integrated security solution that provides multiple layers of protection".
Rohit, a blogger on Troublefixers.com recommends the use of Microsoft EMET (Enhanced Mitigation Experience Toolkit) as a means of improving individual PC security. This software incorporates security features that complement and reinforce existing standard Windows security systems. It gives you the ability to keep a constant check on certain applications that are popular targets for attacks including Microsoft Internet Explorer. The software is easy to use because it has only two buttons, which configure systems and applications respectively. Furthermore, as I have just discovered having downloaded EMET myself, it is free. It's now installed on my machine and I just have to run it which I will do when I've finished writing this.
So, forewarned is forearmed as they say. Stay safe guys!
www.millhousedata.com
By Robin Whitlock
Microsoft Windows 7 is coming under increasing threat of cyber attack according to recent warnings from computer security firm Sophos in its 2011 threat report. The company's senior technology consultant, Graham Cluley, told Computing.co.uk "malware creators are now starting to hone their attacks to specifically target Windows 7 and this trend will continue as the platform and its users become an ever-larger target".
Last year, Chinese hackers used an attack technique called a 'Zero Day vulnerability' to infiltrate Microsoft Internet Explorer and use it as a means of penetrating the systems of over 30 US corporations including Google, Adobe and Juniper. This form of attack is so called because it occurs on or before the first day on which the developer becomes aware of the vulnerability of its software to attack. Web browsers are popular targets because of their widespread usage and another method is to conceal Malware in email attachments that activate when opened. Fortunately many Microsoft applications such as Microsoft Windows 7, Microsoft XP Service Pack 2 and Vista have built-in protection against such methods. It seems that the Chinese attack originated in Taiwan where a computer using Microsoft XP and running Internet Explorer 6 was targeted. This was later confirmed by Mike Reavey of the Microsoft Security Response Centre.
According to 'Jim W', a Symantec employee, part of the problem with Windows 7 has been that people seem to imagine that just because a new software application has been released that automatically means they can relax their security on the basis that the new software will have security built in. "No operating system can be completely secure against attacks on its own" he writes in a Symantec blog, "today's hackers are more sophisticated and today's businesses more susceptible to Web-based viruses and malicious code that are using social engineering techniques to propagate". He goes on to state that the sheer number of cyber-attacks each year is 'mind-boggling'. He says that Symantec's research found more than 1.6 million new malicious threats worldwide in 2008 alone. The key to defending against these attacks he states is for businesses to develop a "comprehensive, integrated security solution that provides multiple layers of protection".
Rohit, a blogger on Troublefixers.com recommends the use of Microsoft EMET (Enhanced Mitigation Experience Toolkit) as a means of improving individual PC security. This software incorporates security features that complement and reinforce existing standard Windows security systems. It gives you the ability to keep a constant check on certain applications that are popular targets for attacks including Microsoft Internet Explorer. The software is easy to use because it has only two buttons, which configure systems and applications respectively. Furthermore, as I have just discovered having downloaded EMET myself, it is free. It's now installed on my machine and I just have to run it which I will do when I've finished writing this.
So, forewarned is forearmed as they say. Stay safe guys!
www.millhousedata.com
Source...