Page 26 - CDM-Cyber-Warnings-March-2014
P. 26
Microsoft Leads the List of Most Vulnerable Vendors for 2013 Enterprise Solution Providers Experienced the Highest Number of Vulnerabilities in 2013 by Michelle Johnson Cobb, Vice President of Worldwide Marketing, Skybox Security Microsoft topped the list of most vulnerable vendors in 2013, in a Skybox Security ranking of vulnerabilities in products that are widely used in enterprise organizations. Microsoft and other well-known vendors on the list such as Oracle, Cisco and IBM have solutions that are essential in every nearly large organization. In 2013, there were 700 critical vulnerabilities in enterprise- level products, including more than 500 from just one vendor. . Solutions from these vendors are often embedded in network services and business processes and accessible from a huge number of endpoints. Left unaddressed, vulnerabilities connected to these products can open companies up to serious security risks. For example, in 2011 Sony’s PlayStation Network and Online Entertainment service were hacked exposing more than 100 million users. Personal details such as user’s names, addresses and email addresses were stolen by hackers. Some experts later claimed that Sony was using outdated software with known vulnerabilities before the incident occurred. Prominent security expert Gene Spafford was quoted in ComputerWeekly as saying that experts monitoring open Internet Forums learned months ahead of the breach that Sony was using outdated, unpatched versions of the Apache Web server software. 2013 Top 10 Most Vulnerable Vendors The top vulnerable vendors, based on Skybox’s vulnerability database and research, were: 1. Microsoft 2. Adobe 3. Oracle 4. Mozilla 5. IBM 6. Apple 7. Cisco 8. HP 9. Google 10. Wireshark " # % " $ " # ! !
