picture of a virus

2006 busiest year for zero-day attacks

Some code still exploiting vulnerabilities that were patched years ago

Written by Tom Young

Computing, 24 Nov 2006

This year has been the busiest in history for zero-day attacks, according to security vendor Websense.

The Windows Metafile attacks at the start of the year that carried over from late 2005, the CreateText attacks, and more recently, the Vector Mark-up Language (VML) attacks, all have contributed to the situation.

All of these vulnerabilities were being actively exploited in the wild long before patches were released to address the vulnerabilities, says Websense.

In most cases, Proof-of-Concept (POC) exploit code gets released in conjunction with, or shortly after, zero-day announcements are made. This usually results in months of copy-cat attacks that still work well against un-patched machines.
Websense says it is not uncommon to see web exploit code that is utilising vulnerabilities that were patched years ago.

A recent investigation into Websense’s web server logs revealed that around seven per cent of all visitors to their web site were using a browser that was vulnerable to some sort of attack.

What do you think? Email us at feedback@computing.co.uk

Further Reading:

Security seal lifts Opodo sales

Writers block hits malware authors

Spammers gearing up for festive fun

reader comments

related articles

 
Internet

Researcher warns of 'critical' Java flaw in OS X

Apple criticised for failing to patch vulnerability 20 May 2009

Security

Image-applet combo hack revealed

Hybrid file can hijack browsers looking at uploaded images 04 Aug 2008

Internet

Cloud-based malware looms large on the horizon

Websense predicts 2009 will see hackers using cloud technology to send spam and malware 11 Dec 2008

related whitepapers

today's top stories

Ecommerce

What does Windows 7 mean for Microsoft?

With the sting of Vista still fresh, Redmond has to make next Windows work 10 Jul 2009

Management

A smarter way to use BI

Getting the most from business intelligence systems requires not only careful management on the part of IT leaders, but also the committed involvement of decision-makers across the organisation 08 Jul 2009

Management

Quenching a thirst for IT modernisation

A substantial restructure at soft drink supplier Nichols -­ purveyor of Vimto - ­led the company to update its software to Sage 1000 to replace its in-house application. This resulted in the streamlining of the IT department and an opportunity to customise the system 08 Jul 2009

Management

How Satyam cleaned up its act

Chief executive CP Gurnani tells Angelica Mari why Tech Mahindra opted to keep the Satyam brand after it bought the scandal-hit services firm, and explains what the deal means for existing and prospective customers 09 Jul 2009

Internet

Lack of enterprise appeal takes shine off Chrome OS

Enterprise buyers unlikely to ditch Windows for Chrome OS in the near term, say experts 09 Jul 2009

> More news

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

More available - click 'submit' to view

Existing User

Newsletter user login:

Advertisement

Jobs

Related jobs

Job of the week

> More IT vacancies

Job alerts

  • Latest jobs to your inbox
Sign up here

Find your next job

IT Salary Checker

  • Are you being paid what you are worth?
Check salary here

Advertisement

White papers

Search white papers

Top categories

VPN, Extranet and Intranet Solutions

WAN/ LAN Solutions

Network Security

Interoperability-Connectivity

Grid/ Utility Computing

Latest poll

Would you use social networking sites to look for a job?

Would you use social networking sites to look for a job?

Tell us what you think about job hunting through LinkedIn, Facebook, Twitter etc

View poll results

> More polls

Latest audio and video articles

network cablesVideo

How to maximise the value of your IT networking investment

A panel of experts discuss networking strategies that deliver real value to business 03 Jul 2009

green footprintsVideo

How to manage enterprise energy use - and the role IT can play

A panel of experts explore how firms can get to grips with their carbon footprint and make smarter use of energy 01 Jul 2009

> More audio and video

Latest in-depth articles

Google ChromeAnalysis

Lack of enterprise appeal takes shine off Chrome OS

Enterprise buyers unlikely to ditch Windows for Chrome OS in the near term, say experts 09 Jul 2009

Satyam CEO CP GurnaniNews

How Satyam cleaned up its act

Chief executive CP Gurnani tells Angelica Mari why Tech Mahindra opted to keep the Satyam brand after it bought the scandal-hit services firm, and explains what the deal means for existing and prospective customers 09 Jul 2009

> More in depth articles

Advertisement

Primary Navigation