So Many Holes, So Few Hacks
Experts who discover and report security holes seem to be far more industrious than the malicious hackers willing or able to exploit those holes.
Despite the thousands of hackable holes that lurk in e-mail, on websites, in files and operating systems, most users' computers are never afflicted with more than the virtual version of a sniffle.
Few of the ominous potential traumas reported in 2002 turned out to have any real impact on most computer users. The Klez virus infected some machines and spawned spam that continues to clutter many e-mail inboxes. And the Linux Slapper worm made more work for some systems administrators for a while.
The rest of 2002's reported security holes appear to have languished, unexploited.
Some security experts suggest that malicious code attacks do happen but are dismissed by most users as just another wonky Windows software crash. But those same experts also cheerfully confess that most exploits aren't all that exploitable, and that the security industry profits by stirring up fear and frenzy.
[ Read more ]
- Virus News: Arrest for Slapper Worm Author (24 September 2002)
- Virus News: ISS Alerts on Slapper Worm Modification (23 September 2002)
- Virus: Worm.Linux.Slapper (18 September 2002)
- Virus News: Reverse Engineered Slapper Worm (16 September 2002)
- Virus News: F-Secure Warns About a New Linux Worm (16 September 2002)
- Virus News: Information on Klez and Its Removal (13 May 2002)
- Virus: I-Worm.Klez.a-h (Klez Family) (4 May 2002)
- Virus News: Some Vital Information on the Latest Klez Worm (23 April 2002)