Nearly every Windows PC likely harbors an unpatched app, Secunia says
More than 95% of PCs scanned by a security tool have one or more vulnerable programs
Computerworld - Nearly all Windows computers are likely running at least one unpatched application and about four out of every ten contain 11 or more vulnerable-to-attack programs, a vulnerability tracking company said today.
According to Secunia ASP, more than 95% of the PCs that have downloaded and installed its Personal Software Inspector (PSI) utility in the last week sport one or more applications for which security fixes are available.
Secunia tracked the first PSI scan after its installation to get an idea of patch status before users start to update their machines, which can also be done through the utility.
In the last seven days, said Secunia, users have installed PSI on 20,009 machines; 95.46% of them have an unpatched application on their hard drive. "There is a newer version available from the vendor that corrects one or more vulnerabilities," said Jakob Balle, Secunia's development manager, in a post to the company's blog today. "But the users have yet to install the secure version."
Some of the other statistics cited by Balle were just as damning: 41.94% of the machines scanned by PSI in the past week have 11 or more vulnerable applications; and more than two-thirds, or 67.63%, of the PCs have 6 or more unpatched programs.
"Close to all computers are running with several insecure applications installed," Balle pointed out.
And the picture is probably even darker than the one he painted. "These results should be considered 'best case' scenarios; The real numbers are likely to be worse," he said, citing the self-selected group that the data represents. "The users of the Secunia PSI are most likely more vigilant and security minded/conscious than your 'average' user."
Secunia released the free patch detection utility a year ago, but shifted it to Release Candidate 1 (RC1) stage earlier this month. The Copenhagen-based company claims nearly 191,000 users have downloaded and run the program.
Read more about Security in Computerworld's Security Topic Center.
- The Truth About Cloud Security "Security" is the number one issue holding business leaders back from the cloud. But does the reality match the perception?
- Enable secure remote access to 3D data without sacrificing visual perfomance Design and manufacturing companies must adapt quickly to the demands of an increasingly global and competitive economy. To speed time to market for...
- Virtually Delivered High Performance 3D Graphics "A picture is worth a thousand words." That old phrase is as true today as it ever was. Pictures (i.e., those with heavy...
- Best Practices for Securing Hadoop Historically, Apache Hadoop has provided limited security capabilities. To protect sensitive data being stored and analyzed in Hadoop, security architects should use a...
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities. All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!