<p>Of course, Microsoft is the biggest of targets for computer criminals. But it’s not just size that’s the issue here, Butler says. “Microsoft’s leadership extends its operating system into realms previously untrod by others,” he says. For instance, “UNIX has no plug-and-play equivalent,” says Butler, whose own company has worked to integrate new functions into traditional core processing. In other words, to create open systems. “New approaches bring new capabilities and new threats. I would be surprised if a year went by without a revelation about Windows security holes,” Butler says. But others expressed more alarm. “Any complex software system . will have vulnerabilities. The surprising thing about the UPnP announcement is that it was discovered so quickly and that it was so severe,” says Dr. Markus DeShon, director of security research at SecureWorks (www.secureworks.com), an Atlanta-based Internet security firm. He says Microsoft’s claim that XP would be its most secure operating system to date has been based primarily on the integration of a personal firewall. “As Nimda and Code Red have shown, a firewall does not security make,” says DeShon, a doctorate in nuclear physics from Georgia Tech who specializes in analyzing hacker attacks. DeShon says his company’s network-based appliance, called the iSensor, blocks UPnP attacks even if it is enabled, but that “we would certainly recommend disabling UPnP in any case, and certainly by anyone whose network is not similarly protected.” Gartner, the high-tech analyst and consulting firm, says security problems with UPnP and Internet Explorer 6, the software browser that also is embedded in XP, “earn a `high risk’ mark on our Internet Vulnerability Risk Rating System,” and it adds this stark warning: “We predict that by the end of the first quarter of 2002, standard hacker attack tools will incorporate these weaknesses into the rampant hacker scanning that is seen on cable modem and DSL Internet access systems.”</p>

Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.

Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:

  • Critical CUTimes.com information including comprehensive product and service provider listings via the Marketplace Directory, CU Careers, resources from industry leaders, webcasts, and breaking news, analysis and more with our informative Newsletters.
  • Exclusive discounts on ALM and CU Times events.
  • Access to other award-winning ALM websites including Law.com and GlobeSt.com.

Already have an account?


Credit Union Times

Join Credit Union Times

Don’t miss crucial strategic and tactical information necessary to run your institution and better serve your members. Join Credit Union Times now!

  • Free unlimited access to Credit Union Times' trusted and independent team of experts for extensive industry news, conference coverage, people features, statistical analysis, and regulation and technology updates.
  • Exclusive discounts on ALM and Credit Union Times events.
  • Access to other award-winning ALM websites including TreasuryandRisk.com and Law.com.

Already have an account? Sign In Now
Join Credit Union Times

Copyright © 2023 ALM Global, LLC. All Rights Reserved.