Lasse Penttinen
2 Oct 2003 11:08
In the security corporation’s bi-annual Internet Threat Report, they claim that the number of Internet attacks exploiting Peer-To-Peer (Kazaa, Direct Connect, etc.) or Instant Messaging (ICQ, MSN Messenger, etc.) are increasing rapidly. This has been expectable for quite some time, but no serious P2P or IM worm has yet surfaced.
Also the report points criticizes several Microsoft products for vulnerabilities. At least Internet Explorer and the IIS are mentioned.
Security firm Symantec, which published its bi-annual Internet Threat Report on Wednesday, has found that the number of attacks over instant messaging and P2P systems quadrupled between January and June 2003.Zeropaid.com
…
The report criticised Microsoft's Internet Explorer, calling it a "serious danger" because of security lapses. Several vulnerabilities allow attackers to compromise client systems through Web pages containing embedded malicious code, while others can enable easy and almost undetectable installation of spyware, which could allow attackers to extract confidential data, the report said.
Microsoft IIS Web server was also picked out because it has been vulnerable to previous attacks such as Code Red and Nimda. Symantec expects the Web server to be targeted again by a "highly destructive malicious-code attack".