Digital Edition

SYS-CON.TV
Vulnerability "Top Twenty"
Here's what invites cyber-crime, according to the experts

Here are the top 20 "Achilles Heels" in today's computers from the point of view of hackers.

According to the BBC, the list includes loopholes found in both Windows and Unix/Linux software.

1. Web servers and services

2. Work station service

3. Windows remote access services

4. Microsoft SQL server

5. Windows authentication

6. Web browsers

7. File-sharing applications

8. LSAS

9. E-mail programs

10. Instant messaging

11. Bind domain name system

12. Web server

13.Authentication

14.Version control systems

15. Mail transport services

16.Simple Network Management Protocol (SNMP)

17.Open secure sockets layer (SSL)

18.Misconfiguration of enterprise services

19.Databases

20. Kernel (ANI)

"It's a first things first list," explained Alan Paller, head of the Sans Institute, a non-profit group which trains and certifies computer security professionals. "It can be very helpful for people that are trying to fix their vulnerabilities," he added.

About Security News Desk
SYS-CON's Security News desk trawls the world of security for news of software, hardware, products, and services that seems likely to be of interest to infosec professionals and summarizes them for easy assimilation by busy IT managers and staff.

In order to post a comment you need to be registered and logged in.

Register | Sign-in

Reader Feedback: Page 1 of 1



ADS BY GOOGLE
Subscribe to the World's Most Powerful Newsletters

ADS BY GOOGLE

ChatOps is an emerging topic that has led to the wide availability of integrations between group cha...
In his keynote at 18th Cloud Expo, Andrew Keys, Co-Founder of ConsenSys Enterprise, provided an over...
As DevOps methodologies expand their reach across the enterprise, organizations face the daunting ch...
As Marc Andreessen says software is eating the world. Everything is rapidly moving toward being soft...
You know you need the cloud, but you’re hesitant to simply dump everything at Amazon since you know ...
The need for greater agility and scalability necessitated the digital transformation in the form of ...
The cloud era has reached the stage where it is no longer a question of whether a company should mig...
Coca-Cola’s Google powered digital signage system lays the groundwork for a more valuable connection...
In his session at 21st Cloud Expo, Raju Shreewastava, founder of Big Data Trunk, provided a fun and ...
While some developers care passionately about how data centers and clouds are architected, for most,...
"Since we launched LinuxONE we learned a lot from our customers. More than anything what they respon...
Is advanced scheduling in Kubernetes achievable?Yes, however, how do you properly accommodate every ...
DevOps is under attack because developers don’t want to mess with infrastructure. They will happily ...
"As we've gone out into the public cloud we've seen that over time we may have lost a few things - w...
In his session at 21st Cloud Expo, Michael Burley, a Senior Business Development Executive in IT Ser...
Sanjeev Sharma Joins June 5-7, 2018 @DevOpsSummit at @Cloud Expo New York Faculty. Sanjeev Sharma is...
We are given a desktop platform with Java 8 or Java 9 installed and seek to find a way to deploy hig...
"I focus on what we are calling CAST Highlight, which is our SaaS application portfolio analysis too...
"Cloud4U builds software services that help people build DevOps platforms for cloud-based software a...
The question before companies today is not whether to become intelligent, it’s a question of how and...