Top 20 computer security threats, SANS institute, security vulnerabilities, Windows vulnerabilities, Unix and Linux vulnerabilities, IT security and research, IT Security, security resources, security processes, safe computing, security article, security guide

HOME

ABOUT US

COMMENTS

RESOURCES

TRAINING

E-LEARNING

CERTIFICATION

HELP

Top 20 Computer threats unveiled by SANS

Leading and respected IT security and research organization, the SANS Institute has just released its annual Top 20 list of Internet security vulnerabilities. The aim of the annual list is to provide organizations with a starting point and guide for addressing critical computer security issues. Which loopholes are the hackers and cyber vandals exploiting?

The Top 20 list is produced based on recommendations by leading security researchers and companies around the world. The Top 20 consists of two lists of 10: the 10 most commonly exploited vulnerabilities in Windows and the 10 most commonly exploited vulnerabilities in Unix and Linux.

Topping the Windows list is Web servers and services, while the Unix list leads with BIND domain name systems.

TOP 10 WINDOWS

1. Web servers & services
2. Workstation service
3. Windows remote access services
4. Microsoft SQL server
5. Windows authentication
6. Web browsers
7. File-sharing applications
8. LSAS
9. E-mail programs
10. Instant messaging

TOP 10 UNIX/LINUX

1. Bind domain name system
2. Web server
3. Authentication
4. Version control systems
5. Mail transport services
6. Simple Network Management Protocol (SNMP)
7. Open secure sockets layer (SSL)
8. Misconfiguration of enterprise services
9. Databases
10. Kernel

Each entry in the Top 20 mentions a category of software. The accompanying report gives details on the individual vulnerabilities and what you do to deal with these vulnerabilities.

Better and detailed information about vulnerabilities that are commonly exploited by virus writers and hackers helps organizations to protect themselves in a proactive manner rather than the usual fire-fighting. But the list is also evidence that organizations still not giving computer security the serious attention it deserves, as according to the SANs institute, almost 60% of the loopholes listed this year were in the 2003 Top 20 list.

The list is available on the SANS Web site at:

http://www.sans.org

For more IT Security Resources, click here:

http://www.jidaw.com/itsolutions/security3.html

More IT and Telecomm News

IT and Telecomm News

Your Guide to taking the Right IT Career Decisions

Page Top

HOME	ABOUT US	COMMENTS	CONTACT US	RESOURCES
HELP	E-LEARNING	CERTIFICATION	TRAINING	PREVIOUS JOBS

Get IT Career tips, Certification guides in your FREE newsletter. Plus regular news in Nigeria's IT & Telecoms sector.

ICT NEWS OCTOBER 2004:

* TOP 20 COMPUTER THREATS UNVEILED BY SANS

* 3RD NIGERIAN TELECOM SUMMIT (Nov 1 & 2, 2004)

* COMPTIA OFFERS NEW OPPORTUNITY IN LINUX

* SUN RELEASES NEW JAVA TIGER

* AFRICA�S ICT WOMEN MEETING

* PROJECT MANAGEMENT -Fortune Magazine calls it, "Career Number 1."

* COMPTIA'S GLOBAL CONFERENCE - Strategies 2004 EMEA Nov 4 to 6, 2004,

* PHONE PRICE WAR IN NIGERIA

* THE WORLD�S FASTEST COMPUTER � NEW WORLD RECORD

* CISA 2005 � EXAM DATES SET - CERTIFIED INFORMATION SYSTEMS AUDITOR

* SAMSUNG PRODUCES CELL PHONE WITH HARD DISK DRIVE

* PROJECT MANAGEMENT, WIRELESS, CYBERCAFE & TELECOM TRAINING