Wireless Vulnerabilities Decreasing

Thu, November 17, 2005CIO The number of wireless security vulnerabilities in the real world is vanishingly small, research from Qualys has suggested.

That was the finding of latest annual Laws of Vulnerabilities report written by Qualys CTO Gerhard Eschelbeck.

Despite worries about wireless security, only one in 20,000 of the vulnerabilities uncovered by scans of the company’s customer base related to wireless systems. The figure can be considered significant because it was drawn from analysis of 32 million live networks scans and 21 million uncovered instances of vulnerabilities.

The research also showed that external network patching “half-life” has improved from last year’s figure of 21 days to this year’s 19 days. The half-life is defined at the time it takes company’s to patch at least 50 percent of their systems, thus reducing exposure to security threats.

Internal network patching has also come down from 62 days to 48 days during the same period. In total, 90 percent of such exposure is caused by only 10 percent of the critical holes.

On a less positive note, the time it takes for exploits to appear for vulnerabilities is also shrinking. Fully 80 percent of the most dangerous holes are exploited within the current half-life period. The overwhelming majority of automated attacks do their damage in the first 15 days.

“2005 has been the year of improvements for patching and updating vulnerable systems. This is heavily driven by the fact that vendors like Microsoft and others are now are issuing regular advisories with patch updates, which ends up speeding the prioritization and remediation efforts within organizations,” said Eschelbeck.

As with last year, Microsoft dominates the top ten critical vulnerabilities, both for internal and external networks. Not surprisingly given the company’s desktop dominance, the report detects a marked move towards security holes affecting clients rather than servers, with the former accounting for 60 percent of new vulnerabilities uncovered.
The number of wireless security vulnerabilities in the real world is vanishingly small, research from Qualys has suggested.

That was the finding of latest annual Laws of Vulnerabilities report written by Qualys CTO Gerhard Eschelbeck.

Despite worries about wireless security, only one in 20,000 of the vulnerabilities uncovered by scans of the company’s customer base related to wireless systems. The figure can be considered significant because it was drawn from analysis of 32 million live networks scans and 21 million uncovered instances of vulnerabilities.

The research also showed that external network patching “half-life” has improved from last year

$firstKeyword
Loading...
Mobile MarketSpace
Lower the Cost and Complexity of a Mobile Workforce through Automation
 Lower the Cost and Complexity of a Mobile Workforce Learn more »
Retooling IT for a Mobile Workforce
Check out this research note from IDC for guidance. Learn more »
The Continued Evolution of Wireless Mobility
Learn about the two leading 4G technologies, the current status of deployed 4G networks, and how to manage long-term 4G costs Learn more »
Thinking About Deploying Mobile Broadband?
Explore lessons and best practices experienced by companies that have deployed mobile broadband to their workforce. Learn more »
Improving Healthcare Delivery with Role-Enabled Communications
Today, more healthcare IT organizations than ever are interested in implementing UC applications in a planned, cost effective manner. In order to meet their tremendous potential for improved healthcare delivery requires far more than UC; it requires role-enabled communications. Learn more »
Mobility Enables True Unified Communications
Deploying UC in conjunction with a mobility solution can increase employee productivity and improve customer service enabling workers to more easily collaborate from disparate locations. Learn more »
Making Consumer TwoFactor Authentication Cost-Effective
Offering your customers the security of two-factor authentication can help you boost your online business. Learn more »
Solve Five Key IT Security Challenges
Get a high level of security with minimal user impact. Learn more »
 
SPONSORED LINKS
 

Top 10 Lessons Learned for Corporate 3G Mobile Broadband Deployments

Mobile Security: The Essential Ingredient for Today's Enterprise

White Paper: Legacy Tools: Not Built for the Helpdesk

Learn how to maximize the mobile web opportunity

Upgrading to VMware vSphere with vWire

Maximizing website Return on Information with high-quality search

See how AT&T can help protect your network.

Webcast: Unleashing the Power of Customer Data

White Paper: Improve Agility with Operational Responsiveness

Taking a Seat at the Executive Table: The Reality of Virtualization

White Paper: Next Generation Remote Infrastructure Management

Keeping Your Members Safe from Online Scams and Predators

The Total Economic Impact of Network Security Intrusion Prevention

Generation Remote Infrastructure Management - Changing the Paradigm

Cloud-Based Email Management: Opinion Shifts In Favor

eBook: How Can You Make Your People Productive Anywhere?

Achieving Business Agility with Application Grid

Taking the Service Desk to the Next Level

Learn about The Information Technology Infrastructure Library.

Return on Information: Google Enterprise Search pays you back. Get the facts.

VMware. The source for Business Infrastructure Virtualization.

ShoreTel tells businesses to untangle from competitors' complexity and turn to its brilliantly simple UC solution

Top Five CIO Challenges

Read the RSA report: Security for Business Innovation

64-page prescriptive guide to security, compliance, and IT operations.

4G Revisited. The Continued Evolution of Wireless Mobility.

White Paper: 5 Best Practices for Smartphone Support

Five-Step Mobility Management Plan

White Paper: Visibility and the New Normal of Mobile Work

Return on Information: Google Enterprise Search pays you back

Cut Costs & Green Your IT Operations with PC Power Management

White Paper: 4 Customer Service Myths

White Paper: Managed Security for a Not-So-Secure World

Global Research: CIOs Weigh In On Virtualization

5 Key Virtualization Management Challenges

Secure Email and Web-Based Communication from Evolving Attacks

WagerWorks Takes Fraudsters Out of the Game using iovation

Seven Design Requirements for Web 2.0 Threat Protection

Increase UPS efficiency without sacrificing protection.

Learn how advanced forecasting tools can deliver significant business results for global corporations.

Lower IT Costs with Oracle Database 11g Release 2

Ready to virtualize tier one applications? Check your virtualization maturity.

Seven Ways ITIL Can Help You in an Economic Downturn

Tips for successful virtualization management.

AT&T Synaptic Storage as a Service. Expand on demand

Trend Micro ranked #1 against real-world malware. Read more.

Webinar: Jump-start your in-house e-discovery with Ringtail QuickCull from FTI Technology

Streamline IT Costs. Boost Performance with WAN Optimization.

Build your 1st app FREE with Force.com

TDWI checklist helps define data readiness for analytics. Download report.

 
 
RESOURCE CENTER
 
buy a link »
Ads by TechWords