I came across an article yesterday at secunia.com. Secunia is a leading provider of Vulnerability Intelligence and tracks the evolution The key highlights of the Secunia Half Year Report 2010 are:
The report does a good job of discussing the current trends and statistics and highlights what they are seeing for vulnerabilities. To review the full report you can see check it out at http://secunia.com/gfx/pdf/Secunia_Half_Year_Report_2010.pdf. Deb Hale Long Lines, LLC
|
Deborah 279 Posts ISC Handler Jul 14th 2010 |
Thread locked Subscribe |
Jul 14th 2010 1 decade ago |
I've tried Secunia's PSI tool. But it seems that it doesn't find as many updates as other tools such as FileHippo. As of right now, FileHippo is listing 10 updates for me while PSI is listing 1.
Not that this is a bad thing for Secunia. If they found more updates they'd have hit the 4.4 ratio already. |
Anonymous |
Quote |
Jul 14th 2010 1 decade ago |
The reason Filehippo shows more updates is that it is notifying you about all updates.
Secunia PSI is a security tool i.e. it only tells you about updates which are necessary to stay secure, thus giving you much less work than if you had to update 10x as much using e.g. Filehippo. While the tools may seem similar, they actually serve completely different purposes. You can read more on the PSI download page: "The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Attacks exploiting vulnerable programs and plug-ins are rarely blocked by traditional anti-virus and are therefore increasingly "popular" among criminals." http://secunia.com/vulnerability_scanning/personal/ To better understand the difference between the Secunia PSI and tools like Filehippo etc. these reviews might be worth a read: http://www.howfixcomputer.com/2010/06/02/updaters-revisited-cnet-techtracker-vs-secunia-psi/ http://www.howfixcomputer.com/2010/05/28/staying-secure-and-up-to-date-filehippo-update-checker-vs-sumo-vs-secunia-psi/ |
Anonymous |
Quote |
Jul 15th 2010 1 decade ago |
Wouldn't it be more correct to say that there aren't any KNOWN vulnerabilities in the versions of the third party apps that were detected?
That's why I prefer staying current on all apps, whether there are known, published vulnerabilities or not. |
Anonymous |
Quote |
Jul 15th 2010 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!