2. Home
  3. Your Tech
  4. Home Tech
  5. 98 percent of PCs vulnerable, says Secunia
Thursday, 04 December 2008 10:43

98 percent of PCs vulnerable, says Secunia

By
A new study suggests that at least 98 percent of PCs are running at least one piece of software with a known security vulnerability.
Statistics collected from exactly 20,000 users over a seven day period show that only 1.91 percent of PCs have exactly zero insecure programs.

OK, so the 98 percent headline number is an overstatement in that the study only looks at Windows PCs, not those running Mac OS X or Linux. We'll overlook that for now. 98 percent of 90 percent (or whatever percentage of the installed base is running Windows) is still a shipload of computers.

Denmark-based vulnerability intelligence provider Secunia offers a free tool called Personal Software Inspector (PSI) that's used to check PCs for software that hasn't had the latest security patches applied.

We're quite prepared to believe Secunia's IT development manager Jakob Balle when he says the figures collected by the company are likely to be "best case" because "The users of the Secunia PSI are likely to be more vigilant and security minded than all other Internet users."

If you weren't worried about keeping your software up to date, you probably wouldn't use PSI. On the other hand, if you were extremely confident your installation was up to date, you probably wouldn't bother with Secunia's utility.

On the other hand, PSI is only free to home/private users, so the results are presumably skewed away from professionally-managed systems that you might expect to be kept more up to date.

But is that necessarily the case? Please read on.

However, many IT operations seem to favour stable system images, and therefore won't deploy patches without extensive testing. Some experts think this is wise, others believe the risk of attack is too high for it to be a viable strategy.
On balance, we'll go with Balle's interpretation.

But what's the breakdown of the 98.09 percent of computers that aren't fully patched?

30.27 percent had between one and five insecure programs, 25.07 percent had six to ten, and 45.76 percent had eleven or more.

Yes, almost half of the PCs running PSI had more than ten unpatched programs!

On reflection, that's perhaps not as surprising as it seems. A careful user may have a handful of unpatched items at any time, despite most of the software being up to date. Even where applications automatically check for updates, there may be a delay before they are patched. If a program isn't running, then any vulnerabilities remain theoretical.

But careless users probably don't apply patches that aren't automatically presented to them, whether that's through Windows Update or other vendors' auto-update services.

So the idea of nearly half of all Windows PCs having more than 10 vulnerable programs doesn't seem so outlandish after all.

If you want to try PSI, you'll find it here.


Subscribe to ITWIRE UPDATE Newsletter here

GRAND OPENING OF THE ITWIRE SHOP

The much awaited iTWire Shop is now open to our readers.

Visit the iTWire Shop, a leading destination for stylish accessories, gear & gadgets, lifestyle products and everyday portable office essentials, drones, zoom lenses for smartphones, software and online training.

PLUS Big Brands include: Apple, Lenovo, LG, Samsung, Sennheiser and many more.

Products available for any country.

We hope you enjoy and find value in the much anticipated iTWire Shop.

ENTER THE SHOP NOW!

INTRODUCING ITWIRE TV

iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the iTWire.com site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.

SEE WHAT'S ON ITWIRE TV NOW!

BACK TO HOME PAGE
Published in Home Tech
Tagged under
Stephen Withers

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences and a PhD in Industrial and Business Studies.

Latest from Stephen Withers

Related items

More in this category: « Beware of Koobface the social worm Microsoft stuffs sysadmins' stockings with critical patches »
Share News tips for the iTWire Journalists? Your tip will be anonymous
back to top

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments