Companies See Drop in Software Vulnerabilities


According to reports from various firms, this year has seen a drop in numbers of both cyber attacks and flaws that have been used to attack businesses.

Symantec is reportedly expected to see a 30 percent drop in the total number of software vulnerabilities and a 10 percent drop in critical vulnerabilities. The firm could see the lowest level of vulnerabilities reported since 2005.

Reports show that companies are more aware of cyber attacks and have taken a more aggressive approach to protecting their business and information.

Windows, Linux, and Mac OS X, for example, have re-built platforms with security features that make cyber attacks more difficult. Security researchers are working to develop industrial control systems, automotive systems and secure mobile devices.

Adobe is another firm that has seen a drop in vulnerabilities, thanks to security researchers. According to Adobe Senior Director Brad Arkin, the number of flaws reported in Flash Player have dropped by half and the number of flaws in Acrobat has dropped by two-thirds.

“What is very important to us is to drive the cost up of finding an exploit and making it more expensive,” said Arkin. “This is our big effort and our big focus.”

Microsoft has seen the number of its vulnerabilities in 2011, fall to its lowest levels. The company’s trustworthy computing initiative, established in 2002, is credited with helping to eliminate vulnerabilities in its software.

You may also be interested in...

GSA Eyes ‘On-Ramp’ Solicitation for OASIS Small Business IDIQ’s Six Subpools

The General Services Administration has announced plans to issue a solicitation as an on-ramp for the six subpools of the One Acquisition Solution for Integrated Services Small Business contract vehicle. GSA’s Federal Acquisition Service said in a presolicitation notice published Friday that it expects to award 30 contracts for subpool 1, 20 contracts for subpool 3 and eight each for subpools 2, 4, 5B and 6 of the OASIS SB indefinite-delivery/indefinite-quantity contract.

SSL to Design Methane Emission Detection Satellite; Richard White Quoted

Maxar TechnologiesSSL subsidiary has received a contract from Environmental Defense Fund to design and define requirements for a small satellite designed to detect and monitor methane emissions from oil and gas facilities worldwide. MethaneSAT is a small form-factor satellite that will work to provide high-resolution images to help detect and measure low- and high-emission sources in regions that constitute more than 80 percent of global production of oil and gas per week, Maxar said Thursday

Booz Allen’s Sarah St. Clair on Lessons Learned From HR Tech Upgrade Project

Sarah St. Clair, vice president responsible for human resource services at Booz Allen Hamilton, told Diginomica in an interview published Tuesday about the company’s experiences and efforts to address challenges associated with upgrading its HR technology system. St. Clair discussed Booz Allen’s move to execute the Workday project to manage recruitment operations and mentioned some of the actions the company made to mitigate negative impacts associated with project implementation.