我們應該看看數據,以前要hack into a network,當然是會找window 的漏洞。
現在,應該會是Flash Player / Acrobat Reader (果然是樹大招風)
先看看2008 的targeted attacks ,就會知道acrobat reader 都差不多已佔有30%。
(Credit:F-Secure)
2009 年的更令人震驚。
(Credit: F-Secure)
差不多已經有50% 都是向著acrobat reader 而做的。
Those scary statistics prompted F-Secure researcher Mikko Hypponen, chief research officer at F-Secure, to urge Adobe Reader users to switch to an alternative PDF reader at the RSA show in April.
叫user要轉alternative pdf reader?….看來adobe pdf 的問題真的愈來愈多了。
“I’d like to think that they would start realizing that they can use security as a selling point, but it took Linux to get Microsoft to do that. They felt they had competition,” he said. “Is there a Linux waiting to affect Adobe?”
上面的文章很有意思,正因為linux 以安全性來做selling point (當然又sell 到人先得la),迫使window 要patching 方面要做得更快。
但是,對於adobe來說,跟本就可以算是無對手,至少 chowky 不認為silverlight能夠對flash player構成competition。
Source: http://news.zdnet.com/2100-9595_22-329118.html
#1 by Ben Li on August 8, 2009 - 12:15 pm
道理好簡單, acrobat 傳播性比起office大好多. 政府同大機構發佈文件, 因為維權問題一定會用pdf格式. 同時reader係免費既, 滲透率高, hackers係家用機埋手既成功率大好多. 而家大機構network security加強左好多, 要hack真係要係員工屋企部機埋手.
#2 by Chowky on August 8, 2009 - 4:22 pm
其實你既講法不是全對,因為ms office都可以完全lock 起個文件,防止修改。
只不過於不過acrobat reader是免費。
不過其實office 都有 office viewer,不過就少人知道。
哈。。。另外一個原因是,window 開始由盛變衰。所以就開始少attack。
而hack到一個pdf,帶來的利益是非常大的,因為有好多重要的transfer都利用了pdf的technology。