Forum Home | Login

Zoomba

Join Date 11/2002

+114

News Flash: No Browser is Safe!

Symantec also observes that water is wet, fire is warm, and that a brick is hard

External Link

Ok, everyone takes it as generally accepted fact that Internet Explorer under Windows has a track record of being horribly insecure unless the user takes steps to tweak security settings, install pop-up blockers, bog their system down with AntiVirus, and run regular sweeps of the system to make sure nothing nefarious ever makes it through. But then there's the rest of the computing population that has turned their noses up in contempt and gone off to use Firefox and Opera under Windows. A few have taken it a step further and even ditched Windows completely in favor of Linux or MacOS with their respective browsers. We think ourselves safe, secure and more or less untouchable by those vile malware and spyware coders, those hackers of ill-repute who are determined to hijack our computers via our own web surfing.

However, according to Symantec Corporation, a company with absolutely no vested interest in this issue at all, it is merely a placebo, a lie we tell ourselves to feel better. We are in fact no more safe using these alternatives and still are in dire need of their help and software to secure our systems from Mr. Hacker.

Symantecs' yearly Internet Security Threat Report documents the relative security of browsers such as IE, Firefox, Opera and Safari. In the grand Firefox/IE debate, Symantec says that while IE compromises account for 47% of all attacks, Firefox actually clocked more reported vulnerabilities in the first half of this year than IE (47 versus 38 for IE). It paints a picture where the perceived insecurity of IE and strongbox reputation of Firefox is more a result of volume of users as opposed to inherent security of the code.

For more analysis of the report, check the BetaNews article linked below.

I think Symantec wins the "Obvious Observation" award today for their stunning revelation that all browsers have vulnerabilities.

Locked Post

Advanced Search

Watch this post

Do not email me updates for this post Email me updates for this post

Successfully updated karma reason!

what is called "safe"?

it should be called "no browser is goofproof from stupid surfing"

im getting so sick of this recent paranoia about security...

Successfully updated karma reason!

It's great to see companies like Symantec take the time to do a thorough and unbiased research into security issues plaguing so many of us. Not only do they provide cheap, fast and efficient products to protect our computers but they also make sure we know what programs have most vulnerabilities so that we are better educated and have safer experience with computers. Kudos to Symantec.

/sarcasm off

I had you there for a moment, didn't I.

Other than that it's not even worth commenting on Symantec's "findings". What I will say is that while I never had the kind of nightmare experiences with IE as I see floating around the web, ever since I switched to FF surfing the web has become 99% painless. Almost no popups, almost no ads (thank you AdBlock!

) and just in general a much more pleasant experience.

Successfully updated karma reason!

It paints a picture where the perceived insecurity of IE and strongbox reputation of Firefox is more a result of volume of users as opposed to inherent security of the code.

Let's also not forget the rapidity with which Microsoft corrects IE flaws when they are identified. How many "moderately critical" flaws remain unattended by Microsoft versus those unaddressed by Firefox?

I can't recall a third-party ever releasing instructions on how to "patch" Firefox because Mozilla was taking too long to address a "critical" issue.

Successfully updated karma reason!

dagwinn, I think the monthly patch cycle, augmented with emergency patches if something becomes critical have worked fine so far. I also think Firefox's lil "hey, want to install the new version" pop-up when I run it (occasionally) works well.

Successfully updated karma reason!

Not only do they provide cheap, fast and efficient products to protect our computers

oh, man.. that made my week.

don't kid yourselves, symantec has every interest in reporting that you need protection on all platforms with all browsers.

Successfully updated karma reason!

I have less problems using explorer, than with other browsers. FF makes very specific sites look better, but has less functionality through developer's web applications. Opera is the same. Both get hurt when i use certain forms, and things like image databases or shared systems. Opera on a mac mostly decides it won't do anything at all on certain days ( it calls those days 'weekdays' ) yet is suprisingly still vastly superior to safari. IE7 for me. Lovin' it. Draws everything great. Easy to use. Faster than its predecessors.

Successfully updated karma reason!

Something I always tell my customers, although they seldom listen, is this; "The best form of defence is common-sense". If it looks too good to be true, it probably is... DON'T CLICK IT!!!

...and they then promptly click it, and in they trudge, PC underarm, bitching about how this nasty piece of software found its way onto their system, (without their intervention of course

), and we find ourselves one job richer.

Sorry if this seems overly critical or cynical, but when it comes to browsing the 'net, the general public are completely f***** thick, and deserve anything they "get" as a result. Ignorance is no excuse - tell 'em, and they ignore you, complaining endlessly when their previously pristine PC is knackered with trojies, spyware, malware and crapware within a week of them getting it back, reinstalled, updated and protected.

I want to drive trucks.

Successfully updated karma reason!

Phoon

Join Date 10/2001

+382

tell 'em, and they ignore you, complaining endlessly when their previously pristine PC is knackered with trojies, spyware, malware and crapware within a week of them getting it back, reinstalled, updated and protected.

Oh that is sooooo true.
It drives me nuts when people ask for PC advice and fail to heed the warnings and solutions that I have given them.

Successfully updated karma reason!

...according to Symantec Corporation, a company with absolutely no vested interest in this issue at all...

but then goes on to say that due to Symantec's findings we the consumer

...are in dire need of their help and software to secure our systems from Mr. Hacker...

in the very next line.

lol.

Successfully updated karma reason!

Symantec also observes that water is wet, fire is warm, and that a brick is hard

I knew that..... no, really I did!

Successfully updated karma reason!

Excalpius wrote:

I think the monthly patch cycle, augmented with emergency patches if something becomes critical have worked fine so far.

My comment was not about the frequency of patch releases. It was about how quickly a patch is released after a flaw is identified.

For example, an article from May 2006 (Link) noted that about 25% of 85 IE advisories from 2003 to 2005 remained unpatched. Forty percent of those unpatched flaws were capable of compromising a system.

The point I was trying to make is that a monthly patch cycle isn't helpful if flaws remain unpatched.

Successfully updated karma reason!

You know is sad.. we all worry about protecting our selves from hackers and what not on our PC's and in the end, we get screwed some other way. I got a nice letter in the mail today from Chase financial group. In the letter they go on to explain, "we recently discovered that computer tapes that contained personal information about you that was provided in an application you submitted..." "...were mistakenly identified as trash and thrown out." "We deeply regret that this has occurred and apologize..."

Oh goody, so for everyone out there who dumpster dives, you'll be happy to know where you can find my info. Thanks Chase! So you see, no matter how well you protect your information, someone out there is going to screw up for you....

Successfully updated karma reason!

I think that the bigest threat to a computer represent users themselves by not knowing what is safe to open and what not.

Successfully updated karma reason!

Uhm. Call me crazy....I think it's idiocy to say that Symantec has 'absolutely no vested interest in this issue at all' when the fact that so many people are migrating to FF is a direct threat to their business. Did they pay you to say that?
Regarding Symantec's alleged 'honor', it has even been hypothesized that the big anti-virus companies are the main culprits releasing certain strains into the wild to increase the need for their product. They can say what they want. Since switching to FF well over a year ago, I have had no problems whatsoever. By the way, I also switched from Symantec products to TrendMicro and lo and behold, I have much more available system memory as well. Hmm.

I think it's time people gave Symantec less of their own 'vested interest'.

Successfully updated karma reason!

@rdbchick: I believe that Zoomba was being sarcastic, and I think, but it could be just me, that the story's subtitle makes the tone of the piece fairly clear

Successfully updated karma reason!

but it could be just me, that the story's subtitle makes the tone of the piece fairly clear

That, and the closing sentence..........

I think Symantec wins the "Obvious Observation" award today for their stunning revelation that all browsers have vulnerabilities.

Successfully updated karma reason!

Now that the obvious facts about security while connected to the Internet has been restated, I think most of us are looking for a security software that does not slow the system down.

It is truly amazing how slow the load times are after installing any of Symantec's security software. I have to agree that this is more about justification of their software, than helping users.

I am currently testing Vista RC1 (5728) on my notebook, with the latest Avast AV (Home 4.7, which is free) and the MS firewall (which is doing alright, IMO). IE7 has a phishing filter included, and my ISP has decent spam filters (combined with the Office 2007 Beta2 TC filters) - which all combine (with a little user knowledge) for decent security. I suspect that the performance on the notebook using the current security solutions will prove to be better than if I were to install Symantec's inevitable future offerings for the Vista.

I am one who has wanted to give Symantec products the benefit of the doubt, but the obvious increase in performance issues has become all too apparent. I hope they can turn it around.

Successfully updated karma reason!

Jafo

Join Date 03/2001

+1845

For 'Safe Surfing' simply avoid www.symantec.com ....

Successfully updated karma reason!

I want to drive trucks.

[Someone at Symantec:]
"Lets try to come across as the good guys and start posting 'valuable' consumer information, ...maybe we can get some of that marketshare back again."

[Me:]
'fraid not, Symantec ..you lost me years ago with your offshore tech support and crappy software.

Don't bother with this hype, it ain't gonna win you back the ones you've lost.

Successfully updated karma reason!

Symantec products haven't been good since Norton 2002.

My $.02 is that Microsoft is doing a good job with their new stuff (Windows Defender, OneCare is very good) while on the other end of the spectrum, IE7 is a worthy browser and has come a LONG way since IE6. I'm not a "fanboy", but I call a spade a spade and their new stuff IS decent.

No operating system is EVER going to be 100% secure. Ever. As long as the developers keep working on them, then it's all good and I personally will keep upgrading without complaint.

Successfully updated karma reason!

Nothin is safe anymore...its them damn terrorists I tell ya!

Successfully updated karma reason!

starkers

Join Date 05/2004

+1153

I don't give a flying f**k what Symantec says, they're never ever going to convince me that I'm better off/safer using their crappy gear....and that's what this new report of theirs is all about, putting the fear of bejesus into gullible people in order to recover lost market share.

Since ditching NIS about a year ago, I've had a much happier and speedier computing experience with few if any problems. I still get the odd tracking cookie and a bot here and there, which are easily dealt with by Adaware and/or Spybot, but I'm not plagued with false positives and the non-existent intrusion attempts NIS constantly threw at me. Since switching to Avast, which is free and has a much smaller footprint than Norton, I've had a much happier and more efficient machine...so they've got a snowball's chance in Hell of getting me back as a Symantec consumer.

Trouble is, Symantec seems to be buying up other PC protection companies, and now one has to wonder where their AV products/support are coming from. Not too sure now, but I think it was AVG's site that closed a part or all of its online support centre when I was transferred to Symantec for info on updates, etc. I also got an email which suggests Symantec has acquired a major interest in CA Associates EzTrust Internet Security...although the email was from CA Associates, the main body of the message repeatedy referred to Symantec's ongoing efforts with gov'ts & ISP's to reduce PC attacks.

It's really worrying, that if Symantec continues to dominate the Internet Security market and eventually manages to buy out the other players, we'll have no choice. Perhaps that a matter the anti-trust people should be looking into....yeah, that mob Symantec keeps running to about MS and anyone else who looks like cornering some percentage of the PC security market.

Nothin is safe anymore...its them damn Symantec terrorists I tell ya!

Okay, so I slightly altered it.

Successfully updated karma reason!

symantec releasing security propoghanda? harborering hackers to attack Microsoft and incite virus fear? Supressing built-in core level protection to push their own radical agenda? Secret funding of the EU to battle microsoft? It's AV Jihad! Conspiracy paranoias galore!

ms should bomb the sobs! teach them that you can't mess with a world power....

Successfully updated karma reason!

vStyler

Join Date 11/2004

+919

I personally have ZERO use for anything Symantec... and as previously stated of course their going to say no platform is safe.

Successfully updated karma reason!

Welcome Guest! Please take the time to register with us.

There are many great features available to you once you register, including:

Richer content, access to many features that are disabled for guests like commenting and posting on the forums.
Access to a great community, with a massive database of many, many areas of interest.
Access to contests & subscription offers like exclusive emails.
It's simple, and FREE!

View all recent posts

Mark all posts as read Delete cookies created by the forum Return to Top

Stardock Forums v Server Load Time: Page Render Time: