Feeds

Adobe predicted as top 2010 hacker target

McAfee's crystal ball also reveals Google Chrome dangers

Build a business case: developing custom apps

Adobe will overtake Microsoft as the primary target for hackers and virus writers in 2010, net-security firm McAfee predicts.

Attacks targeting vulnerabilities in Acrobat Reader and Flash are already commonplace, driven in part by that software's widespread use. The often-tricky update process and lack of user awareness that apps as well as browsers and Windows need updating further compounds the problem of PDF-based malware - which McAfee reckons will only increase next year.

The security firm also predicts an increase in the severity and power of hacking attacks aimed at users of social networking websites such as Twitter and Facebook. Mystic McAfee also predicts that banking Trojans will become even more sophisticated, perhaps by gaining the ability to interrupt legitimate transactions and make unauthorised withdrawals without being detected. Malware in email attachments, a common ploy in targeted attacks, is also expected to increase.

Meanwhile, botnets - the main currency of cyberattacks - are likely to move further away from reliance on command and control servers towards a peer-to-peer architecture that's more resilient against takedown efforts.

All these predictions more or less follow on from current trends. The one new highlight in McAfee's threat report is the prediction that HTML5 will give "cybercriminals new opportunities to write malware and prey on users." The upcoming web mark-up technology is meant to reduce reliance on proprietary browser plug-ins for Adobe Flash, Microsoft Silverlight, and Sun Java. The standard is still a work-in-progress, but elements of the technology are already supported by Google Chrome, a fact that could spawn a new line of hacking attacks, McAfee warns:

HTML 5 holds all the promises that today’s web community seeks - primarily that of blurring and removing the lines between a web application and a desktop application. HTML5-based attacks will become even more tempting once the Google Chrome Operating System is released. (It’s scheduled for second half of 2010.)

Google Chrome OS is intended for use with netbooks, and HTML5 enables not only a rich Internet experience, but also offline applications. Another motivation for attackers is HTML5’s anticipated cross-platform support, which will allow attackers to eventually reach users of many mainstream browsers.

McAfee's 2010 Threat Predictions report can be downloaded here as an un-Firefox friendly PDF. ®

Endpoint data privacy in the cloud is easier than you think

More from The Register

next story
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
Microsoft's Euro cloud darkens: US FEDS can dig into foreign servers
They're not emails, they're business records, says court
'Things' on the Internet-of-things have 25 vulnerabilities apiece
Leaking sprinklers, overheated thermostats and picked locks all online
iWallet: No BONKING PLEASE, we're Apple
BLE-ding iPhones, not NFC bonkers, will drive trend - marketeers
Multipath TCP speeds up the internet so much that security breaks
Black Hat research says proposed protocol will bork network probes, flummox firewalls
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
Plug and PREY: Hackers reprogram USB drives to silently infect PCs
BadUSB instructs gadget chips to inject key-presses, redirect net traffic and more
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
prev story

Whitepapers

7 Elements of Radically Simple OS Migration
Avoid the typical headaches of OS migration during your next project by learning about 7 elements of radically simple OS migration.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Solving today's distributed Big Data backup challenges
Enable IT efficiency and allow a firm to access and reuse corporate information for competitive advantage, ultimately changing business outcomes.
A new approach to endpoint data protection
What is the best way to ensure comprehensive visibility, management, and control of information on both company-owned and employee-owned devices?