Feeds

One in five workers still clinging to IE6

Widespread use of geriatric browser helps hackers

Top three mobile application threats

Microsoft's IE6 web browser remains widely used in the enterprise, despite its many performance and security problems.

One in five enterprise workers continue to use the nine-year-old web browser, even after the high-profile Operation Aurora attacks against organisations running the browser.

Last month, in response to a petition, the UK government said PCs in Whitehall will continue to run IE6 because rolling out IE8 would be difficult and could break web applications. US banking giant Chase, meanwhile, recently suggested even IE6 was better than either Chrome or Opera for online banking security.

A security report by net infrastructure firm Zscaler, published on Thursday, shows that a significant minority of private sector organisations are taking the same line as HMG, exposing themselves to a greater risk from security exploits as a result.

Zscaler's study also found that misconfigured web applications that allow SQL injections and unpatched WordPress sites are a popular target for hacking attacks, which often rely on planting malicious code on vulnerable sites so that visiting surfers become exposed to malware-based assaults. China was the second most frequent source of malicious sites, behind only the US, in the second quarter of 2010, up from fifth berth in Q1 2010.

Hackers frequently relocate malicious code to avoid detection, Zscaler adds.

Zscaler's latest State of the Web report can be found here (registration required) ®

Seven Steps to Software Security

More from The Register

next story
NO MORE ALL CAPS and other pleasures of Visual Studio 14
Unpicking a packed preview that breaks down ASP.NET
Cheer up, Nokia fans. It can start making mobes again in 18 months
The real winner of the Nokia sale is *drumroll* ... Nokia
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
Put down that Oracle database patch: It could cost $23,000 per CPU
On-by-default INMEMORY tech a boon for developers ... as long as they can afford it
Google shows off new Chrome OS look
Athena springs full-grown from Chromium project's head
Apple: We'll unleash OS X Yosemite beta on the MASSES on 24 July
Starting today, regular fanbois will be guinea pigs, it tells Reg
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.