Newsletters Welcome, Guest Log In | Register
Blogs:

Paul Mah

SMB Tech

Expert tech insight and advice for small businesses with big goals

About this Blogger RSS

< Previous | Next >

Subscribe

Sign up now and get the best business technology insights direct to your inbox.

  • Daily Edge
  • CTO Edge Update
  • Business Tools & Templates
  • Aligning IT & Business Goals
  • Maximizing IT Investments

1

Avoid Using Internet Explorer as Your Primary Browser

Posted by Paul Mah Jan 16, 2009 2:58:38 PM

I came across this very interesting interview with a former adware programmer. In his early days, Matt Knox designed and wrote adware for a company called Direct Revenue, which would later be sued for allegedly installing adware on millions of computers. The irony came from the fact that Knox was recruited while working on spam filtering software. Initially tasked with troubleshooting their ad distribution chain, he eventually graduated to direct work on the adware. When quizzed about the strategies used to maintain the persistency of the adware he worked on, Knox answered: "Most adware targets Internet Explorer (IE) users because obviously they're the biggest share of the market. In addition, they tend to be the less-savvy chunk of the market. If you're using IE, then either you don't care or you don't know about all the vulnerabilities that IE has."

 

Knox went on to elaborate on a common strategy - tapping IE's Browser Helper Object (BHO) for nefarious purposes.

 

So if you are ever looking for a reason not to use Internet Browser, this would be it: Microsoft's Internet Explorer is the preferred attack vector for adware - and presumably other forms of malware. Of course, Internet Explorer has made tremendous improvements over the years, with Internet Explorer 8 touted as one of the most secure yet.

 

However, one can also argue that Beta 2 of Internet Explorer 8 scores a dismal 21 percent on the grueling ACID3 browser compliance test, compared against the much higher scores from Mozilla's Firefox, Opera and Safari, to name a few.

 

Of course, a non-Microsoft browser is certainly no guarantee of immunity against malware of any form. However, given a chance to pre-emptively nip a swath of security problems with IE in the bud, would you take it? Or rather, can you afford not to?

Related Content

Add a comment Leave a comment on this blog post.
Jan 20, 2009 6:07 PM Guest Francis Carden  says:

Once in the firewall, most applications are open to attack. This is a myth to think IE is the only (major) culprit in the enterprise.

 

Machines are locked down and virus scanners are enterprise ready and robust. They WORK.

 

To take this thread literally, ANY application open to attack should not be used. That'll leave enterprise users with very little to do!

 

I get updates for my desktop machine weekly/monthly and I'm on a MAC - eek.. Adobe Security patches, Safari patches, even ITUNES... It's a moving target and IE is attacked because it's on more desktops than any other browser and has to support more legacy apps than any other too.
Reply

Related Content

Browse

Topic: Internet Explorer

Microsoft's Web browser still leads the market, but competition is getting fierce

Blog: Linux Live CD Boots up a Way to Avoid Malware

Article: Accessibility Guidelines Unlock the Web for Millions

News: Microsoft Rivals Question Microsoft-EU Ballot Plan

Related Topics

Anti-Spyware, Microsoft, Spyware

Featured White Papers

Browse

Lowering Your IT Costs with Oracle Database 11g Release 2

This white paper identifies the key capabilities a database management solution needs to successfully deliver more information with higher quality of service, make more efficient use of IT budgets, and reduce the risk of change in data centers.

Software Forum: Information On Demand Virtual Experience

This interactive virtual forum presents leading IT experts providing the insights you need to turn your information into a strategic driver for innovation, business optimization and competitive differentiation.

Resource Centers

Browse

Security Information and Event Management

Best practices, strategies and technologies to help you use security information and event log management efficiently and effectively in order to get business value in terms of increased security, reduced risk, regulatory compliance and increased business agility.

Featured Whitepapers

The Top Ten Insider Threats and How to Prevent Them

Business Intelligence

Best-practice tools, strategies and technologies for determining and managing the data you need to make better business decisions.

Featured Whitepapers

Seeing the Big Picture: A Corporate Guide to Better Decisions Through IT

Power Supply Solutions

Comprehensive power protection solutions.

Laptop Security

Answers to the ongoing challenges of the mobile office: to work anywhere, securely and efficiently.

Featured Whitepapers

Into the Wild: Managing Laptops Outside the Office

Premium Tools

Browse

Strategic IT Planning & Governance Best Practices Guide

Use this guide — along with the more than 60 templates included — to ensure the overall success of your entire IT department.

Learn more >

Windows 7 Upgrade Project Kit

Moving to Windows 7? The Windows 7 Upgrade Project Kit is the ideal support tool for managing all phases of an organizational upgrade to Windows 7. The tools and templates in this kit will help you develop a strategy and map out the implementation tactics which link your Windows 7 deployment to your company's bottom line.

Learn more >