Vulnerabilities / Threats
12/28/2010
07:26 PM
50%
50%

Apple, Social Networks Top Cybercrime Targets In 2011

McAfee threat predictions for the coming year forecast that Apple's increasing influence in personal computing, smartphones, and tablets will make it a prime target for cybercriminals.

Top 10 Security Stories Of 2010
(click image for larger view)
Slideshow: Top 10 Security Stories Of 2010

All the hottest Internet technologies this year, including geolocation services, Web-enabled TVs, mobile devices running Google Android and Apple iOS, and online social networks, will be key targets of cybercriminals in 2011, a security firm predicts.

Consumer electronics and Internet companies have rushed to market this year with cutting-edge products and services that have already seen a significant increase in attacks and data loss, McAfee said in its list of threat predictions for next year. This trend will continue in 2011 with cybercriminals finding new ways to steal personal information from consumers flocking to these new technologies.

"We've seen significant advancements in device and social network adoption, placing a bulls-eye on the platforms and services users are embracing the most," Vincent Weafer, senior VP of McAfee Labs, said in a statement.

Apple products are expected to be among the top targets of cybercriminals in 2011. The company's Mac computers have long been spared the attention of hackers because of their small market share. That has changed with the company's rebirth as a major consumer electronics company.

McAfee expects the sophistication of Trojans and other malware for the Mac and Apple's iPhone and iPad to increase next year, escalating the risk of personal data and identity theft. Cybercriminals are also expected to target other mobile devices, such as Android-based phones and tablets. These devices are easy targets because many users are unknowledgeable about proper security and network operators are moving too slowly toward encrypting data.

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2009-5027
Published: 2014-12-26
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-2062. Reason: This candidate is a reservation duplicate of CVE-2010-2062. Notes: All CVE users should reference CVE-2010-2062 instead of this candidate. All references and descriptions in this candidate have been removed to pre...

CVE-2010-1441
Published: 2014-12-26
Multiple heap-based buffer overflows in VideoLAN VLC media player before 1.0.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted byte stream to the (1) A/52, (2) DTS, or (3) MPEG Audio decoder.

CVE-2010-1442
Published: 2014-12-26
VideoLAN VLC media player before 1.0.6 allows remote attackers to cause a denial of service (invalid memory access and application crash) or possibly execute arbitrary code via a crafted byte stream to the (1) AVI, (2) ASF, or (3) Matroska (aka MKV) demuxer.

CVE-2010-1443
Published: 2014-12-26
The parse_track_node function in modules/demux/playlist/xspf.c in the XSPF playlist parser in VideoLAN VLC media player before 1.0.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty location element in an XML Shareable Playlist Format...

CVE-2010-1444
Published: 2014-12-26
The ZIP archive decompressor in VideoLAN VLC media player before 1.0.6 allows remote attackers to cause a denial of service (invalid memory access and application crash) or possibly execute arbitrary code via a crafted archive.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.