Users will have to consider the security of security products as more malicious hackers seek to exploit their vulnerabilities. The Witty worm exploited a flaw in Internet Security Services' (ISS) BlackIce and RealSecure intrusion prevention products, infecting 15,000 to 20,000 computers worldwide and corrupting infected hard drives. Chris Rouland, director of ISS' X-Force security team, noted that the Witty flaw was only the second major flaw from ISS in five years, crediting the company's strong quality assurance measures. Vulnerabilities were earlier discovered in firewalls from Zone Labs and Check Point Security, while another was found in a product from Symantec. John Pescatore of research firm Gartner says attackers looking for publicity are increasingly targeting security products. Some researchers, such as Pete Lindstrom of Spire Consulting, question whether security vendors have conflicts of interest when searching for flaws in their competitors' products.
Enter to win* a free holiday tech gift!
CNET's giving five lucky winners the gift of their choice valued up to $250!