Businesses lag in moving away from IE6 and its vulnerabilities: study

Zscaler recommends orgnaisations migrate to IE8 for security reasons

Microsoft's Internet Explorer continues to dominate corporate browser use more so than it does private use, with its nearest rival, Mozilla's Firefox, lagging far behind with one in seven businesses opting for it, according to data collected by internet-based security service Zscaler.

Businesses are also more careless about upgrading IE than the general public with 27% still using IE6, which has known vulnerabilities, says Zscaler, including the one that led to the notorious Aurora attack against Google and other companies in January.

The percentage using IE6 is dropping -- from 33% in January to 27% in March -- and Zscaler strongly recommends upgrading to IE8 for the 74% of companies that use that browser. Firefox lags behind with 10% of businesses using it, and Google Chrome comes in third with just over 2%. IE has worse penetration overall when non-business users are added to the mix, with its share dropping below 60%.

Zscaler's "State of the Web" report for Q1 2010 relies on statistics gathered by the company in providing security services to its customers. So its data depends the particular mix of companies it happens to have as customers and the sites they visit.

Its data found that the United States has the highest number and highest percentage of malicious websites visited by its customers during the first three months of this year. The United States hosted 68 per cent of all the malicious websites visited, with German second with just under 4 per cent. Of all the US sites visited, 10.2 per cent contained malicious software, the company says, with Honduras coming in second with 7.5 per cent.

As part of its services, Zscaler blocks traffic deemed malicious. The single type of traffic most blocked is for fake antivirus software -- software that rubs out the symptoms of worms that act as if they have found victims' machines infected, then try to sell them the cure. Fake A/V accounted for 13.6% of all the traffic blocked, with Monkif coming in second at 4.4% and Zeus/Zbot coming in third with 2.4%.

Monkif is malware that downloads browser helper objects to compromise a system and display ads or gather browsing data about the machine. Zbot is a network that distribute the Zeus Trojan that steals personal data that enables criminals to steal passwords and compromise victims' accounts.

Zscaler says in its report that the Google's autonomous system -- its block of IP addresses -- is the source of 5 per cent of all the traffic Zscaler blocks for its customers, the highest percentage for any autonomous system. A good number of these come from services supported by Google including Gmail, Google Groups, and Blogger pages.

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags zscalerInternet Explorer 6Security ID

Show Comments