94% of vulnerabilities in Microsoft products turned out to be avoidable by turning off administrator privileges

ByPublic domain

A vulnerability related to computer software is always a confusing user, but according to a survey by security companies, it became clear that most of Windows vulnerabilities can be avoided by editing the OS and application administrator's rights It is.

94% of Microsoft vulnerabilities can easily easily mitigated | Computerworld
http://www.computerworld.com/article/3173246/security/94-of-microsoft-vulnerabilities-can-be-easily-mitigated.html

I pointed out this issue because of the security companiesAvectois. According to the company, there are 530 vulnerabilities related to Microsoft products discovered in 2016, of which 94% were able to be reduced by excluding administrator authority. Even at 2015 this figure was 85%, but it has also been clarified that it has increased by 9 points in a year.

This is especially noticeable with respect to browsers made by Microsoft, and 100% of the problems related to Internet Explorer (IE) or Edge were in a condition that can be avoided by editing the administrator authority. Nonetheless, it was a vulnerability related to IE 11 from IE 6 that had been confirmed in 2015 by 2015, but it is a point to evaluate that it was greatly reduced to 109 cases in 2016 .

ByKris krüg

Mark Aussin, CEO of Avecto, said: "Privilege management and application control is a key part of the security strategy at the endpoint, building up security from that part, building stronger, multi-tiered defense You can build it.The number announced this time will have a big impact when the user relieves the damage against the recent attack.The era is changing now.Turn off the administrator's authority , Controlling applications is not difficult anymore. "

395 vulnerabilities discovered in Windows 10, it was said that it was the largest through all other operating systems. This is 46% more numerical value compared with 265 cases for Windows 8 and Windows 8.1 respectively. Avecto says that 93% of the problems found on Windows 10 can be mitigated by editing administrator authority.

ByPublic domain

In addition to OS, similar situation is revealed in Microsoft Office related. In 2014, the number of problems that were only 20 cases increased to 62 cases in 2015 and 79 cases in 2016. This problem is related to Office 2010, Office 2013, Office 2016, but 99% of Office 2016 and 100% of Office 2016 problems are avoided by editing administrator authority It was said to have been. (Office 365 is not included)

In addition, the situation is the same in Windows Server, and 319 issues in total are clarified in Windows Server 2008/2012/2016, and 90% can avoid it in the same way.

According to Avecto, it is effective to carry out this method in parallel with antivirus software and so on. It is important to adopt a dual method of preventing attacks from being detected with anti-virus software while preventing the appearance of vulnerabilities by editing administrator authority.