MOST PEOPLE don't have a freaking clue about security when it comes to browsers, according to a new security study from security company Duo Security about browser security.
The study shows that a quarter of Windows devices run outdated and in some cases unsupported versions of Internet Explorer (IE). The problem stems in part from people running Windows XP, and therefore IE 7 or IE 8, which can expose them to over 700 known vulnerabilities.
The report goes on to praise Chrome as "the most up-to-date" browser. Some 82 per cent of users have the latest version, compared to 58 per cent of Microsoft Edge/IE users and 66 per cent of Firefox users.
Chrome updates itself silently in the background by default and often users don't know they've been updated.
Oddly the report comes on the same day that Google's other operating system, Android has come under investigation from a joint FBI/FCC force looking at why it takes so long for security updates to roll out.
Unsurprisingly, Mac users are significantly more up to date than Windows users. The report points at Windows' relative instability putting people off upgrading, while simultaneously noting Apple's heavy marketing of new editions.
Most key of all, Flash and Java, long the scourge of INQUIRER security articles, were found to be significant causes of problems. We often report on emergency vendor patches issues by Adobe and Java for their ageing browser plug-ins, and yet 60 per cent of Flash users and a whopping 72 per cent of Java users use an out of date version.
Many browsers have turned access to these plugins off by default, and Google Ads blocks their use in advertising, so this will hopefully stop being a thing. Right now though? Definite thing.
The report concluded: "The changing security landscape and rapid adoption of cloud apps necessitates an increased emphasis on security hygiene basics.
"With any device accessing data from any location, establishing and maintaining the health of these devices is critical, in addition to strongly attesting that the user is who they say they are."
So, good security is good. Bad security is bad. M'kay?
Duo Security then started burbling on about its trusted access products and we kind of tuned out. µ
It's the week in Google news
Erik Estrada wouldn't have stood for this
Hacks in support of WikiLeaks founder target gov websites