Businesses Still Sticking With IE6

Microsoft's Internet Explorer continues to dominate corporate browser use more so than it does private use, with its nearest rival, Mozilla's Firefox, lagging far behind with one in seven businesses opting for it, according to data collected by Internet-based security service Zscaler.

Businesses are also more careless about upgrading IE than the general public with 27% still using IE6, which has known vulnerabilities, says Zscaler, including the one that led to the notorious Aurora attack against Google and other U.S. corporations in January.

IE zero-day exploit code goes public

The percentage using IE6 is dropping -- from 33% in January to 27% in March -- and Zscaler strongly recommends upgrading to IE8 for the 74% of companies that use that browser. Firefox lags behind with 10% of businesses using it, and Google Chrome comes in third with just over 2%. IE has worse penetration overall when non-business users are added to the mix, with its share dropping below 60%.

Zscaler's "State of the Web" report for Q1 2010 relies on statistics gathered by the company in providing security services to its customers. So its data depends the particular mix of companies it happens to have as customers and the sites they visit.Its data found that the United States has the highest number and highest percentage of malicious Web sits visited by its customers during the first three months of this year. The United States hosted 68% of all the malicious Web sites visited, with German second with just under 4%. Of all the U.S. sites visited, 10.2% contained malicious software, the company says, with Honduras coming in second with 7.5%.

As part of its services, Zscaler blocks traffic deemed malicious. The single type of traffic most blocked is for fake antivirus software -- software that rubs out the symptoms of worms that act as if they have found victims' machines infected, then try to sell them the cure. Fake A/V accounted for 13.6% of all the traffic blocked, with Monkif coming in second at 4.4% and Zeus/Zbot coming in third with 2.4%.

Monkif is malware that downloads browser helper objects to compromise a system and display ads or gather browsing data about the machine. Zbot is a network that distribute the Zeus Trojan that steals personal data that enables criminals to steal passwords and compromise victims' accounts.

Zscaler says in its report that the Google's autonomous system -- its block of IP addresses -- is the source of 5% of all the traffic Zscaler blocks for its customers, the highest percentage for any autonomous system. A good number of these come from services supported by Google including Gmail, Google Groups, and Blogger pages.

Read more about software in Network World's Software section.

Subscribe to the The Advisor Newsletter

Comments