Slashdot Mirror

← Back to Stories (view on slashdot.org)

Silverlight Exploits Up, Java Exploits Down, Says Cisco

Posted by Soulskill on from the flavor-of-the-month dept.

angry tapir writes: Attempts to exploit Silverlight soared massively in late 2014 according to research from Cisco. However, the use of Silverlight in absolute terms is still low compared to the use of Java and Flash as an attack vector, according to Cisco's 2015 Annual Security Report. The report's assessment of the 2014 threat landscape also notes that researchers observed Flash-based malware that interacted with JavaScript. The Flash/JS malware was split between two files to make it easier to evade anti-malware protection. (The full report is available online, but registration is required.)

2 of 55 comments (clear)

  1. Re:Who the hell still uses Silverlight by AqD · · Score: 3, Interesting

    We used Silverlight to build enterprise apps because it's most resembling to fully-functional desktop app platform - like client-server except the server side is built on OData service with row-level access control (by SQL expression rewriting) and clients simply query everything by LINQ, maintaining maximum control over everything except authentication/authorization.

    It boosts development time significantly for building apps of the same functionality and does a lot of things which HTML5/JS cannot even maturely do yet, like binary data processing and really fast graphics rendering. If you take a look at their theme resource files, you'd notice that every UI controls and cool effects in Silverlight are actually complex vector shapes to be rendered in real-time, not fake image/bitmap used in typical websites because they're too slow to do anything serious.

    But now it's dead.....

  2. Re:Why is MS Still pushing it then? by Anonymous Coward · · Score: 2, Interesting

    You hide specific KB numbers / Silverlight releases, not Silverlight as a product.
    This means that the first time you hide Silverlight, it is the latest version of Silverlight you are hiding. You will then be offered the second-to-last version (note that the KB numbers and dates change). This will continue until you have hidden every release of Silverlight. When a new version is released it will appear as new download, but you won't have to go through the whole hide-previous-updates again.