Looking at the tiny bit of information there, they did what so many other reports did in the past. They say that Linux = Microsoft Windows. That is an unfair compairson, as on the Linux side, that typicially binds all the variants togther for thousands of possible programs to have vunerabilities. SuSE Linux alone has 7 CDs now to contain all the software it can install. Now if these reports grouped the Windows vunerabilities with the IIS, SQL, Office, Exchange, IE, and other vunerabilities, it would paint a different picture.
The key thing that tipped me off to this? This part of the article:
First, the Aberdeen Group says that Windows-based Trojan horse attacks peaked in 2001, when CERT released six such advisories, then bottomed out this year, when CERT didn't issue any alerts. However, Trojan horse-based attacks on Linux, UNIX, and open-source projects jumped from one in 2001 to two in 2002.
I personally know of more then 0 Trojan attacks that came out this year for Windows and it's associated programs.
And FYI, any trojan on a Unix based OS (including Mac OS X) will only be able to screw over your personal files without being easy to spot. In Mac OS X, if something requires root access, it pops up an authentication box identifying the program, and asks for your password, even if it's blank. Of course this is similar to the ActiveX warnings that so many Windows IE users ignore.
Previous Topic
Index
