Pick a program. Active-X, QuickTime, Real (the particular application doesn't matter, they are all/have been security jokes). The consumer public has been desensitized, or actually convinced that security is NOT actually important in any given product.
That's why it is SOP to have Anti-Virus, Anti-Malware, add on firewall, Anti-Spam, ISPs touting security tools, XYZ-Removal programs, professional re-installs. All of this is SOP. Now that we are in an era where consumers think getting botted is NOT the OSes fault (not phishing), or their OWN fault (didn't have the most up to date XYZ version running on my computer), vendors have zero incentive to code securely.
I have read a thousand posts on ZDNet where users get blamed for getting infected, or apologizing for whomever (no, not including phishing attacks, just the automatic exploits), and it astounds me.
It is a sad state of affairs to be sure, and I don't see it changing any time soon (eventually it will, Linux folks look at what is SOP for windows users as an example and scratch their heads).
The above translates into make it work, just work so we can sell it. Security is not our problem (ok, we'll patch after the fact when ZDNet finds an exploit, or secunia makes a stink, but hey, we'll turn that into PR Spin showing how great we are)
TripleII
Discussion on:
Message 7 of 1
The best of ZDNet, delivered
ZDNet Newsletters
Get the best of ZDNet delivered straight to your inbox
