Statistics – Page 3 – CyberSecurity Institute

Nearly a third of all computers are infected with malware

Posted on February 7, 2013December 30, 2021 by admini

The countries leading the list of most infections are China, South Korea and Taiwan, with 54.89, 54.15 and 42.14 percent of infected computers respectively. … In China, the number of infected computers dropped from 56 percent in 2011 to 54.89 percent in 2012, and in Taiwan, the decrease was even larger (from 52 percent to 42.14 percent).

Facebook and Twitter continue to be among the most popular social media sites, and are exploited by cyber-crooks to trick users, infect their computers and steal their confidential information. LinkedIn, a tool that is increasingly becoming a key part of job searches, also suffered a massive breach that led to the theft of 6.5 million user passwords.

Special care will have to be taken to protect networks against operating system and application vulnerabilities, as it has become increasingly common for cyber-criminals and national intelligence agencies to exploit security flaws to silently compromise systems.

Cyber-espionage and cyber-war will also be on the rise in a year that presents itself full of challenges in the computer security world.

Link: http://www.net-security.org/malware_news.php?id=2404

Most attacked computer ports revealed

Posted on February 4, 2013December 30, 2021 by admini

The report drew data collected by Akamai’s distributed set of agents deployed across the Internet that monitors attack traffic.

According to the report, Port 445 (Microsoft-DS) remained the most targeted port since mid-2008, receiving 30 percent of observed attack traffic. “Port 445 remained the most targeted port in eight of the top 10 countries, accounting for as many as 109 times (in Romania) the number of attacks seen by the next most targeted port,” the report stated.

Link: http://mybroadband.co.za/news/security/69230-most-attacked-computer-ports-revealed.html

DDoS attack sizes plateau, complex multi-vector attacks on the rise

Posted on January 31, 2013December 30, 2021 by admini

DDoS: Attack sizes plateau; complex multi-vector attacks on the rise – The largest attack reported was 60 Gbps, same as 2011; and 46 percent reported multi-vector attacks.

This year’s results confirm that application-layer and multi-vector attacks are continuing to evolve while volumetric attacks are starting to plateau in terms of size. … Attackers have now turned to sophisticated, long-lived, multi-vector attacks – combinations of attack vectors designed to cut through the defenses an organization has in place – to achieve their goals. … This year’s report includes a case study on the ongoing attacks against U.S. financial services organizations, a great example of a multi-vector attack.

Data centers and cloud services are increasingly victimized – 94 percent of data center operators reported attacks, and 90 percent of those reported operational expenses as a business impact.

As more companies move their services to the cloud, they now have to be wary of the shared risks and the potential for collateral damage. DNS infrastructure remains vulnerable – 27 percent experienced customer-impacting DDoS attacks on their DNS infrastructure—a significant increase over the 12 percent of respondents from last year’s survey. 71 percent of respondents reported good visibility at Layers 3 and 4 but only 27 percent reported Layer 7 visibility.

Link: http://www.net-security.org/secworld.php?id=14323

Service providers lack confidence in LEAs

Posted on February 9, 2012December 30, 2021 by admini

They are still rare, indicating that the slow uptake of IPv6 makes it “not yet economically or operationally significant enough to warrant serious attention by the Internet criminal underground.”

However, there has been a significant increase in large flood-based attacks in excess of 10 Gbps, constituting “an extremely serious threat to network infrastructure and ancillary support services such as DNS, not to mention end-customer properties.”

Two things that might surprise network customers are the providers’ concern over the effectiveness of stateful firewalls, IPS and load-balancing devices in the face of DDoS attacks, and what Arbor describes as the “perennial disengagement of most network operators from law enforcement.”

On law enforcement, network operators lack confidence in LEA’s ability and willingness to investigate online attacks, and “evince strong dissatisfaction with current governmental efforts to protect critical infrastructure.”

Symantec announces April 2011 MessageLabs Intelligence Report

Posted on April 28, 2011December 30, 2021 by admini

“The trend in targeted attacks suggests there may be a seasonal pattern as the number of targeted attacks always seems to be higher at this time of year,” said Paul Wood, MessageLabs Intelligence Senior Analyst, Symantec.cloud. “As the financial year draws to a close in many countries, it is also possible that the timing is perfect for cybercriminals seeking information about the financial performance of a company, and a carefully crafted attack may be just the means by which they can achieve this.”

Spam: In April 2011, the global ratio of spam in email traffic from new and previously unknown bad sources decreased by 6.4% points since March 2011 to 72.9% (1 in 1.37 emails).

Viruses: The global ratio of email-borne viruses in email traffic from new and previously unknown bad sources was one in 168.6 emails (0.593%) in April, an increase of 0.114% points since March.

Web security: Analysis of web security activity shows that an average of 2, websites each day were harbouring malware and other potentially unwanted programs including spyware and adware, a decrease of 18.2% since March 2011.

• In Australia, 1 in 271.3 emails were malicious and, 1 in 321.0 for Hong Kong, for Japan it was 1 in 902.9 compared with 1 in 640.0 for Singapore.
• Spam levels for the Education sector were 74%, 72.8% for the Chemical & Pharmaceutical sector, 72.5% for IT Services, 71.8% for Retail, 70.9% for Public Sector and 72.2% for Finance.
• In April, the Public Sector remained the most targeted industry for malware with 1 in 26.4 emails being blocked as malicious.
• Virus levels for the Chemical & Pharmaceutical sector were 1 in 157.4, 1 in 260.4 for the IT Services sector, 1 in 287.6 for Retail, 1 in 87.1 for Education and 1 in 209.5 for Finance.

http://www.ameinfo.com/263494.html

Most large companies hit by hack attacks, survey shows

Posted on October 11, 2010December 30, 2021 by admini

Fourteen percent of those surveyed attributed their intrusion problem to “hacker/network attack,” 12% cited “lack of adequate security policies/measures,” 10% said “employee Web usage,” 9% pointed to “virus/malware/spyware,” 8% faulted other employee carelessness, negligence,” 6% said “unauthorized access by current/former employees,” 5% blamed “weak passwords,” 5% thought it was because of “lack of software updates,” and 5% simply said “software security flaw/bug.”

About half of respondents said their organizations have a formal security audit by an outside organization at least once a year, up from 35% in 2009. Forty-seven percent felt internal audits helped identify security problems, but 30% said the audit didn’t go far enough and 40% felt the audits should occur more frequently.

http://www.computerworld.com/s/article/9190559/Most_large_companies_hit_by_hack_attacks_survey_shows?source=CTWNLE_nlt_dailyam_2010-10-12