internet security tHreAt rePOrt GOVernMent 2013

Recommendations

Info

p. 152 Symantec Corporation Internet Security Threat Report 2013 :: Volume 18 GOVERNMENT ThREAT ACTIVITy TRENDS Government Threat Activity Trends Whether the purposes behind government-targeted attacks involve disagreements with policies or programs, or are motivated by espionage or attempts to steal classified information for profit or other reasons, such attacks can have serious ramifications on organizations and those they serve. The Symantec Global Internet Security Threat Report provides an analysis of threat activity trends relating to government and Critical Infrastructure Protection (CIP), including malicious activity that Symantec observed in 2012. Attacks are defined as any malicious activity carried out over a network that has been detected by an intrusion detection system (IDS) or firewall. Definitions for the other types of malicious activities can be found in their respective sections within this report. This section covers the following metrics and provides analysis and discussion of the trends indicated by the data: • Malicious Activity by Critical Infrastructure Sector • Sources of Origin for Government-targeted Attacks • Attacks by Type: Notable Critical Infrastructure Sectors
p. 153 Symantec Corporation Internet Security Threat Report 2013 :: Volume 18 GOVERNMENT ThREAT ACTIVITy TRENDS Malicious Activity by Critical Infrastructure Sector Background This metric indicates the level to which government and critical infrastructure organizations may have been compromised and are being used by attackers as launching pads for malicious activity. These attacks could potentially expose sensitive and confidential information, which could have serious ramifications for government and critical infrastructure organizations. Such information could be used for strategic purposes in the case of state- or group-sponsored attacks, especially since attackers who use compromised computers for malicious activity can mask their actual location. Methodology This metric evaluates the amount of malicious activity originating from computers and networks that are known to belong to government and critical infrastructure sectors. To measure this, Symantec cross-references the IP addresses of known malicious computers with standard industrial classification (SIC 1 ) codes that are assigned to each industry and provided by a third-party service. 2 Symantec has compiled data on numerous malicious activities that were detected originating from the IP address space of these organizations. These activities include bot-infected computers, phishing hosts, spam zombies, and network attack origins. Data Figure e.1 Malicious Activity by Critical Infrastructure Sector Source: Symantec Industry Sector % of CIP Source Activity Financial services 72.2% 9.6% Manufacturing 16.0% 71.5% Biotech / Pharmaceutical 4.7% 6.0% Government 2.2% 1.7% Aerospace 1.9% 7.3% Government - national 1.2% 0.8% Government - state 0.9% 0.8% utilities/energy 0.3% 0.3% internet service Provider 0.3% 1.7% telecommunications 0.1% 0.1% Government - Local
Page 1 and 2:
internet security tHreAt rePOrt GOV
Page 3 and 4:
p. 3 Symantec Corporation Internet
Page 5 and 6:
Page 7 and 8:
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
Page 47 and 48:
Page 49 and 50:
Page 51 and 52:
Page 53 and 54:
Page 55 and 56:
Page 57 and 58:
internet security tHreAt rePOrt APP
Page 59 and 60:
Page 61 and 62:
Page 63 and 64:
Page 65 and 66:
Page 67 and 68:
Page 69 and 70:
Page 71 and 72:
Page 73 and 74:
Page 75 and 76:
Page 77 and 78:
Page 79 and 80:
Page 81 and 82:
Page 83 and 84:
Page 85 and 86:
Page 87 and 88:
Page 89 and 90:
Page 91 and 92:
Page 93 and 94:
Page 95 and 96:
Page 97 and 98:
Page 99 and 100:
Page 101 and 102: p. 101 Symantec Corporation Interne
Page 151: p. 151 Symantec Corporation Interne
show all

internet security tHreAt rePOrt GOVernMent 2013

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?