MAGAZINE - Realview
MAGAZINE - Realview
MAGAZINE - Realview
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
RESEARCH<br />
PHISHING AND MALWARE<br />
• Online criminals engaging in the distribution of rogueware<br />
and malware can earn $US10,800 a day.<br />
(Finjan Cybercrime Intelligence Report)<br />
• One per cent of computers worldwide are infected by<br />
malware designed to steal sensitive information.<br />
• Thirty-five per cent of infected PCs had up-to-date antivirus<br />
software installed.<br />
(Panda Labs)<br />
• A webpage is infected every 4.5 seconds.<br />
(Sophos Security Threat Report 2009)<br />
• Twenty-three per cent of people worldwide will fall for<br />
spear phishing attacks.<br />
• Sixty per cent of corporate employees who were susceptible<br />
to targeted spear phishing responded to the<br />
phishing emails within three hours on average.<br />
(The Intrepidus Group)<br />
• Cybercrime is costing Australian businesses more than<br />
$600 million per year.<br />
(Australian Institute of Criminology)<br />
• Web malware infections surged 582 per cent in 2008<br />
• Data-theft Trojans rose 1559 per cent in 2008.<br />
• Top five verticals susceptible to web malware infection<br />
include energy and oil, pharmaceuticals and chemical,<br />
engineering and construction, transportation and shipping,<br />
and travel and entertainment. This is attributed<br />
to the vast amounts of IP stored by these sectors.<br />
(ScanSafe Annual Global Threat Report)<br />
• The volume of phishing attacks detected by RSA during<br />
2008 grew 66 per cent over those detected in 2007.<br />
• In 2008, 44 per cent of phishing attacks were hosted<br />
on fast-flux networks.<br />
(RSA Anti-Fraud Command Center)<br />
• Eighty-one percent of domains used for phishing are<br />
legitimate domains that have been compromised.<br />
• The average uptime for a phishing site is 52 hours.<br />
(Anti-Phishing Working Group [APWG], Global Phishing<br />
Survey: Trends and Domain Name Use in 2008)<br />
• There was a 40 per cent increase in the number of US<br />
consumers that lost money to phishing attacks in 2008.<br />
• The average consumer loss in 2008 per phishing incident<br />
was $US351.<br />
(Gartner, The War on Phishing is Far From Over report)<br />
• More than one million drive-by download pages have<br />
been detected monthly. A drive-by download page is<br />
one that hosts malicious software where, if users visit the<br />
website and their computers are vulnerable, they can<br />
be exploited without their knowledge.<br />
(Microsoft Security Intelligence Report, April 2009)<br />
MEDICAL/HEALTHCARE<br />
• In the first half of 2009, the medical/healthcare sector<br />
accounted for 13 per cent of data breaches, but an<br />
astounding 70 per cent of compromised records.<br />
(Identity Theft Resource Center)<br />
GOVERNMENT<br />
• According to the US Computer Emergency Readiness<br />
team (US-CERT), in 2008 there were 5488 installations<br />
of malware and hostile programs on government<br />
computers.<br />
• The destruction from a single wave of cyberattacks on<br />
critical infrastructures could exceed $US700 billion,<br />
according to research from the US Cyber Consequences<br />
Unit.<br />
MISCELLANEOUS<br />
• Twenty-nine per cent of survey respondents indicated<br />
that they were “very concerned” about their sensitive<br />
data; 56 per cent said “somewhat concerned”.<br />
• Twenty-two per cent said their organisation had already<br />
found sensitive data on SharePoint sites.<br />
• Twenty per cent did not know if they had suffered a<br />
security breach; 9 per cent have “possibly” or actually<br />
suffered a breach.<br />
(Courion Corporation, Security of Microsoft SharePoint<br />
Sites) R<br />
34 RISK August 2009