8 You open them 2011 - the sixteen Internet Security Threat Report di Symantec has arrived to quota, but the tone of the contents does not point out to change. Once again in fact on it evidences a meaningful increase of the attacks informed to us, with beyond 286 million new threats found the slid year and new macrotendencies.
The study observes an increase is in the frequency that in the degree of complexity of the threats turned to the companies, a continuous expansion of the social network taken advantage of like platforms in order launch attacks and a change of the strategy of the criminals informed to us, more and more interested to the vulnerabilities in Java in order to compromise the systems of the PC and, above all, attracted from the devices mobile.
The aimed attacks as Hydraq and Stuxnet have represented an important threat for the companies in 2010. In order to increase the probabilities of happening, an crescent number of these attacks has taken advantage of the vulnerabilities zero-day for introdursi in the systems informed to us. As an example, Stuxnet alone has taken advantage of 4 various vulnerabilities zero-day in order to hit its objectives. In the 2010 criminals informed to us attacks aimed against various quoted and multinational societies, governmental agencies and an amazing number of smaller companies have launch. In many cases they have characterized the victims key inside of every company and have then used attacks social engineering personalized in order to approach the network of the victims. Given their nature, many of these attacks have had happened also in presence of business safeguards measures. Besides the aimed attacks high-profile in order to embezzle the intellectual property or to provoke material damages, many others have hit the customers for their personal information. As an example, the study has found that the violations of the data provoked from the hacker have originated in average beyond 260.000 identities exposed for violation in 2010.
The platforms of the social network become more and more popular, even if this happening has not attracted a great number of malware. One of the main techniques of attack used on the abbreviated sites of social network uses has regarded it of URL, than, in normal circumstances, they are used in order to share, in an email or on a page web, link to an address a too much complex web. The slid year the criminals informed to us have mailed million these link on the sites of the social network, in order to transform the customers in victims of malware and phishing, increasing esponenzialmente the rate gone attacks to good aim.
The report he has found that the criminals informed to us have taken advantage of also the potentialities of the news feed in order launch attacks on wide scale: they carried out the login from a false one account and mailed a link abbreviated to a dangerous site on the showcase of the victim. The social network he successively distributed in automatic rifle the link to news feed of the friends of the victim, forwarding it to hundred or the thousands of customers in little minuteren. In 2010 observed 65% of the link harmful in the news feed from Symantec were URL abbreviated. Of these, 73% have received 11 or more click and 33% between the 11 and the 50.
The spread of the main platforms mobile is attracting the attention of the criminals and Symantec previews an increase in the attacks addressed to dispositive furnitures. In 2010, the majority of the attacks to malware against the devices mobile has been programs Trojan Horse under form of legitimate applications to the appearance. Besides to generate some of this malware from scratch, in many cases the criminals have hit the customers having inserted malware in valid applications. The criminal then distributed these false applications through app store publics.
Even if the new architectures for the emergency adopted in dispositive effective furnitures are as well as how much those for desktop and serveur, the criminals can often bypassare these security systems attacking implementazioni own vulnerability of the platforms mobile. Ill-fatedly, this it makes them are enough common - Symantec has found 163 vulnerabilities during 2010 that could be used from the criminals in order to obtain a partial control or total on dispositive furnitures. In the first months of the 2011 criminals they have already taken advantage of these techniques in order to hit hundred of thousands of devices. According to the studies of Mocana, it is not strange that 47% of the companies do not believe of adequately being able to manage the risks introduced from dispositive furnitures, and that more of 45% it asserts that the relative problems to the emergency are one of the greatest obstacles for dispositive furnitures.
No comments:
Post a Comment