- Security TWENTY
- Women in Security
What in IT security are termed advanced targeted attacks are spreading to organisations of all sizes and variety of personnel, according to an IT security software company. Data breaches are increasing, and that attackers are focusing on mobile threats, it is claimed.
Symantec reports that it blocked more than 5.5 billion malicious attacks in 2011, an increase of 81 percent over the previous year. In addition, the number of unique malware variants increased to 403 million and the number of web attacks blocked per day increased by 36 percent.
At the same time, spam levels fell considerably and new vulnerabilities discovered decreased by 20 percent. These statistics, compared to the continued growth in malware, paint an interesting picture, according to the IT firm. Attackers have embraced easy to use attack toolkits to work on existing vulnerabilities. Moving beyond spam, cyber criminals are then turning to social networks to launch their attacks. The very nature of these networks makes users incorrectly assume they are not at risk, and attackers are using these sites to target new victims. Due to social engineering techniques and the viral nature of social networks, it’s much easier for threats to spread from one person to the next.
Advanced targeted attacks spread
Targeted attacks are growing, with the number of daily targeted attacks increasing from 77 per day to 82 per day by the end of 2011. Targeted attacks use social engineering and customized malware to gain unauthorised access to sensitive information. These advanced attacks have traditionally focused on public sector and government; however, in 2011, targeted attacks diversified, according to the IT firm.
Targeted attacks are no longer limited to large workplaces. More than half of such attacks target organisations with fewer than 2,500 employees, and almost 18 percent target companies with fewer than 250 employees. These organisations may be targeted because they are in the supply chain of a larger company and because they are less well defended. Furthermore, 58 percent of attacks target non-execs, employees in roles such as human resources, public relations, and sales. People in these jobs may not have direct access to information, but they can serve as a link into the company. They are also the IT firm claims easy for attackers to identify online and are used to getting proactive inquiries and attachments from unknown sources.
Rise of breaches
About 1.1 million identities were stolen per data breach on average in 2011, a dramatic increase over the amount seen in any other year. Hacking incidents posed the greatest threat, exposing 187 million identities in 2011—the greatest number for any type of breach last year. However, the most frequent cause of data breaches that could facilitate identity theft was theft or loss of a computer or other medium on which data is stored or transmitted, such as a smartphone, USB key or a backup device. These theft-or loss-related breaches exposed 18.5 million identities.
As tablets and smartphones continue to outsell PCs, more sensitive information will be available on mobile devices. Workers are bringing their smartphones and tablets into the corporate environment faster than many organisations are able to secure and manage them. This may lead to an increase in data breaches as lost mobile devices present risks to information if not properly protected. Symantec points to recent research that half of lost phones will not be returned and 96 percent (including those returned) will experience a data breach.
Mobile vulnerabilities increased by 93 percent in 2011. At the same time, there was a rise in threats targeting the Android operating system. With the number of vulnerabilities in mobile devices rising and malware authors not only reinventing malware for mobile devices, but creating mobile-specific malware, 2011 was the first year that mobile malware presented a tangible threat to businesses and consumers. These threats are designed for activities including data collection, the sending of content, and user tracking.
“In 2011 cybercriminals greatly expanded their reach, with nearly 20 per cent of targeted attacks now directed at companies with fewer than 250 employees,” said Stephen Trilling, Chief Technology Officer, Symantec. “We’ve also seen a large increase in attacks on mobile devices, making these devices a viable platform for attackers to leverage in targeting sensitive data. Organizations of all sizes need to be vigilant about protecting their information.”