« Annoying site registrations | Main | Dreams of future BART expansion »

A Study in Network Intrusion

Recently Verizon did an analysis of 500 network intrusions to see if they could determine if there were any major trends.   I found these items from the overview the most interesting:

  • Most breaches resulted from a combination of events rather than a single action. Sixty-two percent of breaches were attributed to significant internal errors that either directly or indirectly contributed to a breach. For breaches that were deliberate, 59 percent were the result of hacking and intrusions.

  • Of those breaches caused by hacking, 39 percent were aimed at the application or software layer. Attacks to the application, software and services layer were much more commonplace than operating system platform exploits, which made up 23 percent. Fewer than 25 percent of attacks took advantage of a known or unknown vulnerability. Significantly, 90 percent of known vulnerabilities exploited had patches available for at least six months prior to the breach.

  • The study’s findings show a marked increase in the number and type of international incidents. For example, attacks from Asia, particularly in China and Vietnam, often involve application exploits leading to data compromise, while defacements frequently originate from the Middle East. Internet protocol (IP) addresses from Eastern Europe and Russia are commonly associated with the compromise of point-of-sale systems.

Sources:

Bookmark and Share

TrackBack

TrackBack URL for this entry:
http://www.spectrox.com/blog-mt/mt-tb.fcgi/101