It’s Out Today…

Symantec released its Internet Security Threat Report (ISTR) today. This is volume XIII and as per usual there are some interesting numbers in there - you can download the report from symantec.com. The data is collected from the Global Intelligence Network which operates in 180 countries with more than 40,000 sensors and 2,000,000 managed dummy email accounts.

Some of the new metrics are:

  • Malicious attacks on ISPs. These are targeting new subscribers who perhaps don’t have security on their machines that they should.
  • Site specific cross-site scripting. Targeting well known sites with invisible changes which downloads trojans on unwary visitors. This is now the most common attack.
  • Malicious code which modifies web pages. This is on the increase - and is making it increasingly difficult for the visitor to distinguish a real site from a fake one.

While there is no silver bullet to prevent this from happening - the main watchword is caution. If a site is asking for more information than you are willing to give (do you really need to give your birthday or mother’s maiden name - to any website?) then navigate away unless you are sure that there is a genuine reason for them to have it. Social network sites are springing up and some are not all that they seem to be - just be wary. Also, make sure that you have a personal firewall, anti-virus, anti-phishing toolbar installed and up to date.

I will post some more articles over the next week - highlighting some of the other interesting data points that the report has shown up.

In the meantime hear my views on a podcast: http://www.bitebroadcast.com/symantec/istr08_01/

April 8, 2008 | Filed Under announcements 

comments

Leave a Reply