The Symantec Internet Security Threat Report provides a six-month update of Internet threat activity. It includes
• analysis of network-based attacks
• a review of known vulnerabilities
• highlights of malicious code.
It also assesses numerous issues related to online fraud, including
• phishing
• spam
• security risks such as adware, spyware, and misleading applications.
Highlights
Over the past two reporting periods, Symantec has observed a fundamental shift in Internet security activity. The current threat environment is characterized by an increase in data theft and data leakage, and the creation of malicious code that targets specific organizations for information that can be used for financial gain.
Instead of exploiting high-severity vulnerabilities in direct attacks, attackers are now discovering and exploiting medium-severity vulnerabilities in third-party applications, such as Web applications and Web browsers. Those vulnerabilities are often used in “gateway” attacks, in which an initial exploitation takes place not to breach data immediately, but to establish a foothold from which subsequent, more malicious attacks can be launched.
Symantec has observed high levels of malicious activity across the Internet, with increases in phishing, spam, bot networks, Trojans, and zero-day threats. However, whereas in the past these threats were often used separately, attackers are now refining their methods and consolidating their assets to create global networks that support coordinated criminal activity.
Download this report now to discover the trends and methodologies underlying network attacks today. You will understand, for example, how an increasing interoperability between diverse threats and methods can lead to networks being compromised and used in concert as global networks of malicious activity that support their own continued growth.
Complimentary with registration
|
