Security Slideshow: Cyber Crime Trends Report: Grim News for Q1 2011
An uptick in phishing attacks, a lack of domain name service security awareness among IT personnel, and an increase in mobile attacks are among the findings of IID's "eCrime Trends Report, First Quarter 2011." IID is a vendor of anti-phishing solutions. Many in the information security industry have been focused on Advanced Persistent Threats (APT) during the past several months, according to the report. The typical "low and slow" approach is often pointed out as a popular tactic for cyber criminals who are targeting systems at large organizations. As a result of the HBGary Federal breach, it has been discovered that enterprises such as Johnson and Johnson and Dow Chemical have been targets of hackers, as was the law firm King & Spalding. Like the attack against HBGary Federal, the breach of RSA's SecurID Security two-factor Authentication product in March 2011 shows that threats really can penetrate and disrupt even those businesses that focus on IT security, according to the report. More than 25,000 organizations worldwide use the SecurID product. These events illustrate how cyber criminals are focusing on particular aspects of the Internet business ecosystem and not just haphazardly guessing at which organizations to target. In the plus column, Microsoft, McAfee, Fireye and other security researchers worked with U.S. Federal law enforcement to take down the Rustock botnet.