SlideShare une entreprise Scribd logo

Symantec Intelligence Report August 2012

Symantec
Symantec

The Symantec Intelligence report provides the latest analysis of cyber security threats, trends and insights from the Symantec Intelligence team concerning malware, spam, and other potentially harmful business risks. The data used to compile the analysis for this combined report includes data from May 2011 through August 2012.

TechnologieBusiness
1  sur  19
Symantec Intelligence Report August 2012 Symantec Intelligence 1
About the Symantec Intelligence Report The Symantec Intelligence report provides the latest analysis of cyber security threats, trends and insights from the Symantec Intelligence team concerning malware, spam, and other potentially harmful business risks. The data used to compile the analysis for this combined report includes data from May 2011 through August 2012. Symantec Intelligence 2
August 2011 Highlights • The state of data breaches to date in 2012 • A look at a malicious email scam that pretends to come from Symantec • A new Java zero-day vulnerability appears in the wild • An overview of the Elderwood Project • Spam – 72.3 percent (an increase of 4.7 percentage points since July) • Phishing – One in 312.9 emails identified as phishing (an increase of 0.109 percentage points since July) • Malware – One in 233.1 emails contained malware (a decrease of 0.14 percentage points since July) • Malicious Web sites – 1 website blocked per day (a decrease of 49.8 percent since July) Symantec Intelligence 3
Data Breaches • We compared two 8-month data sets: May-December 2011 and January-August of 2012. • The average number of breaches per month was down (16.5 to 14 per month) • Average number of identities stolen per breach is down, likely due to fewer extremely large breaches, but the median is up significantly: from 4,000 to 6,800 per breach. • Hackers are responsible for most breaches, making up 40% of all breaches and 88% of all identities exposed. • The Retail industry accounts for the largest sector where identities are exposed. • Healthcare suffered the highest number of breaches so far in 2012. Symantec Intelligence 4
Spam Rate & Sources 5 Spam Rate 83.3% Saudi Arabia 75.6% Education 73.3% 1-250 72.9% 251-500 78.1% Norway 74.3% Non-Profit 72.3% 77.6% China 77.3% Oman 74.3% Marketing/Media 74.3% Engineering 72.6% 501-1000 73.1% 1001-1500 72.5% 1501-2500 76.7% Brazil 73.7% Gov/Public Sector 72.8% 2501+ Last Month: 67.6% Six MonthAvg.: 67.2% Top 5 Geographies Top 5 Verticals By Horizontal 72.3% 2006 2007 2008 2009 2010 2011 2012 Saudi Arabia 25.7% Sources India 15.2% Turkey 5.3% Canada 4.9% United States 4.6% Brazil 4.2% Viet Nam 2.0% Russian Federation 1.4% Korea (South) 1.4% Argentina 1.3% August 2012
0.0% 4.5% 9.0% 11-Jul 12-Jul 13-Jul Symantec Intelligence 14-Jul 15-Jul Spam Attack Vectors 16-Jul 17-Jul 18-Jul 19-Jul 20-Jul 21-Jul 22-Jul 23-Jul Additional Spam Metrics 24-Jul NDR 25-Jul 26-Jul 27-Jul Malware 28-Jul 29-Jul 30-Jul 31-Jul 1-Aug 2-Aug 3-Aug 4-Aug 5-Aug 6-Aug 7-Aug 8-Aug 9-Aug 10-Aug 6
Additional Spam Metrics Spam URL TLD Distribution Change TLD August July (% points) .com 64.6% 63.9% +0.7 .net 8.3% 6.9% +1.4 .ru 7.0% 8.3% -1.3 .info 3.1% N/A N/A Average Spam Message Size Change Message Size August July (% points) 0Kb – 5Kb 44.3% 47.7% -3.4 5Kb – 10Kb 30.2% 25.8% +4.4 >10Kb 25.5% 26.6% -1.1 Symantec Intelligence 7
Spam Subject Line Analysis August 2012 No. of July 2012 No. of Rank Total Spam: Top Subject Lines Days Total Spam: Top Subject Lines Days 1 Newsletter 18 Buy Cialis and Viagra online! 15 2 Re: 31 Save-8O%-0ff-Viagra©-Cia1is©-Levitra© 30 3 Huge discount! 2 (blank subject) 30 HIGH-QUALITY-ROLEX-REPLICA- 4 30 Buy Cialis and Viagra online! 8 WATCHES&DESIGNER BAGS 5 Save-8O%-0ff-Viagra©-Cia1is©- Buy Viagra/Cialis Online! 4 Levitra© 31 We cant make it ANY EASIER toget LAID 6 21 Lowest prices! 3 tonight Enter Data Online Working From Your Home 7 30 (blank subject) 31 Computer 8 News 5 Delivery Status Notification (Failure) 30 FucBook "We can't make it ANY EASIER toget 9 11 Charter flight reservation. 3 LAID tonight!" FucBook "We can't make it ANY 10 Your credit card has been blocked 2 EASIER toget LAID tonight!" 27 Symantec Intelligence 8
Additional Spam Metrics Global Spam Categories Category Name August 2012 July 2012 Sex/Dating 42.51% 23.46% Pharma 32.61% 12.87% Watches 8.55% 2.40% Jobs 6.85% 1.52% Software 5.86% 1.54% Casino 1.60% 0.50% 419/scam/lotto 0.76% 0.08% Degrees 0.60% 0.18% Mobile 0.48% 0.07% Weight Loss 0.11% 0.14% Newsletters 0.07% 57.22% Symantec Intelligence 9
Phishing Rate & Sources Phishing Rate 1 in 122.6 Netherlands 1 in 83.1 Public Sector 1 in 295.8 1-250 1 in 571.0 251-500 1 in 140.3 South Africa 1 in 110.9 Finance 1 in 312.9 1 in 140.8 United Kingdom 1 in 343.6 Canada 1 in 232.5 Education 1 in 304.6 Accom/Catering 1 in 704.0 501-1000 1 in 629.0 1001-1500 1 in 1,109.9 1501-2500 1 in 464.0 Denmark 1 in 368.4 Building/Cons 1 in 232.5 2501+ Last Month: 1 in 475.3 Six MonthAvg.: 1 in 466.5 Top 5 Geographies Top 5 Verticals By Horizontal 1 in 312.9 2006 2007 2008 2009 2010 2011 2012 United States 37.3% Sources United Kingdom 28.9% New Zealand 15.9% Australia 4.8% Canada 3.9% India 3.5% Korea, Republic of 1.7% Sweden 1.0% South Africa 0.7% Hong Kong 0.3% August 2012 10
Phishing Rate & Sources Phishing Web Sites Locations Country July* June United States 52.0% 50.0% Germany 6.0% 6.4% United Kingdom 4.1% 4.4% Canada 3.4% 2.9% Brazil 3.2% 3.7% France 2.9% 2.9% Russia 2.5% 2.9% Netherlands 2.3% 2.3% Poland 1.4% 1.4% *Note: Data lags one month Spain 1.2% 0.9% August 2012 11
Tactics of Phishing Distribution Automated Toolkits Other Unique Domains IP Address Domains Free Web Hosting Sites Typosquatting Symantec Intelligence 12
Organizations Spoofed in Phishing Attacks, by Industry Sector E-Commerce 39.31% Information Services 32.31% Banking 27.01% Telecommunications 0.52% Retail 0.40% Communications 0.27% Government 0.17% Insurance 0.009% ISP 0.008% Retail Trade 0.003% Security 0.001% Symantec Intelligence 13
Virus Rate Virus Rate 1 in 107.7 Netherlands 1 in 54.0 Public Sector 1 in 251.0 1-250 1 in 283.8 251-500 1 in 115.1 United Kingdom 1 in 111.0 Education 1 in 233.1 1 in 178.3 Austria 1 in 212.0 Hungary 1 in 157.7 Accom/Catering 1 in 161.0 Finance 1 in 339.1 501-1000 1 in 262.6 1001-1500 1 in 474.1 1501-2500 1 in 276.3 Canada 1 in 200.9 Marketing/Media 1 in 188.9 2501+ Last Month: 1 in 340.9 Six MonthAvg.: 1 in 324.6 Top 5 Geographies Top 5 Verticals By Horizontal 1 in 233.1 2006 2007 2008 2009 2010 2011 2012 United Kingdom 53.2% Sources United States 23.3% Brazil 5.1% Australia 3.1% Sweden 2.4% South Africa 1.7% Japan 1.6% India 1.4% Netherlands 1.4% Hong Kong 1.3% August 2012 14
Most Frequently Blocked Email Malware Malware Name % Malware W32/Bredolab.gen!eml.j 16.05% Exploit/Link-generic-ee68 7.44% W32/NewMalware-Generic 7.40% W32/Bredolab.gen!eml.k 6.88% W32/Bredolab.gen!eml.l 5.43% HTML/JS-Encrypted.gen 4.50% W32/BouncedNastyMail.gen.dam 2.56% W32/NewMalware-ee73 2.09% Exploit/BouncedGeneric 1.64% Exploit.DarkPath.loc 1.53% Symantec Intelligence 15
New Malware and Spyware Sites Per Day Web Security Services Activity: New Malware Sites per Day New sites with spyware 11/day New sites with web viruses 1,088/day Total 1,099/day 2008 2009 2010 2011 2012 August 2012 Symantec Intelligence 16
Policy, Malware & Potentially Unwanted Programs Web Security Services Activity: Policy-Based Filtering Web Viruses and Trojans Potentially Unwanted Programs Social Networking 30.2% Trojan.JS.Iframe.BPN 11.8% PUP:Generic.183433 9.3% Advertisement and Popups 30.0% Suspicious.Pythia 9.7% PUP:Clkpotato!gen3 7.4% Streaming Media 8.4% Trojan.Generic.4315639 6.8% Gen:Application.Heur 6.0% Computing and Internet 4.1% JS:Trojan.Crypt.FC 5.5% PUP:Mediafinder 4.3% Chat 4.0% Trojan.JS.Iframe.BRV 5.1% PUP:Agent.NLK 4.1% Peer-To-Peer 2.9% Gen:Trojan.Heur.PT.Ci4abmtlSyo 4.8% PUP:9231 3.8% Hosting Sites 2.7% Trojan.Maljava!gen23 3.8% PUP:Crossid 3.6% Search 1.9% Trojan.JS.Agent.GHF 2.6% PUP:Android/DroidRooter.G 3.6% News 1.6% Trojan.JS.Agent.GLM 2.4% PUP:Relevant.BH 3.6% Games 1.5% Trojan.Webkit!html 2.3% PUP:Generic.183457 3.1% August 2012 Symantec Intelligence 17
Most Frequently Blocked Malware at the Endpoint Malware Name % Malware W32.Sality.AE 6.78% W32.Ramnit!html 5.99% W32.Ramnit.B 4.78% W32.Downadup.B 4.54% W32.Ramnit.B!inf 3.44% W32.Virut.CF 2.15% W32.Almanahe.B!inf 2.05% W32.SillyFDC.BDP!lnk 1.40% W32.Mabezat.B 1.06% W32.Virut!html 1.05% [1] For further information on these threats, please visit: http://www.symantec.com/business/security_response/landing/threats.jsp Symantec Intelligence 18
Where to next? • Web: – www.symanteccloud.com/intelligence – www.symantec.com/spam • Twitter: – @symanteccloud Symantec Intelligence 19

Recommandé

2012 July Symantec Intelligence Report
2012 July Symantec Intelligence Report2012 July Symantec Intelligence Report
2012 July Symantec Intelligence Report
Symantec
 
2012 January Symantec Intelligence Report
2012 January Symantec Intelligence Report2012 January Symantec Intelligence Report
2012 January Symantec Intelligence Report
Symantec
 
Symantec Intelligence Report July 2011
Symantec Intelligence Report July 2011Symantec Intelligence Report July 2011
Symantec Intelligence Report July 2011
Symantec
 
The State of the Internet - Comscore
The State of the Internet - ComscoreThe State of the Internet - Comscore
The State of the Internet - Comscore
Pablo Capurro
 
Tax Seminar 2013 - Outlook by Robert Prega
Tax Seminar 2013 - Outlook by Robert PregaTax Seminar 2013 - Outlook by Robert Prega
Tax Seminar 2013 - Outlook by Robert Prega
Italoblog
 
Dave Entwistle
Dave EntwistleDave Entwistle
Dave Entwistle
Matthew Hewlett
 
Presentation: Health Reform in Massachusetts
Presentation: Health Reform in MassachusettsPresentation: Health Reform in Massachusetts
Presentation: Health Reform in Massachusetts
masscare
 
Maurice - International Office Overview - Spring Review 2012
Maurice - International Office Overview - Spring Review 2012Maurice - International Office Overview - Spring Review 2012
Maurice - International Office Overview - Spring Review 2012
The Air Force Office of Scientific Research
 

Recommandé

2012 July Symantec Intelligence Report
2012 July Symantec Intelligence Report2012 July Symantec Intelligence Report
2012 July Symantec Intelligence Report
Symantec
 
2012 January Symantec Intelligence Report
2012 January Symantec Intelligence Report2012 January Symantec Intelligence Report
2012 January Symantec Intelligence Report
Symantec
 
Symantec Intelligence Report July 2011
Symantec Intelligence Report July 2011Symantec Intelligence Report July 2011
Symantec Intelligence Report July 2011
Symantec
 
The State of the Internet - Comscore
The State of the Internet - ComscoreThe State of the Internet - Comscore
The State of the Internet - Comscore
Pablo Capurro
 
Tax Seminar 2013 - Outlook by Robert Prega
Tax Seminar 2013 - Outlook by Robert PregaTax Seminar 2013 - Outlook by Robert Prega
Tax Seminar 2013 - Outlook by Robert Prega
Italoblog
 
Dave Entwistle
Dave EntwistleDave Entwistle
Dave Entwistle
Matthew Hewlett
 
Presentation: Health Reform in Massachusetts
Presentation: Health Reform in MassachusettsPresentation: Health Reform in Massachusetts
Presentation: Health Reform in Massachusetts
masscare
 
Maurice - International Office Overview - Spring Review 2012
Maurice - International Office Overview - Spring Review 2012Maurice - International Office Overview - Spring Review 2012
Maurice - International Office Overview - Spring Review 2012
The Air Force Office of Scientific Research
 
A presentation to symbiosis institute of international business
A presentation to symbiosis institute of international businessA presentation to symbiosis institute of international business
A presentation to symbiosis institute of international business
Kunal Jamuar
 
Rogue Element Mini-Portfolio
Rogue Element Mini-PortfolioRogue Element Mini-Portfolio
Rogue Element Mini-Portfolio
rogueelement
 
Symantec intelligence country report istr 2012 France
Symantec intelligence country report istr 2012 FranceSymantec intelligence country report istr 2012 France
Symantec intelligence country report istr 2012 France
sally1506
 
Daren lewis Portfolio: Data Visualization with Excel and SVG
Daren lewis Portfolio: Data Visualization with Excel and SVGDaren lewis Portfolio: Data Visualization with Excel and SVG
Daren lewis Portfolio: Data Visualization with Excel and SVG
Daren Lewis
 
Report Marketing Networking - 24.10.12
Report Marketing Networking - 24.10.12Report Marketing Networking - 24.10.12
Report Marketing Networking - 24.10.12
KingBee Media
 
Indonesia 2013 oleh Firmanzah
Indonesia 2013 oleh FirmanzahIndonesia 2013 oleh Firmanzah
Indonesia 2013 oleh Firmanzah
ppibelanda
 
Invest in Israel
Invest in IsraelInvest in Israel
Invest in Israel
Chemi Wieder
 
The ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEF
The ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEFThe ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEF
The ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEF
Santamaria
 
The Global Mobile Security Gap
The Global Mobile Security GapThe Global Mobile Security Gap
The Global Mobile Security Gap
Juniper Networks
 
Hcs 영문
Hcs 영문Hcs 영문
Hcs 영문
Hyundai Finance
 
Raddon Chart of the Day May 10, 2012
Raddon Chart of the Day May 10, 2012Raddon Chart of the Day May 10, 2012
Raddon Chart of the Day May 10, 2012
Raddon Financial Group
 
What Women Want - Vuclip
What Women Want - VuclipWhat Women Want - Vuclip
What Women Want - Vuclip
VuclipInsights
 
Edelman Trust In Entertainment Industry 2009
Edelman Trust In Entertainment Industry 2009Edelman Trust In Entertainment Industry 2009
Edelman Trust In Entertainment Industry 2009
Edelman
 
Investor Day 2012: PLM
Investor Day 2012: PLMInvestor Day 2012: PLM
Investor Day 2012: PLM
Aimia's Investor Presentations
 
Korea fund4q presentation
Korea fund4q presentationKorea fund4q presentation
Korea fund4q presentation
Company Spotlight
 
Tax Reforms in Georgia
Tax Reforms in GeorgiaTax Reforms in Georgia
Tax Reforms in Georgia
Sergey
 
Perspectiva económica mexicana
Perspectiva económica mexicana Perspectiva económica mexicana
Perspectiva económica mexicana
Ernesto Cordero
 
Raddon Chart of the Day May 17, 2012
Raddon Chart of the Day May 17, 2012Raddon Chart of the Day May 17, 2012
Raddon Chart of the Day May 17, 2012
Raddon Financial Group
 
Scarica il PDF
Scarica il PDFScarica il PDF
Scarica il PDF
impregilo_pgc
 
India Banking & Finance Industry
India Banking & Finance IndustryIndia Banking & Finance Industry
India Banking & Finance Industry
benjaminweb
 
Symantec Enterprise Security Products are now part of Broadcom
Symantec Enterprise Security Products are now part of BroadcomSymantec Enterprise Security Products are now part of Broadcom
Symantec Enterprise Security Products are now part of Broadcom
Symantec
 
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
Symantec
 

Contenu connexe

Similaire à Symantec Intelligence Report August 2012

A presentation to symbiosis institute of international business
A presentation to symbiosis institute of international businessA presentation to symbiosis institute of international business
A presentation to symbiosis institute of international business
Kunal Jamuar
 
Symantec intelligence country report istr 2012 France
Symantec intelligence country report istr 2012 FranceSymantec intelligence country report istr 2012 France
Symantec intelligence country report istr 2012 France
sally1506
 
Daren lewis Portfolio: Data Visualization with Excel and SVG
Daren lewis Portfolio: Data Visualization with Excel and SVGDaren lewis Portfolio: Data Visualization with Excel and SVG
Daren lewis Portfolio: Data Visualization with Excel and SVG
Daren Lewis
 
Report Marketing Networking - 24.10.12
Report Marketing Networking - 24.10.12Report Marketing Networking - 24.10.12
Report Marketing Networking - 24.10.12
KingBee Media
 
Indonesia 2013 oleh Firmanzah
Indonesia 2013 oleh FirmanzahIndonesia 2013 oleh Firmanzah
Indonesia 2013 oleh Firmanzah
ppibelanda
 
What Women Want - Vuclip
What Women Want - VuclipWhat Women Want - Vuclip
What Women Want - Vuclip
VuclipInsights
 
Edelman Trust In Entertainment Industry 2009
Edelman Trust In Entertainment Industry 2009Edelman Trust In Entertainment Industry 2009
Edelman Trust In Entertainment Industry 2009
Edelman
 
Tax Reforms in Georgia
Tax Reforms in GeorgiaTax Reforms in Georgia
Tax Reforms in Georgia
Sergey
 
India Banking & Finance Industry
India Banking & Finance IndustryIndia Banking & Finance Industry
India Banking & Finance Industry
benjaminweb
 

Similaire à Symantec Intelligence Report August 2012 (20)

A presentation to symbiosis institute of international business
A presentation to symbiosis institute of international businessA presentation to symbiosis institute of international business
A presentation to symbiosis institute of international business
 
Rogue Element Mini-Portfolio
Rogue Element Mini-PortfolioRogue Element Mini-Portfolio
Rogue Element Mini-Portfolio
 
Symantec intelligence country report istr 2012 France
Symantec intelligence country report istr 2012 FranceSymantec intelligence country report istr 2012 France
Symantec intelligence country report istr 2012 France
 
Daren lewis Portfolio: Data Visualization with Excel and SVG
Daren lewis Portfolio: Data Visualization with Excel and SVGDaren lewis Portfolio: Data Visualization with Excel and SVG
Daren lewis Portfolio: Data Visualization with Excel and SVG
 
Report Marketing Networking - 24.10.12
Report Marketing Networking - 24.10.12Report Marketing Networking - 24.10.12
Report Marketing Networking - 24.10.12
 
Indonesia 2013 oleh Firmanzah
Indonesia 2013 oleh FirmanzahIndonesia 2013 oleh Firmanzah
Indonesia 2013 oleh Firmanzah
 
Invest in Israel
Invest in IsraelInvest in Israel
Invest in Israel
 
The ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEF
The ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEFThe ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEF
The ICEF i-graduate Agent Barometer 2012 by Mr. Rod Hearps. Vice President, ICEF
 
The Global Mobile Security Gap
The Global Mobile Security GapThe Global Mobile Security Gap
The Global Mobile Security Gap
 
Hcs 영문
Hcs 영문Hcs 영문
Hcs 영문
 
Raddon Chart of the Day May 10, 2012
Raddon Chart of the Day May 10, 2012Raddon Chart of the Day May 10, 2012
Raddon Chart of the Day May 10, 2012
 
What Women Want - Vuclip
What Women Want - VuclipWhat Women Want - Vuclip
What Women Want - Vuclip
 
Edelman Trust In Entertainment Industry 2009
Edelman Trust In Entertainment Industry 2009Edelman Trust In Entertainment Industry 2009
Edelman Trust In Entertainment Industry 2009
 
Investor Day 2012: PLM
Investor Day 2012: PLMInvestor Day 2012: PLM
Investor Day 2012: PLM
 
Korea fund4q presentation
Korea fund4q presentationKorea fund4q presentation
Korea fund4q presentation
 
Tax Reforms in Georgia
Tax Reforms in GeorgiaTax Reforms in Georgia
Tax Reforms in Georgia
 
Perspectiva económica mexicana
Perspectiva económica mexicana Perspectiva económica mexicana
Perspectiva económica mexicana
 
Raddon Chart of the Day May 17, 2012
Raddon Chart of the Day May 17, 2012Raddon Chart of the Day May 17, 2012
Raddon Chart of the Day May 17, 2012
 
Scarica il PDF
Scarica il PDFScarica il PDF
Scarica il PDF
 
India Banking & Finance Industry
India Banking & Finance IndustryIndia Banking & Finance Industry
India Banking & Finance Industry
 

Plus de Symantec

Plus de Symantec (20)

Symantec Enterprise Security Products are now part of Broadcom
Symantec Enterprise Security Products are now part of BroadcomSymantec Enterprise Security Products are now part of Broadcom
Symantec Enterprise Security Products are now part of Broadcom
 
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
 
Symantec Webinar | National Cyber Security Awareness Month: Protect IT
Symantec Webinar | National Cyber Security Awareness Month: Protect ITSymantec Webinar | National Cyber Security Awareness Month: Protect IT
Symantec Webinar | National Cyber Security Awareness Month: Protect IT
 
Symantec Webinar | National Cyber Security Awareness Month: Secure IT
Symantec Webinar | National Cyber Security Awareness Month: Secure ITSymantec Webinar | National Cyber Security Awareness Month: Secure IT
Symantec Webinar | National Cyber Security Awareness Month: Secure IT
 
Symantec Webinar | National Cyber Security Awareness Month - Own IT
Symantec Webinar | National Cyber Security Awareness Month - Own ITSymantec Webinar | National Cyber Security Awareness Month - Own IT
Symantec Webinar | National Cyber Security Awareness Month - Own IT
 
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
 
Symantec Webinar | How to Detect Targeted Ransomware with MITRE ATT&CK
Symantec Webinar | How to Detect Targeted Ransomware with MITRE ATT&CKSymantec Webinar | How to Detect Targeted Ransomware with MITRE ATT&CK
Symantec Webinar | How to Detect Targeted Ransomware with MITRE ATT&CK
 
Symantec Mobile Security Webinar
Symantec Mobile Security WebinarSymantec Mobile Security Webinar
Symantec Mobile Security Webinar
 
Symantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat ReportSymantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat Report
 
Symantec Cloud Security Threat Report
Symantec Cloud Security Threat ReportSymantec Cloud Security Threat Report
Symantec Cloud Security Threat Report
 
Symantec Webinar | Security Analytics Breached! Next Generation Network Foren...
Symantec Webinar | Security Analytics Breached! Next Generation Network Foren...Symantec Webinar | Security Analytics Breached! Next Generation Network Foren...
Symantec Webinar | Security Analytics Breached! Next Generation Network Foren...
 
Symantec Webinar | Implementing a Zero Trust Framework to Secure Modern Workf...
Symantec Webinar | Implementing a Zero Trust Framework to Secure Modern Workf...Symantec Webinar | Implementing a Zero Trust Framework to Secure Modern Workf...
Symantec Webinar | Implementing a Zero Trust Framework to Secure Modern Workf...
 
Symantec Webinar | Tips for Successful CASB Projects
Symantec Webinar | Tips for Successful CASB ProjectsSymantec Webinar | Tips for Successful CASB Projects
Symantec Webinar | Tips for Successful CASB Projects
 
Symantec Webinar: What Cyber Threats Are Lurking in Your Network?
Symantec Webinar: What Cyber Threats Are Lurking in Your Network?Symantec Webinar: What Cyber Threats Are Lurking in Your Network?
Symantec Webinar: What Cyber Threats Are Lurking in Your Network?
 
Symantec Webinar: GDPR 1 Year On
Symantec Webinar: GDPR 1 Year OnSymantec Webinar: GDPR 1 Year On
Symantec Webinar: GDPR 1 Year On
 
Symantec ISTR 24 Webcast 2019
Symantec ISTR 24 Webcast 2019Symantec ISTR 24 Webcast 2019
Symantec ISTR 24 Webcast 2019
 
Symantec Best Practices for Cloud Security: Insights from the Front Lines
Symantec Best Practices for Cloud Security: Insights from the Front LinesSymantec Best Practices for Cloud Security: Insights from the Front Lines
Symantec Best Practices for Cloud Security: Insights from the Front Lines
 
Symantec - The Importance of Building Your Zero Trust Program on a Solid Plat...
Symantec - The Importance of Building Your Zero Trust Program on a Solid Plat...Symantec - The Importance of Building Your Zero Trust Program on a Solid Plat...
Symantec - The Importance of Building Your Zero Trust Program on a Solid Plat...
 
Symantec Webinar | Redefining Endpoint Security- How to Better Secure the End...
Symantec Webinar | Redefining Endpoint Security- How to Better Secure the End...Symantec Webinar | Redefining Endpoint Security- How to Better Secure the End...
Symantec Webinar | Redefining Endpoint Security- How to Better Secure the End...
 
Symantec Webinar Using Advanced Detection and MITRE ATT&CK to Cage Fancy Bear
Symantec Webinar Using Advanced Detection and MITRE ATT&CK to Cage Fancy BearSymantec Webinar Using Advanced Detection and MITRE ATT&CK to Cage Fancy Bear
Symantec Webinar Using Advanced Detection and MITRE ATT&CK to Cage Fancy Bear
 

Dernier

Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 

Dernier (20)

🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation Strategies
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Top 10 Most Downloaded Games on Play Store in 2024
Top 10 Most Downloaded Games on Play Store in 2024Top 10 Most Downloaded Games on Play Store in 2024
Top 10 Most Downloaded Games on Play Store in 2024
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 

Symantec Intelligence Report August 2012

  • 1. Symantec Intelligence Report August 2012 Symantec Intelligence 1
  • 2. About the Symantec Intelligence Report The Symantec Intelligence report provides the latest analysis of cyber security threats, trends and insights from the Symantec Intelligence team concerning malware, spam, and other potentially harmful business risks. The data used to compile the analysis for this combined report includes data from May 2011 through August 2012. Symantec Intelligence 2
  • 3. August 2011 Highlights • The state of data breaches to date in 2012 • A look at a malicious email scam that pretends to come from Symantec • A new Java zero-day vulnerability appears in the wild • An overview of the Elderwood Project • Spam – 72.3 percent (an increase of 4.7 percentage points since July) • Phishing – One in 312.9 emails identified as phishing (an increase of 0.109 percentage points since July) • Malware – One in 233.1 emails contained malware (a decrease of 0.14 percentage points since July) • Malicious Web sites – 1 website blocked per day (a decrease of 49.8 percent since July) Symantec Intelligence 3
  • 4. Data Breaches • We compared two 8-month data sets: May-December 2011 and January-August of 2012. • The average number of breaches per month was down (16.5 to 14 per month) • Average number of identities stolen per breach is down, likely due to fewer extremely large breaches, but the median is up significantly: from 4,000 to 6,800 per breach. • Hackers are responsible for most breaches, making up 40% of all breaches and 88% of all identities exposed. • The Retail industry accounts for the largest sector where identities are exposed. • Healthcare suffered the highest number of breaches so far in 2012. Symantec Intelligence 4
  • 5. Spam Rate & Sources 5 Spam Rate 83.3% Saudi Arabia 75.6% Education 73.3% 1-250 72.9% 251-500 78.1% Norway 74.3% Non-Profit 72.3% 77.6% China 77.3% Oman 74.3% Marketing/Media 74.3% Engineering 72.6% 501-1000 73.1% 1001-1500 72.5% 1501-2500 76.7% Brazil 73.7% Gov/Public Sector 72.8% 2501+ Last Month: 67.6% Six MonthAvg.: 67.2% Top 5 Geographies Top 5 Verticals By Horizontal 72.3% 2006 2007 2008 2009 2010 2011 2012 Saudi Arabia 25.7% Sources India 15.2% Turkey 5.3% Canada 4.9% United States 4.6% Brazil 4.2% Viet Nam 2.0% Russian Federation 1.4% Korea (South) 1.4% Argentina 1.3% August 2012
  • 6. 0.0% 4.5% 9.0% 11-Jul 12-Jul 13-Jul Symantec Intelligence 14-Jul 15-Jul Spam Attack Vectors 16-Jul 17-Jul 18-Jul 19-Jul 20-Jul 21-Jul 22-Jul 23-Jul Additional Spam Metrics 24-Jul NDR 25-Jul 26-Jul 27-Jul Malware 28-Jul 29-Jul 30-Jul 31-Jul 1-Aug 2-Aug 3-Aug 4-Aug 5-Aug 6-Aug 7-Aug 8-Aug 9-Aug 10-Aug 6
  • 7. Additional Spam Metrics Spam URL TLD Distribution Change TLD August July (% points) .com 64.6% 63.9% +0.7 .net 8.3% 6.9% +1.4 .ru 7.0% 8.3% -1.3 .info 3.1% N/A N/A Average Spam Message Size Change Message Size August July (% points) 0Kb – 5Kb 44.3% 47.7% -3.4 5Kb – 10Kb 30.2% 25.8% +4.4 >10Kb 25.5% 26.6% -1.1 Symantec Intelligence 7
  • 8. Spam Subject Line Analysis August 2012 No. of July 2012 No. of Rank Total Spam: Top Subject Lines Days Total Spam: Top Subject Lines Days 1 Newsletter 18 Buy Cialis and Viagra online! 15 2 Re: 31 Save-8O%-0ff-Viagra©-Cia1is©-Levitra© 30 3 Huge discount! 2 (blank subject) 30 HIGH-QUALITY-ROLEX-REPLICA- 4 30 Buy Cialis and Viagra online! 8 WATCHES&DESIGNER BAGS 5 Save-8O%-0ff-Viagra©-Cia1is©- Buy Viagra/Cialis Online! 4 Levitra© 31 We cant make it ANY EASIER toget LAID 6 21 Lowest prices! 3 tonight Enter Data Online Working From Your Home 7 30 (blank subject) 31 Computer 8 News 5 Delivery Status Notification (Failure) 30 FucBook "We can't make it ANY EASIER toget 9 11 Charter flight reservation. 3 LAID tonight!" FucBook "We can't make it ANY 10 Your credit card has been blocked 2 EASIER toget LAID tonight!" 27 Symantec Intelligence 8
  • 9. Additional Spam Metrics Global Spam Categories Category Name August 2012 July 2012 Sex/Dating 42.51% 23.46% Pharma 32.61% 12.87% Watches 8.55% 2.40% Jobs 6.85% 1.52% Software 5.86% 1.54% Casino 1.60% 0.50% 419/scam/lotto 0.76% 0.08% Degrees 0.60% 0.18% Mobile 0.48% 0.07% Weight Loss 0.11% 0.14% Newsletters 0.07% 57.22% Symantec Intelligence 9
  • 10. Phishing Rate & Sources Phishing Rate 1 in 122.6 Netherlands 1 in 83.1 Public Sector 1 in 295.8 1-250 1 in 571.0 251-500 1 in 140.3 South Africa 1 in 110.9 Finance 1 in 312.9 1 in 140.8 United Kingdom 1 in 343.6 Canada 1 in 232.5 Education 1 in 304.6 Accom/Catering 1 in 704.0 501-1000 1 in 629.0 1001-1500 1 in 1,109.9 1501-2500 1 in 464.0 Denmark 1 in 368.4 Building/Cons 1 in 232.5 2501+ Last Month: 1 in 475.3 Six MonthAvg.: 1 in 466.5 Top 5 Geographies Top 5 Verticals By Horizontal 1 in 312.9 2006 2007 2008 2009 2010 2011 2012 United States 37.3% Sources United Kingdom 28.9% New Zealand 15.9% Australia 4.8% Canada 3.9% India 3.5% Korea, Republic of 1.7% Sweden 1.0% South Africa 0.7% Hong Kong 0.3% August 2012 10
  • 11. Phishing Rate & Sources Phishing Web Sites Locations Country July* June United States 52.0% 50.0% Germany 6.0% 6.4% United Kingdom 4.1% 4.4% Canada 3.4% 2.9% Brazil 3.2% 3.7% France 2.9% 2.9% Russia 2.5% 2.9% Netherlands 2.3% 2.3% Poland 1.4% 1.4% *Note: Data lags one month Spain 1.2% 0.9% August 2012 11
  • 12. Tactics of Phishing Distribution Automated Toolkits Other Unique Domains IP Address Domains Free Web Hosting Sites Typosquatting Symantec Intelligence 12
  • 13. Organizations Spoofed in Phishing Attacks, by Industry Sector E-Commerce 39.31% Information Services 32.31% Banking 27.01% Telecommunications 0.52% Retail 0.40% Communications 0.27% Government 0.17% Insurance 0.009% ISP 0.008% Retail Trade 0.003% Security 0.001% Symantec Intelligence 13
  • 14. Virus Rate Virus Rate 1 in 107.7 Netherlands 1 in 54.0 Public Sector 1 in 251.0 1-250 1 in 283.8 251-500 1 in 115.1 United Kingdom 1 in 111.0 Education 1 in 233.1 1 in 178.3 Austria 1 in 212.0 Hungary 1 in 157.7 Accom/Catering 1 in 161.0 Finance 1 in 339.1 501-1000 1 in 262.6 1001-1500 1 in 474.1 1501-2500 1 in 276.3 Canada 1 in 200.9 Marketing/Media 1 in 188.9 2501+ Last Month: 1 in 340.9 Six MonthAvg.: 1 in 324.6 Top 5 Geographies Top 5 Verticals By Horizontal 1 in 233.1 2006 2007 2008 2009 2010 2011 2012 United Kingdom 53.2% Sources United States 23.3% Brazil 5.1% Australia 3.1% Sweden 2.4% South Africa 1.7% Japan 1.6% India 1.4% Netherlands 1.4% Hong Kong 1.3% August 2012 14
  • 15. Most Frequently Blocked Email Malware Malware Name % Malware W32/Bredolab.gen!eml.j 16.05% Exploit/Link-generic-ee68 7.44% W32/NewMalware-Generic 7.40% W32/Bredolab.gen!eml.k 6.88% W32/Bredolab.gen!eml.l 5.43% HTML/JS-Encrypted.gen 4.50% W32/BouncedNastyMail.gen.dam 2.56% W32/NewMalware-ee73 2.09% Exploit/BouncedGeneric 1.64% Exploit.DarkPath.loc 1.53% Symantec Intelligence 15
  • 16. New Malware and Spyware Sites Per Day Web Security Services Activity: New Malware Sites per Day New sites with spyware 11/day New sites with web viruses 1,088/day Total 1,099/day 2008 2009 2010 2011 2012 August 2012 Symantec Intelligence 16
  • 17. Policy, Malware & Potentially Unwanted Programs Web Security Services Activity: Policy-Based Filtering Web Viruses and Trojans Potentially Unwanted Programs Social Networking 30.2% Trojan.JS.Iframe.BPN 11.8% PUP:Generic.183433 9.3% Advertisement and Popups 30.0% Suspicious.Pythia 9.7% PUP:Clkpotato!gen3 7.4% Streaming Media 8.4% Trojan.Generic.4315639 6.8% Gen:Application.Heur 6.0% Computing and Internet 4.1% JS:Trojan.Crypt.FC 5.5% PUP:Mediafinder 4.3% Chat 4.0% Trojan.JS.Iframe.BRV 5.1% PUP:Agent.NLK 4.1% Peer-To-Peer 2.9% Gen:Trojan.Heur.PT.Ci4abmtlSyo 4.8% PUP:9231 3.8% Hosting Sites 2.7% Trojan.Maljava!gen23 3.8% PUP:Crossid 3.6% Search 1.9% Trojan.JS.Agent.GHF 2.6% PUP:Android/DroidRooter.G 3.6% News 1.6% Trojan.JS.Agent.GLM 2.4% PUP:Relevant.BH 3.6% Games 1.5% Trojan.Webkit!html 2.3% PUP:Generic.183457 3.1% August 2012 Symantec Intelligence 17
  • 18. Most Frequently Blocked Malware at the Endpoint Malware Name % Malware W32.Sality.AE 6.78% W32.Ramnit!html 5.99% W32.Ramnit.B 4.78% W32.Downadup.B 4.54% W32.Ramnit.B!inf 3.44% W32.Virut.CF 2.15% W32.Almanahe.B!inf 2.05% W32.SillyFDC.BDP!lnk 1.40% W32.Mabezat.B 1.06% W32.Virut!html 1.05% [1] For further information on these threats, please visit: http://www.symantec.com/business/security_response/landing/threats.jsp Symantec Intelligence 18
  • 19. Where to next? • Web: – www.symanteccloud.com/intelligence – www.symantec.com/spam • Twitter: – @symanteccloud Symantec Intelligence 19