Cisco 2008 Annual Security Report
Major Findings
- Spam accounts, 200B messages/day, 90% of email traffic
- Overall disclosed vulnerabilities grew by 11.5 percent over 2007
- Vulnerabilities in virtualization products tripled to 103 in 2008 from 35 in 2007
- In 2008, 90% growth in threats from legitimate domains; nearly double that in 2007
- Spam due to email reputation hijacking from top 3 webmail providers under 1% of all spam, but 7.6% of all these providers' mail
Spam by Originating Country
USA 17.2%
Turkey 9.2%
Russia 8.0%
Canada 4.7%
Brazil 4.1%
India 3.5%
Poland 3.4%
Korea 3.3%
Germany 2.9%
UK 2.9%
Thailand 2.8%
Spain 2.8%
Italy 2.4%
Argentina 2.1%
Columbia 2.1%
France 2.0%
Other 26.7%
(How about Japan?)
Vulnerability and Threat Categories for 2008
01 buffer overflow
02 denial of service
03 arbitrary code execution
04 cross-site scripting
05 privilege escalation
06 information disclosure
07 software fault
08 directory traversal
09 backdoor trojan
10 unauthorized access
11 spoofing
12 format string
13 worm
14 security solution weakness
(01+02+03+04+05 account for 75% of the vulnerabilities)
Popular Methods of Compromising Legitimate Websites
- embed exploits
- SQL injection
- Cross-site scripting
- Cross-site request forgery (CSRF or XSRF)
Standardized Security Page
- http://www.cisco.com/security
- http://www.microsoft.com/security
- http://www.adobe.com/security
- http://www.yahoo.com/security
- http://www.facebook.com/security
Key Recommendations Checklist
1 Stay focused
2 Stop users from inadvertently downloading malware onto the network
3 Patch known vulnerabilites
4 Prevent data loss
5 Take insider threats seriously
6 Remember the network
7 Think beyond compliance
8 Make security simpler
Top Trends to Expect in 2009
1 Smaller, More Frequent, Targeted Attacks
2 Cross-Protocol Attacks
3 Reputation Hijacking
4 Mobility, Remote Working, and New Tools as Risk Factors
*************
Cisco 2008 Annual Security Report
https://www.cisco.com/offer/email/17986/1/Cisco2008Annual_Security_Report.pdf
Major Findings
- Spam accounts, 200B messages/day, 90% of email traffic
- Overall disclosed vulnerabilities grew by 11.5 percent over 2007
- Vulnerabilities in virtualization products tripled to 103 in 2008 from 35 in 2007
- In 2008, 90% growth in threats from legitimate domains; nearly double that in 2007
- Spam due to email reputation hijacking from top 3 webmail providers under 1% of all spam, but 7.6% of all these providers' mail
Spam by Originating Country
USA 17.2%
Turkey 9.2%
Russia 8.0%
Canada 4.7%
Brazil 4.1%
India 3.5%
Poland 3.4%
Korea 3.3%
Germany 2.9%
UK 2.9%
Thailand 2.8%
Spain 2.8%
Italy 2.4%
Argentina 2.1%
Columbia 2.1%
France 2.0%
Other 26.7%
(How about Japan?)
Vulnerability and Threat Categories for 2008
01 buffer overflow
02 denial of service
03 arbitrary code execution
04 cross-site scripting
05 privilege escalation
06 information disclosure
07 software fault
08 directory traversal
09 backdoor trojan
10 unauthorized access
11 spoofing
12 format string
13 worm
14 security solution weakness
(01+02+03+04+05 account for 75% of the vulnerabilities)
Popular Methods of Compromising Legitimate Websites
- embed exploits
- SQL injection
- Cross-site scripting
- Cross-site request forgery (CSRF or XSRF)
Standardized Security Page
- http://www.cisco.com/security
- http://www.microsoft.com/security
- http://www.adobe.com/security
- http://www.yahoo.com/security
- http://www.facebook.com/security
Key Recommendations Checklist
1 Stay focused
2 Stop users from inadvertently downloading malware onto the network
3 Patch known vulnerabilites
4 Prevent data loss
5 Take insider threats seriously
6 Remember the network
7 Think beyond compliance
8 Make security simpler
Top Trends to Expect in 2009
1 Smaller, More Frequent, Targeted Attacks
2 Cross-Protocol Attacks
3 Reputation Hijacking
4 Mobility, Remote Working, and New Tools as Risk Factors
*************
Cisco 2008 Annual Security Report
https://www.cisco.com/offer/email/17986/1/Cisco2008Annual_Security_Report.pdf
