Commtouch April 2011 Internet Threats Trend report

•Transferir como PPTX, PDF•

0 gostou•388 visualizações

The Commtouch Quarterly Trends Threat Report provides insight on the latest spam, malware, phishing schemes and other web security threats. The April 2011 edition provides analysis of Internet security threats that occurred during the first quarter of 2011.

Tecnologia

Internet Threats Trend Report April 2011

April 2011 Threat Report The following is a condensed version of the April 2011 Commtouch Internet Threats Trend Report Download the complete report atwww.commtouch.com/threat-report Copyright© 2011 Commtouch Software Ltd. Recurrent Pattern Detection, RPD, Zero-Hour and GlobalView are trademarks, and Commtouch, Authentium, Command Antivirus and Command Anti-malware are registered trademarks, of Commtouch. U.S. Patent No. 6,330,590 is owned by Commtouch.

April 2011 Threat Report 1 Key Highlights 2 Feature The ups & downs of Spam in Q1 3 Malware, Compromised Websites,Spam and Web 2.0 Trends

Key Security Highlights Average daily spam/phishing emails sent 149 billion Average daily spam was up in Q1

Key Security Highlights Zombie daily turnover 258,000 Zombies Number of zombies turned off and on each day went down in Q1

Key Security Highlights Most popular blog topic onuser generated content sites Streaming media/downloads

Key Security Highlights Most popular spam topic Pharmacy ads (28% of spam) While it was the most popular spam topic,it was down to only 28% of all spam

Key Security Highlights Country with the most Zombies India (17%) India remains atop the list but with just 17%

Key Security Highlights Website category most likely to be compromised with malware Parked Domains Parked Domains took over the top spotin categories likely to be compromised

Around Jan 10, 2011, spam shot up 45% (compared to previous two weeks) to pre-Christmas levels

The increase was attributed to the resumption of activity by the Rustockbotnet – primarily sending out pharmaceutical spam

February averages 165 billion spam emails/day (in comparison, Oct 2010 has 162 billion per day),[object Object]

Result – dramatic 30% decrease in spam rates, Spam Levels, December 2010 - March 2011 Source: Commtouch

Large malware outbreak at the end of March results in large-scale recruitment of new zombies – more than doubling the daily turnoverNewly Activated Zombies, January - March 2011 Source: Commtouch

Web-based methods have become more common as illustrated by several of the attacks described in this report

March Outbreak changed this – very high levels of emails with attached malware

At its peak accounted for over 30% of all email received

Sudden increase amounted to a 400% difference compared to the running average (see graph below),[object Object]

Malware Trends ,[object Object],Source: Commtouch ,[object Object]

Later variations of the outbreak changed subjects to indicate DHL deliveries,[object Object]

One possible theory is the rebuilding of a botnet or new botnet after the takedown of Rustock

Rustock takedown resulted in a 30% drop in spam,[object Object]

Attached file contains JavaScript targeting vulnerabilities in PDF readers not running latest patches

After PC exploited, the malware fetches other malware from the InternetSource: Commtouch

Malware Trends Other Malware in Q1 targeted Figure below shows the flow of attack

Malware Trends Read all the details in the complete April 2011 threat report at www.commtouch.com/threat-report Other major malware attacks in Q1 2011: ,[object Object]

T-Online used for fake AV,[object Object]

Other trends in Q1 2011… Compromised Websites

Compromised Websites Analysis of Web sites most likely to be compromised with malware or phishing ,[object Object]

For both these types of sites, the hosting of malware may well be part of the design of such sites,[object Object]

Compromised Websites Trends in Compromised Websites ,[object Object]

Forum domains most likely whitelisted by many URL filtering or anti-spam engines preventing these sites and associated spam emails from being blocked,[object Object]

Mais conteúdo relacionado

Mais de Cyren, Inc

Webinar: A deep dive on phishing, today's #1 business threat

Cyren, Inc

Webinar: Botnets - The clone army of cybercrime

Cyren, Inc

Webinar: How hackers are making your security obsolete

Cyren, Inc

Webinar: 10 steps you can take to protect your business from phishing attacks

Cyren, Inc

Webinar: Cloud-Based Web Security as First/Last Line of Defense

Cyren, Inc

Webinar: Insights from CYREN's 2015-Q3 Cyber Threat Report

Cyren, Inc

An informative webinar to dispel some of the myths about cloud security, including: * Cloud-based security is more vulnerable than traditional appliance-based security * Physical control of data and security hardware always means better security *Cloud security is “one size fits none” *Cloud security is difficult to implement and manage *Shifting your security to the cloud means you lose control

Webinar: Dispelling the Myths about Cloud Security

Cyren, Inc

Webinar: Insights from CYREN's 2015 Q2 Cyber Threats Report

Cyren, Inc

Webinar: CYREN WebSecurity for Healthcare

Cyren, Inc

Webinar: CYREN WebSecurity for Enterprise

Cyren, Inc

Webinar: Insights from CYREN's Q1 2015 Cyber Threats Trend Report

Cyren, Inc

By 2020, more than 25 billion devices will have extensive Internet capabilities. These range from your refrigerator and other consumer electronics and our connected cars. Along the way there are several challenges to overcome in providing a secure platform for our Internet of things, among them the limited performance and memory of the device, the ever increasing volume of data and rising demand of users within given standards. The detection of cyberthreats in real time and prevention of dynamic attacks as they occur will be essential for the success of the Internet of Things.

CeBIT 2015 Presentation

Cyren, Inc

Webinar: Insights from CYREN's 2015 Cyber Threats Yearbook

Cyren, Inc

Webinar: That's the Way the Network Perimeter Crumbles - Cybersecurity for th...

Cyren, Inc

Webinar: Can a Light Bulb Really Pose a Security Threat? A Practical Look at ...

Cyren, Inc

CYREN Investor Presentation - January, 2015

Cyren, Inc

Webinar: Is There A Blind Spot In Your Cyberthreat Vision?

Cyren, Inc

Webinar: Insights from CYREN's Q3 trend report

Cyren, Inc

Dual Detection Engines - Using Layered Security to Battle Cybercrime

Cyren, Inc

How to Launch a Web Security Service in an Hour

Cyren, Inc

Mais de Cyren, Inc (20)

Webinar: A deep dive on phishing, today's #1 business threat

Webinar: Botnets - The clone army of cybercrime

Webinar: How hackers are making your security obsolete

Webinar: 10 steps you can take to protect your business from phishing attacks

Webinar: Cloud-Based Web Security as First/Last Line of Defense

Webinar: Insights from CYREN's 2015-Q3 Cyber Threat Report

Webinar: Dispelling the Myths about Cloud Security

Webinar: Insights from CYREN's 2015 Q2 Cyber Threats Report

Webinar: CYREN WebSecurity for Healthcare

Webinar: CYREN WebSecurity for Enterprise

Webinar: Insights from CYREN's Q1 2015 Cyber Threats Trend Report

CeBIT 2015 Presentation

Webinar: Insights from CYREN's 2015 Cyber Threats Yearbook

Webinar: That's the Way the Network Perimeter Crumbles - Cybersecurity for th...

Webinar: Can a Light Bulb Really Pose a Security Threat? A Practical Look at ...

CYREN Investor Presentation - January, 2015

Webinar: Is There A Blind Spot In Your Cyberthreat Vision?

Webinar: Insights from CYREN's Q3 trend report

Dual Detection Engines - Using Layered Security to Battle Cybercrime

How to Launch a Web Security Service in an Hour

Último

GenCyber Cyber Security Day Presentation

Michael W. Hawkins

BooK Now Call us at +918448380779 to hire a gorgeous and seductive call girl for sex. Take a Delhi Escort Service. The help of our escort agency is mostly meant for men who want sexual Indian Escorts In Delhi NCR. It should be noted that any impersonator will get 100 attention from our Young Girls Escorts in Delhi. They will assume the position of reliable allies. VIP Call Girl With Original Photos Book Tonight +918448380779 Our Cheap Price 1 Hour not available 2 Hours 5000 Full Night 8000 TAG: Call Girls in Delhi, Noida, Gurgaon, Ghaziabad, Connaught Place, Greater Kailash Delhi, Lajpat Nagar Delhi, Mayur Vihar Delhi, Chanakyapuri Delhi, New Friends Colony Delhi, Majnu Ka Tilla, Karol Bagh, Malviya Nagar, Saket, Khan Market, Noida Sector 18, Noida Sector 76, Noida Sector 51, Gurgaon Mg Road, Iffco Chowk Gurgaon, Rajiv Chowk Gurgaon All Delhi Ncr Free Home Deliver

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men

Delhi Call girls

Handwritten Text Recognition for manuscripts and early printed texts

Maria Levchenko

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Histor y of HAM Radio presentation slide

vu2urc

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

The Raspberry Pi 5 was announced on October 2023. This new version of the popular embedded device comes with a new iteration of Broadcom’s VideoCore GPU platform, and was released with a fully open source driver stack, developed by Igalia. The presentation will discuss some of the major changes required to support this new Video Core iteration, the challenges we faced in the process and the solutions we provided in order to deliver conformant OpenGL ES and Vulkan drivers. The talk will also cover the next steps for the open source Raspberry Pi 5 graphics stack. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://eoss24.sched.com/event/1aBEx

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...

Igalia

Presentation on how to chat with PDF using ChatGPT code interpreter

naman860154

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

CNv6 Instructor Chapter 6 Quality of Service

giselly40

[2024]Digital Global Overview Report 2024 Meltwater.pdf

hans926745

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

What is a good lead in your organisation? Which leads are priority? What happens to leads? When sales and marketing give different answers to these questions, or perhaps aren't sure of the answers at all, frustrations build and opportunities are left on the table. Join us for an illuminating session with Cian McLoughlin, HubSpot Principal Customer Success Manager, as we look at that crucial piece of the customer journey in which leads are transferred from marketing to sales.

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

HampshireHUG

In an era where artificial intelligence (AI) stands at the forefront of business innovation, Information Architecture (IA) is at the core of functionality. See “There’s No AI Without IA” – (from 2016 but even more relevant today) Understanding and leveraging how Information Architecture (IA) supports AI synergies between knowledge engineering and prompt engineering is critical for senior leaders looking to successfully deploy AI for internal and externally facing knowledge processes. This webinar be a high-level overview of the methodologies that can elevate AI-driven knowledge processes supporting both employees and customers. Core Insights Include: Strategic Knowledge Engineering: Delve into how structuring AI's knowledge base is required to prevent hallucinations, enable contextual retrieval of accurate information. This will include discussion of gold standard libraries of use cases support testing various LLMs and structures and configurations of knowledge base. Precision in Prompt Engineering: Learn the art of crafting prompts that direct AI to deliver targeted, relevant responses, thereby optimizing customer experiences and business outcomes. Unified Approach for Enhanced AI Performance: Explore the intersection of knowledge and prompt engineering to develop AI systems that are not only more responsive but also aligned with overarching business strategies. Guiding Principles for Implementation: Equip yourself with best practices, ethical guidelines, and strategic considerations for embedding these technologies into your business ecosystem effectively. This webinar is designed to empower business and technology leaders with the knowledge to harness the full potential of AI, ensuring their organizations not only keep pace with digital transformation but lead the charge. Join us to map a roadmap to fully leverage Information Architecture (IA) and AI chart a course towards a future where AI is a key pillar of strategic innovation and business success.

EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx

Earley Information Science

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Commtouch April 2011 Internet Threats Trend report

1. Internet Threats Trend Report April 2011

2. April 2011 Threat Report The following is a condensed version of the April 2011 Commtouch Internet Threats Trend Report Download the complete report atwww.commtouch.com/threat-report Copyright© 2011 Commtouch Software Ltd. Recurrent Pattern Detection, RPD, Zero-Hour and GlobalView are trademarks, and Commtouch, Authentium, Command Antivirus and Command Anti-malware are registered trademarks, of Commtouch. U.S. Patent No. 6,330,590 is owned by Commtouch.

3. April 2011 Threat Report 1 Key Highlights 2 Feature The ups & downs of Spam in Q1 3 Malware, Compromised Websites,Spam and Web 2.0 Trends

4. Key Highlights

5. Key Security Highlights Average daily spam/phishing emails sent 149 billion Average daily spam was up in Q1

6. Key Security Highlights Zombie daily turnover 258,000 Zombies Number of zombies turned off and on each day went down in Q1

7. Key Security Highlights Most popular blog topic onuser generated content sites Streaming media/downloads

8. Key Security Highlights Most popular spam topic Pharmacy ads (28% of spam) While it was the most popular spam topic,it was down to only 28% of all spam

9. Key Security Highlights Country with the most Zombies India (17%) India remains atop the list but with just 17%

10. Key Security Highlights Website category most likely to be compromised with malware Parked Domains Parked Domains took over the top spotin categories likely to be compromised

11. Feature… The ups & downs of spam in Q1

12.

13. Around Jan 10, 2011, spam shot up 45% (compared to previous two weeks) to pre-Christmas levels

14. The increase was attributed to the resumption of activity by the Rustockbotnet – primarily sending out pharmaceutical spam

15. Spam stabilizes in middle of quarter

16.

17. Result – dramatic 30% decrease in spam rates, Spam Levels, December 2010 - March 2011 Source: Commtouch

18.

19. Large malware outbreak at the end of March results in large-scale recruitment of new zombies – more than doubling the daily turnoverNewly Activated Zombies, January - March 2011 Source: Commtouch

20. Other trends in Q1 2011… Malware

21.

22. Web-based methods have become more common as illustrated by several of the attacks described in this report

23. March Outbreak changed this – very high levels of emails with attached malware

24. At its peak accounted for over 30% of all email received

25.

26.

27.

28. One possible theory is the rebuilding of a botnet or new botnet after the takedown of Rustock

29.

30. Attached file contains JavaScript targeting vulnerabilities in PDF readers not running latest patches

31. After PC exploited, the malware fetches other malware from the InternetSource: Commtouch

32. Malware Trends Other Malware in Q1 targeted Figure below shows the flow of attack

33.

34.

35. Other trends in Q1 2011… Compromised Websites

36.

37.

38.

39. Benefits for the spammer

40. Provides FREE hosting

41.

42.

43. Cuts costs

44.

45.

46. Dropped to 28% of all spam

47. Down from 42% in Q4 2010

48. 419 fraud, enhancements, and dating all increased Source: Commtouch

49. Spam Trends Spam Sending Domains Commtouch monitors domains used by spammers in the “from” field of the spam emails, typically faked in order to give the impression of a reputable, genuine source.

50.

51. 17th place – dhl.comUsed in the later stages of the March outbreak

52. 40th place – postmaster.twitter.comUsed extensively throughout Q1 to distribute fake Twitter notifications with links to pharmacy sitesSource: Commtouch

53.

54. Brazil returned to second place with 12% after drop in last quarter

55. Russia dropped 3% to 7%

56. Vietnam moved into 3rd place

57.

58. Web 2.0 Trends Web 2.0 Trends Commtouch’s GlobalView Network tracks billions of Web browsing sessions and URL requests, and its URL Filtering service includes highly granular categorization of Web 2.0 content. In addition to filtering accuracy, this provides insight into the most popular user generated content sites.

59. Web 2.0 Trends Most Popular User Generated Content Sites Includes sites with live or archived media for download or streaming content, such as Internet radio, Internet TV or MP3 files These blogs typically cover television, movies, and music as well as hosting celebrity fan sites and entertainment news Source: Commtouch

60. Review of Q1 2011

61. Review of Q1 2011 Source: Commtouch

62. Download the complete April 2011 Internet Threats Trend Reportatwww.commtouch.com/threat-report

63. For more information contact: info@commtouch.com 650 864 2000 (Americas) +972 9 863 6888 (International) Web: www.commtouch.com Blog: http://blog.commtouch.com

Commtouch April 2011 Internet Threats Trend report

Recomendados

Recomendados

Mais conteúdo relacionado

Mais de Cyren, Inc

Mais de Cyren, Inc (20)

Último

Último (20)

Commtouch April 2011 Internet Threats Trend report