Whether attackers want to commit information theft and fraud, disrupt your business operations or simply prove a point, they have many ways to do damage:
- Destroying files and applications via a virus, Trojan Horse, worm or other malicious code.
- Gaining access to your systems and network by cracking or stealing passwords, eavesdropping electronically, or manipulating networking protocols.
- Shutting down your Web site through a denial of service attack.
- Impersonating a trusted system (spoofing) or a user (e-mail hacking or identify theft).
|
|
The San Francisco FBI Computer Intrusion Squad recently conducted the "Computer Crime and Security Survey" for 2002.4 The list below reflects results from 503 corporations, government agencies, financial institutions, medical institutions and universities:
- 99% (primarily large corporations and government agencies) detected computer security breaches within the last 12 months.
- 80% acknowledged financial losses due to computer breaches.
- 44% (233 respondents) reported $455,848,000 in financial losses.
- 44% detected system penetration from the outside.
- 44% detected denial of service attacks.
- 85% detected computer viruses.
- 98% of respondents have WWW sites.
- 52% conduct electronic commerce on their sites.
Organizations that track security breaches say enterprise attacks are rising sharply. The CERT* Coordination Center reports 52,658 incidents in 2001, up nearly 250% from the 21,756 in 2000 - and each incident may affect one site or thousands.
|
|
