IBM Report: Surge in CRIMINAL-DRIVEN CYBER ATTACKS Anticipated in 2006; IBM Global Business Security Index Report Summarizes Security Trends in 2005 and Provides Outlook for 2006.

ARMONK, N.Y. -- Today IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries) announced the contents of its 2005 Global Business Security Index Report and provided an early look at potential security threats in 2006. Based on early indicators, IBM anticipates a fundamental shift, or evolution, in cybercrime cybercrime
also known as computer crime

Any use of a computer as an instrument to further illegal ends, such as committing fraud, trafficking in child pornography and intellectual property, stealing identities, or violating privacy. from pervasive global outbreaks to smaller, stealthier attacks targeted at specific organizations for extortion extortion, in law, unlawful demanding or receiving by an officer, in his official capacity, of any property or money not legally due to him. Examples include requesting and accepting fees in excess of those allowed to him by statute or arresting a person and, with purposes.

According to according to
prep.
1. As stated or indicated by; on the authority of: according to historians.

2. In keeping with: according to instructions.

3. the report, written by IBM's Global Security Intelligence team, the global IT threat landscape spent the majority of 2005 at the medium level. While the Zotob worm gained international attention, impacting well known media organizations, there were decidedly fewer global malware (MALicious softWARE) Software designed to destroy, aggravate and otherwise make life unhappy. See crimeware, virus, worm, logic bomb, macro virus and Trojan. outbreaks than the previous year.

But that does not tell the whole story. The criminal element motivating many spam, malware and other IT attacks became apparent last year. High profile arrests of cybercriminals in the US and around the world pointed to individuals linked to organized crime and motivated to make money. With software and networks becoming increasingly more secure, it is anticipated that many of these criminals may target the most vulnerable access point within a company or organization - its personnel - to execute an attack.

"The decrease in pervasive attacks in 2005 is counter-intuitive to what society at large believes is a major threat to their personal data," said Cal Slemp, vice president of IBM's security and privacy services. "IBM believes that the environment has shifted - with increased security protection on most systems and stiffer penalties, we are seeing organized, committed, and tenacious te·na·cious
adj.
1. Clinging to another object or surface; adhesive.

2. Holding together firmly; cohesive.

tenacious

viscid; adhesive. profiteers enter this space. This means that attacks will be more targeted and potentially damaging. Organizations around the world - from the public and private sectors - must move quickly and work together to address this growing challenge."

IBM's Global Business Security Index report includes an early view of other potential trends in 2006, such as the following:

--Insider Attacks - As software becomes more secure, computer users will continue to be the weak link for companies and organizations. Criminals will focus their efforts on convincing end users to execute the attack instead of wasting time in lengthy software vulnerability discovery. Global resource, employee layoffs, mergers and acquisitions all present challenges for companies and organizations attempting to educate users against these threats.

--Emerging Markets - Cyber criminals take advantage of poor international cooperation against cyber-crime and launch cross border attacks with little personal risk, so the threat to and from emerging and developing countries is therefore increasing. It then becomes far more difficult to trace the attacks back to their source, especially when trends show attacks are increasingly originating from regions, such as Eastern Europe Eastern Europe

The countries of eastern Europe, especially those that were allied with the USSR in the Warsaw Pact, which was established in 1955 and dissolved in 1991. and Asia, where sanctions are more lenient le·ni·ent
adj.
Inclined not to be harsh or strict; merciful, generous, or indulgent: lenient parents; lenient rules. and enforcement is limited.

--Blogging - The increased use of collaboration tools A collaboration tool is something that helps people collaborate. The term is often used to mean collaborative software, but collaboration tools were being used before computers existed, a piece of paper can for example can be used as collaboration tool. , such as blogging, also increases the possibility of leakage of confidential business data.

--Instant Messaging - Botnets, a collection of software robots that allow a system to be controlled without the owner's knowledge, will continue to represent one of the biggest threats to the Internet. Newer botnets, which will have smaller cells to better hide, will likely move to instant messaging Exchanging text messages in real time between two or more people logged into a particular instant messaging (IM) service. Instant messaging is more interactive than e-mail because messages are sent immediately, whereas e-mail messages can be queued up in a mail server for seconds or and other peer-to-peer networks (1) A network of computers configured to allow certain files and folders to be shared with everyone or with selected users. Peer-to-peer networks are quite common in small offices that do not use a dedicated file server. for command and control of infected systems.

--Mobile Devices - Malware affecting mobile phones, PDAs and other wireless devices increased substantially in the last year, but has not yet materialized into pervasive outbreaks since they cannot spread on their own - yet. Therefore, this trend continues to be on the radar for 2006.

The following assessments regarding 2005 are discussed in the report:

--Targeted Email Attacks - In 2005, approximately two to three targeted email attacks were intercepted each week. This number was almost negligible in 2004, marking a shift in the nature and purpose of the attacks. These attacks, which are often financially, competitively, politically or socially motivated, were often directed at government departments, military organizations and other large organizations, particularly in the aerospace, petroleum, legal, and human rights fields. Several high profile cases hit the headlines in 2005 but it is believed many more attacks go undetected by businesses.

--Spear Phishing Pronounced "fishing," it is a scam to steal valuable information such as credit card and social security numbers, user IDs and passwords. Also known as "brand spoofing," an official-looking e-mail is sent to potential victims pretending to be from their ISP, bank or retail establishment. - As more targeted attacks became popular in 2005 so did "spear" phishing, where criminals bombard bom·bard
tr.v. bom·bard·ed, bom·bard·ing, bom·bards
1. To attack with bombs, shells, or missiles.

2. To assail persistently, as with requests. See Synonyms at attack, barrage².

3. businesses with highly targeted spam that appears as though it has originated from inside the organization, typically from the IT or HR departments. Often, the perpetrator A term commonly used by law enforcement officers to designate a person who actually commits a crime. will offer a small reward in return for information and individuals who are duped into thinking the emails are legitimate often comply. They unwittingly reveal information that will enable the criminal to access restricted areas of the corporate network which can result in the theft of intellectual property and other sensitive corporate data. Spear phishing See phishing. as a social engineering technique in itself has also been used to bait people into opening malware.

--Viruses - Overall, viruses delivered via email were on the decline in 2005. One in every 36.15 emails, or 2.8 percent, contained a virus or trojan. This number declined significantly from the 2004 level of 6.1 percent, or one in every 16.39 emails.

--Phishing - Phishing continued to be a major threat in 2005. In 2005, phishing represented an average of one in every 304 emails, compared to one in every 943 in 2004. It is believed that the rise in phishing activity has been due to the increased use of botnets being used to pump out massive volumes of scam (SCSI Configured AutoMatically) A subset of Plug and Play that allows SCSI IDs to be changed by software rather than by flipping switches or changing jumpers. Both the SCSI host adapter and peripheral must support SCAM. See SCSI. emails, as cyber-criminals look to increase their profits through more aggressive targeting.

--Malware Ingenuity - In 2005, there was a rise in blended and increasingly complex threats with the integration of bot (1) (roBOT) A program used on the Internet that performs a repetitive function such as posting a message to multiple newsgroups or searching for information or news. Bots are used to provide comparison shopping. Bots also keep a channel open on the Internet Relay Chat (IRC). capabilities into existing malware. Such an example was Mytob, which was based on the Mydoom worm but added bot capability and a number of other "enhancements" to make for a much more dangerous piece of malicious software. And, in short term, multiple variants of Mytob appeared.

The IBM Global Business Security Index Report is a monthly report that assesses, measures and analyzes potential network security threats based on the data and information collected by IBM's 3,000 worldwide information security professionals, thousands of monitored devices and strategic security business partners. For more information, please visit http://www-1.ibm.com/services/us/index.wss/offering/bcrs/a1008776.

About IBM

IBM is the world's largest information technology company, with 80 years of leadership in helping businesses innovate. Drawing on resources from across IBM and key IBM Business Partners, IBM offers a wide range of services, solutions and technologies that enable customers, large and small, to take full advantage of the new era of on demand business. For more information about IBM, visit http://www.ibm.com.

COPYRIGHT 2006 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Business Wire
Date:	Jan 23, 2006
Words:	1076
Previous Article:	PMI Announces Anthony Cuellar Joins Company as a National Accounts Vice President.
Next Article:	UPEK(R), Inc. Elects Ray Bingham to Its Board of Directors.
Topics:	Computer crimes Reports Computer industry Forecasts and trends Computer viruses Reports

Related Articles
Government failing at information, computer security.
Sophos Security report reveals Trojan domination in first half of 2006.
Websense report shows malicious code is more covert, less recognizable and more targeted toward financial gain.
Computers, networks and theft.
Security news and products; avanquest UK launches PC-Cillin from Trend-Micro.
Security news and products; 2006: the year spam raised its game and threats got personal.
Drive-by hacking on the rise?
New Sophos security report.
Internet Security Systems report.
Internet criminals change tactics.