IBM Sees Surge in Network Attacks Directed toward 'Critical Infrastructure Providers'; IBM Security Intelligence Services Charts 55 Percent Increase in Network Attacks in August.ARMONK, N.Y. -- Network attacks against critical infrastructure providers such as utilities, telecommunications companies and government agencies surged 55 percent from July to August, according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. IBM's Global Security Intelligence Services. Since July, IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries) has seen a 27 percent increase in overall network attacks against all monitored enterprises and businesses. Businesses are increasingly dependent on information technology and the Internet to run their daily operations. With their network infrastructures increasingly under attack, IBM, through its Global Business Security Index, helps alert these businesses in advance to the onslaught of threats to help them proactively secure their networks. The IBM Global Business Security Index -- created by IBM's global security experts -- is a monthly report that assesses, measures and analyzes global network security and business threats and attack trends. The Index is compiled by harnessing the historical and current data collected by IBM's 2700 information security professionals and half a million monitored devices to provide a picture of the IT and business threat landscape. IBM's IT security intelligence and business consulting experts analyze the vast amount of data collected by IBM network and system monitoring A System Monitor (SM) is a process within a distributed system for collecting and storing state data. There are many issues involved with designing and implementing a system monitor. sensors. The experts then rate the potential severity of known IT threats, producing a unique snapshot of the current IT security landscape. The report, which may be customized by industry, tracks real and potential IT threats to a business including: --IT network and infrastructure, including potential and real threats that could significantly damage a customer's business and reputation --Business continuity trends, statistics and recommendations for keeping employees, customers, suppliers and partners connected with critical business information during natural disasters, such as hurricanes, and widespread power failures IBM confirmed 997 Internet attacks in September directed at networks that the company monitors, representing a 27 percent increase over confirmed Internet attacks in July and August. The most prevalent attacks came from several worms, such as Sasser and Korgo, seeking to exploit a vulnerability located within LSASS LSASS Local Security Authority Subsystem Service (Microsoft) LSASS Lightweight Seismic/Acoustic Surveillance System , a security component of the Microsoft Windows See Windows. (operating system) Microsoft Windows - Microsoft's proprietary window system and user interface software released in 1985 to run on top of MS-DOS. Widely criticised for being too slow (hence "Windoze", "Microsloth Windows") on the machines available then. operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. . Critical infrastructure providers experienced an increase in worm traffic -- as did most IT environments, according to IBM's analysis. The most apparent increases, however, were caused by attackers seeking vulnerabilities in Web server software (e.g., Microsoft IIS Microsoft IIS - Internet Information Server , Apache HTTP Server The Apache HTTP Server, commonly referred to simply as Apache, is a web server notable for playing a key role in the initial growth of the World Wide Web. Apache was the first viable alternative to the Netscape Communications Corporation web server (currently known as Sun , and Netscape iPlanet). This type of reconnaissance activity typically precedes more complex, singularly directed attacks against systems that are found vulnerable. "In the fight against IT security threats, timing is everything," said Stuart McIrvine, director of IBM's security strategy. "Knowing about new threats and vulnerabilities before they become attacks and proactively taking steps to prevent harm is now more critical than ever. These days, hackers are able to reverse engineer newly published security patches and deploy an attack on an unpatched system in 48 hours. Companies that have elevated security issues from the server room to the boardroom are tapping into IBM's worldwide security expertise, intelligence and technological resources to help preempt pre·empt or pre-empt v. pre·empt·ed, pre·empt·ing, pre·empts v.tr. 1. To appropriate, seize, or take for oneself before others. See Synonyms at appropriate. 2. a. global attacks." Many Fortune 500 companies and government entities in 34 countries around the world use a variety of IBM's monitoring services, such as its Intrusion Detection See IDS and IPS. Service, Vulnerability Testing and Assessment Service, to keep abreast Verb 1. keep abreast - keep informed; "He kept up on his country's foreign policies" keep up, follow trace, follow - follow, discover, or ascertain the course of development of something; "We must follow closely the economic development is Cuba" ; "trace the of current attacks and threats around the clock. On average, IBM's monitoring services detects 100 million suspected or actual attacks against customers each month. In addition, newly-discovered IT threats, such as new vulnerabilities, malware or general risks posed to IT environments, are assigned a potential severity score from 0 to 10 in various categories. In other news, IBM today announced the appointment of Stuart McIrvine to the post of Global Security Strategy Director for IBM. He replaces Christopher O'Connor, who has moved to a new position within the IBM software division. As part of IBM's Global Security Intelligence Services, IBM offers its strategic outsourcing customers access to its Global Business Security index. The Index will be available for businesses in the near future through a new IBM Security Intelligence Services subscription based offering. About IBM IBM is the world's largest information technology company, with more than 80 years of leadership in helping businesses innovate. For more information about IBM, visit http HTTP in full HyperText Transfer Protocol Standard application-level protocol used for exchanging files on the World Wide Web. HTTP runs on top of the TCP/IP protocol. ://www.ibm.com. * Editor's note Editor's Note (foaled in 1993 in Kentucky) is an American thoroughbred Stallion racehorse. He was sired by 1992 U.S. Champion 2 YO Colt Forty Niner, who in turn was a son of Champion sire Mr. Prospector and out of the mare, Beware Of The Cat. Trained by D. : A graphic of IBM's Global Security Business Index is available. Photos of the IBM Command Center in Boulder, Colo. are available via the Associated Press Photo Network and on the Internet at Feature Photo Service's link through http://www.newscom.com. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion