A report from security experts TippingPoint, SANS Institute and Qualys highlights the most significant information security attacks over the last six months, as well as the vulnerabilities these attacks exploit and how they can harm businesses.
The report, featuring attack data from TippingPoint intrusion prevention systems protecting 6,000 organizations, vulnerability data from 9,000,000 systems compiled by Qualys, and additional analysis and tutorial by the Internet Storm Center and key SANS faculty members, shows that many businesses are still extremely vulnerable to security attacks that can damage brand reputations and business operations. It helps businesses to review their defenses and ensure networks are up to date and able to quickly respond to today’s emerging attacks.
Security attacks are growing in quantity and frequency, as well as becoming more damaging to business operations. With so many different types of security attacks targeting the enterprise, it is becoming difficult for organizations to see which threats pose the greatest risk. This report uses current data from appliances and software in thousands of targeted organizations to provide an accurate view of the attacks and the vulnerabilities they exploit.
Key concerns include:
- Client-side software remains unpatched.
- Internet-facing web sites that are vulnerable.
- Operating systems continue to have fewer remotely-exploitable vulnerabilities that lead to massive Internet worms.
- Rising numbers of zero-day vulnerabilities