News
Channel Meets Sydney
Impact Awards
Pipeline 2025
MSP Index
Reports
Events
Resources
Advertise

Business Managed IT Services Cloud

Collaboration Data Centre Digital

Distribution Hardware Mobility

Networking Printing Security

Servers & Storage Services Storage

Telco

End of support for Windows 10 State of AI 2024 Public Sector Tech Report

State of data State of Security 2024 State of the MSP 2024

Kickstarter 2024 Cloud Covered State of Diversity

State of Sustainability 2023

Channel Leaders Golf Day Benchmark Security Awards MSP Index Roadshow

Channel Meets 2025 Pipeline 2025 Impact Awards

Fast50

Photos Focal Points Partner Content

Partner Hubs Partner Stories Media Hub

Boardroom Impact Whitepapers

News

Business Managed IT Services Cloud Collaboration Data Centre Digital Distribution Hardware Mobility Networking Printing Security Servers & Storage Services Storage Telco

Channel Meets Sydney Impact Awards Pipeline 2025 MSP Index Reports

End of support for Windows 10 State of AI 2024 Public Sector Tech Report State of data State of Security 2024 State of the MSP 2024 Kickstarter 2024 Cloud Covered State of Diversity State of Sustainability 2023

Events

Channel Leaders Golf Day Benchmark Security Awards MSP Index Roadshow Channel Meets 2025 Pipeline 2025 Impact Awards Fast50

Resources

Photos Focal Points Partner Content Partner Hubs Partner Stories Media Hub Boardroom Impact Whitepapers

Advertise

Log in

Email:

Password:

Remember me | Forgot password?

Don't have an account? Register now!

Home
Galleries
Services

Top 5 hacking attacks

Are you vulnerable?

By Robert Westervelt on Mar 21 2013, 2:20PM

0 Comments

1 of 6

Controlling Skyrocketing Security Costs An analysis of security threats in 2012 conducted by managed security services provider Solutionary found dozens of common costly security weaknesses plaguing large and small organisations. DDoS attacks can cost a firm more than $6,000 an hour, said Don Gray, chief security strategist of the firm. Malware infections can cost $US3,000 ($A2895) a day, Gray said. Having the right controls in place and being able to appropriately execute a response plan can help control the costs, he said. Here's a look at five of the most common security threats Solutionary found, as well as advice on how to reduce security costs.

Costly Web Application Attacks Web application vulnerabilities continue to be a serious problem. Retailers accounted for the bulk of attacks on Web applications, according to Solutionary, which said cybercriminals are very likely trying to access the databases containing credit card data. A SQL injection attack against a company's custom application source code repository proved extremely costly, according to the study. Identifying, responding to, and investigating the incident cost the firm more than $US26,000 ($A25901), Solutionary said. Improved software security processes, robust monitoring and verbosity of logs can help reduce the costs.

DDoS Attacks Masking Larger Problem Solutionary said it found 75 percent of distributed denial-of-service (DDoS) attacks targeted SSL protected components of Web applications in 2012. This kind of attack, which is slightly more sophisticated than a traditional TCP/UDP-based DDoS attack, is harder to block, the firm said. A 10.5 hour attack on one financial services firm exceeded $US65,000 ($A62729) to identify, respond and investigate the incident, Solutionary said. A DDoS attack can also be used as a tool to throw off security teams to the real problem. In some cases, DDoS was used to distract attention from a fraudulent wire transfer, Solutionary said

BYOD Problems Puzzling Some Firms Firms that lack a policy on BYOD or fail to have mechanisms in place to effectively enforce BYOD restrictions, can eventually plan to have costly expenses add up, Solutionary said. One organization faced a serious problem when an attacker attempted to blackmail a senior partner by targeting the personal laptop he was using to connect to the corporate network. The firm lacked a BYOD policy. Solutionary said that the company spent an estimated $US165,000 ($A159000) in lost productivity, log monitoring and the addition of defensive controls to mitigate the problem as well as security consulting and analysis during the incident.

Automated Toolkits Targeting Older Flaws Automated attack toolkits remove the skill level needed to carry out attacks, enabling lesser-skilled cybercriminals to set up attack platforms to spread malware and steal data. The report found that an unpatched Java vulnerability cost one firm close to $US95,000 ($A91600) for mitigation, lost productivity, additional monitoring, defensive controls and analysis during the incident. The Solutionary analysis found that 81 percent of the exploits identified in attacker exploit kits in 2012 were related to vulnerabilities cataloged in 2011 or earlier. The finding highlights the need for a robust patch management program at organizations.

China Attacks Targeting Intellectual Property Intellectual property theft, driven by attacks believed to have originated from China, continue to be a serious and growing threat. Over 90 percent of all attacks from China were directed at the business services, technology and financial verticals, according to Solutionary. Attacks on business services are typically used to leverage their infrastructure to distribute malware, the firm said. Product manufacturers are also a high-value target. Cybercriminals increasingly monetize IP theft by using the information to create pirated products, costing some firms millions in lost revenue

Tags:

5 attacks hacking top vulnerability weakness

NinjaOne completes acquisition of Dropsuite

Microsoft tests Windows Update with third-party apps included

Bitdefender enhances channel program for resellers and MSPs

Partner Content

Tech For Good program gives purpose and strong business outcomes

Ingram Micro Ushers in the Age of Ultra

How NinjaOne Is Supporting The Channel As It Builds An Innovative Global Partner Program

Build cybersecurity capability with award winning Fortinet training from Ingram Micro

Secure, integrated platforms enable MSPs to focus bringing powerful solutions to customers

Events

techpartner.news MSP index - Brisbane

techpartner.news Channel Leader List / Golf day

techpartner.news Pipeline Conference 2025

Integrate Expo 2025

Security Exhibition & Conference 2025

Most popular tech stories

Westpac hires CBA's data chief to lead AI, data and digital

ANZ explores agentic AI opportunities

Westpac pilots AI to analyse inbound call content

BHP sets sights on enterprise-wide AI transformation

BHP sets up AI hub in Singapore
Telstra to move away from 'best effort' connectivity, let users tweak attributes

Westpac hires CBA's data chief to lead AI, data and digital

Telstra addresses external antenna claims by Vodafone

Transport for NSW restructures tech division

In Pictures: Abnormal AI and AUSCERT security roundtable
Blackberry celebrates "giant step forward"

Photos: The 2024 IoT Awards winners

Perth IoT vendor Digital Matter names new chief executive

Photos: Australian industry explores data for net zero

How IBM aims to protect food supplies using IoT, blockchain and agritech

OTHER TECH SITES: Digital Nation | IoT Hub | iTnews

All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.

Log in

Don't have an account? Register now!

Email:

Password:

Remember me | Forgot your password?

Top 5 hacking attacks

Are you vulnerable?

Related articles

NinjaOne completes acquisition of Dropsuite

Microsoft tests Windows Update with third-party apps included

Bitdefender enhances channel program for resellers and MSPs

Most popular tech stories

Westpac hires CBA's data chief to lead AI, data and digital

ANZ explores agentic AI opportunities

Westpac pilots AI to analyse inbound call content

BHP sets sights on enterprise-wide AI transformation

BHP sets up AI hub in Singapore

Telstra to move away from 'best effort' connectivity, let users tweak attributes

Westpac hires CBA's data chief to lead AI, data and digital

Telstra addresses external antenna claims by Vodafone

Transport for NSW restructures tech division

In Pictures: Abnormal AI and AUSCERT security roundtable

Blackberry celebrates "giant step forward"

Photos: The 2024 IoT Awards winners

Perth IoT vendor Digital Matter names new chief executive

Photos: Australian industry explores data for net zero

How IBM aims to protect food supplies using IoT, blockchain and agritech

Log in