Organisations continue to fight the good fight against cybercrime, but how are they faring?
Based on information gathered from over 3.5 trillion logs and 6.2 billion attacks, the Global Threat Intelligence Report analyses data from 10 000 NTT clients, 10 international Security Operation Centres, and honeypots and sandboxes strategically placed in over 100 different countries. It is one of the most comprehensive study of its kind, offering insights into the latest cybercrime trends, and guidance on how to avoid falling victim to them. Here are just a few of the notable discoveries from this year’s report, as they relate to the Asia Pacific market.
The Financial Sector returns to the top spot as the most targeted
After temporarily slipping to second place globally (after retail) in the 2016 Global Threat Intelligence Report, the financial sector is in the crosshairs once again, accounting for 14% of all attacks and a staggering 46% in Asia. The continent’s strong manufacturing sector make it the second most targeted industry, while in Australia, retail (27%) and professional and business services (20%) take the second and third spots.
Patching vulnerabilities remains a challenge
Many vulnerabilities continue to pop up, in large part only discoverable because they have already been exploited in a cyberattack. This year’s GTIR reveals that many go undiscovered for years – 47% of all vulnerabilities identified are over three years old, over 17% were five years old, 7% were ten years old, and we even observed some as old as 17 years. On the whole, however, in the Asia Pacific region as with the rest of the world, organisations are adopting more robust patch management strategies coupled with periodic vulnerability assessments to minimise their risk exposure.
Businesses are getting serious about incident response
Increasing awareness of cybercrime threats is being put to good use. The number of organisations that have a formal incident response plan in place has jumped since the 2016 GTIR, from 21% to 32%.
The threat landscape is constantly shifting
Malware attacks globally have experienced a sharp spike, increasing from 19% of all attacks in 2016, to 41% in 2017. Attacks related to the Internet of Things is of particular concern for Asia, with 60% of all IoT attacks originating in this digitally mature and increasingly mobile region.
There was a marked rise in distributed-denial-of-service (DDoS) attacks, up from 3% to 6% in 2015. Interestingly however, DDoS attacks accounted for over 16% of all attacks from Asia, and 23% of all attacks from Australia. Across the Atlantic, American businesses are far more likely to suffer from brute force attacks (20%), compared with only 7% in Asia.
These discrepancies only highlight the need for more detailed, regionally-specific threat data to enable optimal strategic protection from cybercrime – and Dimension Data is committed to bringing this data to more businesses via the annual Global Threat Intelligence Report. The full 2017 GTIR report is available for download here.