Actual threat data for 2009
In recent years, we have seen a significant increase in Internet users, as well as the rapid growth in popularity of online games and social networks. All this leads to the fact that the security of your computer is the key to safe surfing online and the safety of all your data. We all know the rules that will help protect ourselves: update software (and OS) in a timely manner and not open documents / sites that we doubt. However, often our irresponsibility is with you (and in other words it is impossible to name it :)) leads to the fact that the computers of our companies are under attack, our social network profiles are broken, and the logins and passwords for online games are stolen. That is why many companies have started analyzing what is happening in the field of security and, as you already understood, Microsoft is one of them.
Today I will tell you about the Security Intelligence Report (SIR) v.7. This report contains detailed information about worms, exploits, trojans, vulnerabilities and other potentially dangerous threats. In addition, it also reveals the geographical distribution of malware, that is, it shows which countries are the most unfavorable in that respect. It is important to note that the report is based on data obtained from a huge number of sources (over 450 million launches of the MSRT program per month, checking over 1 billion messages for spam and mail viruses on Hotmail daily), which allows us to judge its authenticity.
As you can see from the figure above, we have red areas that reflect the unfavorable security situation in these countries. Such countries, for example, are Turkey, Saudi Arabia and Brazil. Russia in this list takes the honorable 9th place from the end (last year we were in 2nd place from the end) with a score of 15.5 (the number of computers per 1000 launches of the MSRT program on which the malicious code was found). The most prosperous countries are Western Europe: Finland and Austria with a score of 1.9 and 2.1, respectively. World average - 8.7
')
It should be noted that the total number of vulnerabilities found in the first half of 2009 decreased by 28.4% compared with the second half of 2009. However, as you can see from the graph below, over 46% of all vulnerabilities are critical.
I think many will be interested in the most widespread viruses in the first half of 2009 in Russia. Separately, I want to mention the virus Win32 / Taterf, which steals account data online games.
1 Win32 / Conficker
2 Win32 / Taterf
3 Win32 / Cutwail
It is impossible to tell about all the findings of the report within the post, since the entire report covers more than 300 pages in English. However, I would like to share useful links to various materials in this report:
• http://www.microsoft.com/rus/security/sir/index.html
• View record online broadcast
• The main findings of SIR v7 in Russian
• Detailed SRV v7 report in English
In conclusion, I would like to once again tell about the things that we all know very well, but sometimes we forget about them:
1. Regularly update all Microsoft software that you have on your computer (to do this, you need to use Microsoft Update , not just Windows Update)
2. Do not forget to update third-party software , because according to statistics, 9 out of 10 vulnerabilities related to browsers used to attack computers running Windows Vista were found in third-party software (Adobe Flash, Adobe Reader, Real Player)
3. Make sure you are using anti-virus software from a trusted vendor (for example: Microsoft Forefront Client Security , Microsoft Security Essentials, Kaspersky, Symantec, or any other vendor from this page ).
4. Do not forget to update the antivirus software in a timely manner.
5. Ensure that your organization has security policies in place and that the infrastructure complies with the principles of layered protection (you can use the Microsoft Security Assessment Tool to assess the security of your IT infrastructure)
Compliance with the above 5 points will help significantly! secure computers in your organization / home
Today I will tell you about the Security Intelligence Report (SIR) v.7. This report contains detailed information about worms, exploits, trojans, vulnerabilities and other potentially dangerous threats. In addition, it also reveals the geographical distribution of malware, that is, it shows which countries are the most unfavorable in that respect. It is important to note that the report is based on data obtained from a huge number of sources (over 450 million launches of the MSRT program per month, checking over 1 billion messages for spam and mail viruses on Hotmail daily), which allows us to judge its authenticity.
As you can see from the figure above, we have red areas that reflect the unfavorable security situation in these countries. Such countries, for example, are Turkey, Saudi Arabia and Brazil. Russia in this list takes the honorable 9th place from the end (last year we were in 2nd place from the end) with a score of 15.5 (the number of computers per 1000 launches of the MSRT program on which the malicious code was found). The most prosperous countries are Western Europe: Finland and Austria with a score of 1.9 and 2.1, respectively. World average - 8.7
')
It should be noted that the total number of vulnerabilities found in the first half of 2009 decreased by 28.4% compared with the second half of 2009. However, as you can see from the graph below, over 46% of all vulnerabilities are critical.
I think many will be interested in the most widespread viruses in the first half of 2009 in Russia. Separately, I want to mention the virus Win32 / Taterf, which steals account data online games.
1 Win32 / Conficker
2 Win32 / Taterf
3 Win32 / Cutwail
It is impossible to tell about all the findings of the report within the post, since the entire report covers more than 300 pages in English. However, I would like to share useful links to various materials in this report:
• http://www.microsoft.com/rus/security/sir/index.html
• View record online broadcast
• The main findings of SIR v7 in Russian
• Detailed SRV v7 report in English
In conclusion, I would like to once again tell about the things that we all know very well, but sometimes we forget about them:
1. Regularly update all Microsoft software that you have on your computer (to do this, you need to use Microsoft Update , not just Windows Update)
2. Do not forget to update third-party software , because according to statistics, 9 out of 10 vulnerabilities related to browsers used to attack computers running Windows Vista were found in third-party software (Adobe Flash, Adobe Reader, Real Player)
3. Make sure you are using anti-virus software from a trusted vendor (for example: Microsoft Forefront Client Security , Microsoft Security Essentials, Kaspersky, Symantec, or any other vendor from this page ).
4. Do not forget to update the antivirus software in a timely manner.
5. Ensure that your organization has security policies in place and that the infrastructure complies with the principles of layered protection (you can use the Microsoft Security Assessment Tool to assess the security of your IT infrastructure)
Compliance with the above 5 points will help significantly! secure computers in your organization / home
Source: https://habr.com/ru/post/74380/
All Articles