1 / 27

The Threat Landscape

The Threat Landscape. Jan 2013. 2013 Threat Report. 1. Threat Volume. SophosLabs see 250,000 new files each day. 250,000 previously unseen files received each day within SophosLabs. 2. The malicious web. Web servers are under constant attack. A new malicious URL every couple of seconds.

inga-decker
Download Presentation

The Threat Landscape

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. The Threat Landscape Jan 2013

  2. 2013 Threat Report

  3. 1. Threat Volume SophosLabs see 250,000 new files each day 250,000 previously unseen files received each day within SophosLabs

  4. 2. The malicious web Web servers are under constant attack. A new malicious URL every couple of seconds 20-30k malicious URLs seen each day. This is almost a new malicious URL every 2 secs

  5. 3. Professionalism, crimeware ‘Monetization’ : the bulk of today’s threats are automated, coordinated & professional

  6. Case study 1: Drive-by downloads

  7. Controlling user traffic Web threats are all about controlling user web traffic • Inject redirects into legitimate sites 80% of malicious URLs are actually legitimate sites that have been compromised

  8. It’s all about traffic Distribution of today’s web threats (2012 H1)

  9. Drive-by downloads Compromising legitimate websites to drive user traffic to malware

  10. Drive-by downloads Compromising legitimate websites to drive user traffic to malware

  11. Drive-by downloads Compromising legitimate websites to drive user traffic to malware “Monetization”

  12. Drive-by downloads Compromising legitimate websites to drive user traffic to malware URL filtering Content detection

  13. Case study 2: Ransomware

  14. Ransomware Multi-lingual!

  15. Ransomware • Malware that locks/encrypts user data • Pay ransom to access files Recover data?

  16. Blackhole payloads Payload distribution (late 2012)

  17. Case study 3: Android Threats

  18. Mobile OS market (US) What will mobile malware target?

  19. Android Applications Significant growth Apps available Customer downloads

  20. Android malware Huge growth in 2012 (x40, just in September!) 1000 Android samples analyzed each day within SophosLabs

  21. Android vs PC

  22. SophosLabs

  23. SophosLabs Key differentiators • Integrated threat analysis • Fast response time • Global presence 24/7/365 • Updates issued from any lab location at any time • 100% in-house technology • Pre-configured intelligence

  24. Top Facts 250,000 previously unseen files received each day within SophosLabs 20-30k malicious URLs seen each day. This is almost a new malicious URL every 2 secs 1,000 Android samples analysed each day within SophosLabs 80% of malicious URLs are actually legitimate sites that have been compromised

  25. Top Facts

  26. Mitigating Risks Complete Security Solutions designed to mitigate risks

  27. Questions?

More Related