09 August 2011

Cyber Crime Update

For those concerned with wider cyber crime research, three recent documents should be of interest.

Photograph of a touch-screen keyboard showing some of the letter buttons and keys to change the interface language

The documents address much wider issues than application security, but there are some useful nuggets in them of specific interest such as the average time to resolve or contain attacks.

Second Annual Cost of Cyber Crime Study

This updated report from the Ponemon Institute sponsored by ArcSight, describes the types of attacks, costs and governance, risk management and compliance practices for 50 mainly commercial organisations, involving 379 interviews. Key findings: annualised cost was found to be $1.5 million to $36.5 million, relating to on average one successful attack per week, and most likely to involve malicious code, denial of service, stolen devices and web-based attacks.

US Department of Defense Strategy for Operating in Cyberspace

The unclassified version of this document, released in mid-July, presents an overall strategy to defend against cyber threats and addresses aspects relating to the economy, security, law enforcement, military, governance, international development and internet freedom. Key quotation: "Our reliance on cyberspace stands in stark contrast to the inadequacy of our cybersecurity".

Operation Shady Rat

This report describes McAfee's investigation of targeted intrusions into 70 organisation's assets over the last five years. Key findings: the intrusion durations lasted from less than a month to 28 months, and affected organisations in all sectors and in all geographical regions.

See also Home Office Cyber Crime Strategy and scale of cyber crime in the UK.

Posted on: 09 August 2011 at 10:35 hrs

Comments Comments (0) | Permalink | Send Send | Post to Twitter

Comments

Comments are filtered automatically and should appear shortly after they been checked.

Post a comment
Confirm acceptance and understanding of the terms of use
New posts to this thread will be sent to your email address
Cyber Crime Update
http://www.clerkendweller.com/2011/8/9/Cyber-Crime-Update
ISO/IEC 18004:2006 QR code for http://clerkendweller.com

Page http://www.clerkendweller.com/2011/8/9/Cyber-Crime-Update
Requested by 54.198.224.121 on Thursday, 17 April 2014 at 10:37 hrs (London date/time)

Please read our terms of use and obtain professional advice before undertaking any actions based on the opinions, suggestions and generic guidance presented here. Your organisation's situation will be unique and all practices and controls need to be assessed with consideration of your own business context.

Terms of use http://www.clerkendweller.com/page/terms
Privacy statement http://www.clerkendweller.com/page/privacy
© 2011-2014 clerkendweller.com