online security is dead? Friday, March 21 2008
Are we secure in online world? After reading some of the statics reports, I think, Online security is dead. below are few the sample data that I gathered from those reports...
The number of information security incidents reported by federal agencies jumped from 5,146 in fiscal 2006 to 12,986 last year, with a 70 percent increase in unauthorized access to federal networks alone Ref: nextgov
Researchers with the applications security testing specialist estimate that 71 percent of all the vulnerabilities reported worldwide during Q4 2007 were related to Web apps
Ninety-five percent of personal computers are vulnerable to attack by hackers due to unpatched flaws in their software applications, according to data released by Secunia
In a recent study David Rice, director of the Monterey Group who has just published a new book called “Geekonomics: The Real cost of Insecure Software” has estimated the actual cost of insecure software to the U.S. to be at least $180 billion per year.
more than 90 percent of adults fear that their identities might be stolen and used for unauthorized transactions. ref: http://interactive.zogby.com/index.cfm
on-line banking customers revealed that nearly 1 in 5 respondents had been victims of identity theft or fraud, and Banks Could Increase Profitability by $8.3 Billion Per Year if Stronger Security Measures Implemented.
U.S. Consumers Lose More Than $7 Billion to Online Threats, Consumer Reports Survey finds
Rise of targeted attacks: (managers, CEOs etc)
2005 - 2 attacks per week
Nov 2007 - 950 attacks for every 20 hours
ref: message lab 2007 annual security report
Spam volume increased 100 percent, to more than 120 billion spam messages daily worldwide. That's about 20 spam messages per day for every man, woman and child on the planet. Earlier versions of spam attacks were primarily selling some type of product. In 2007, more than 83 percent of spam contained a URL to a rogue Web server that was frequently serving malware. In accordance with a trend towards the blending of different malware techniques, URL-based viruses increased 256 percent.
online black market worth more than $105 billion, malware authors can produce new, unique threats targeting businesses and employees every 45 seconds (ref:messagelabs)
According to a software defect metrics compiled by Capers Johns back in 1996 about 85 % of overall defects are introduced during coding.
