Abstract image of a woman sitting on books and studying on a laptop

2015 Global Threat Intelligence Report

DImension Data, profile picture
DImension Data

The 2015 Global Threat Intelligence Report highlights that the financial services industry is the most targeted sector, accounting for 18% of all detected attacks, with a decrease of 2% compared to the previous year. Over 6 billion attacks were noted, primarily originating from the US, and the financial services sector demonstrated a strong incident response capability despite 74% of organizations lacking a formal incident response plan. The report emphasizes a shift in attacks from applications to end-user systems, with the majority of vulnerabilities related to personal devices increasingly exploited by cybercriminals.

Economy & Finance
Related topics:
Internet of Things
1 of 2
Download to read offline
1
2
2015 Global Threat Intelligence Report An analysis of security trends in the Financial Services industry • over 6 billion attacks • trillions of logs • over 18,000 clients • 28% Financial Services industry respondents Data gathered from NTT security companies and NTT’s live Global Threat Intelligence Platform 56% of attacks originate from IP addresses within the US but attackers could be anywhere in the world Attack analysis Attack sources US 56% China 9% France 2% India 1.5% Germany 2% Netherlands 2% Denmark 1.1% Russia 2% Ukraine 1.3% Canada 0.9% Australia 9% Rest 9% UK 3% Attacks by sector • Finance sector still #1 target with 18% of all detected attacks Finance 0% 2% 4% 8% 10% 12% 14% 16% 18% 6% Business &professional Manufacturing Retail Healthcare Technology Education Government Pharmaceuticals Insurance Transport& distribution Gaming Media Hospitality,leisure &entertainment Non-profit Other • However, this is a slight decrease of 2% from the previous year Attacks and incident response • Reconnaissance activity from 4% to 10% • Crafted attacks on targeted victims more common Other 5% Known Bad Source 3% Evasion Attempts 3% DoS / DDoS 5% Application Specific Attack 7% Reconaissance 10% Anomalous Activity 20% Network Manipulation 18% Web Application Attack 15% Service Specific Attack 14% Attacks by type 6% 32%of all Malware attacks are in the Financial Services sector Malware attacks have reduced 2% year-on-year in this sector The Financial Services sector has one of the lowest Malware attack rates. of Incident Response Engagements came from the Financial Services industry. The sector’s sensitivity to attacks has driven the prevalence of formal incident response processes and procedures. The sector’s response rate is twice that of the next most active sector, Business Services (16%)
dimensiondata.com/globalthreatreport #GlobalThreatReport Threat intelligence defined 2. Raw information collected based on requirements 3. Information processed exploited 4. Intelligence analysis production 1.Consumer needs, planning, requirements direction 5. Dissemination of product to consumer Attacks have shifted from application to user 7 / 10 vulnerabilities relate to end-user systems Users connected to public network using personal, and often more vulnerable devices End-user exploits spike after weekends / holidays when users reconnect End-user systems often have unpatched vulnerabilities • 76% of vulnerabilities + 2 years old • 9% of those +10 years old The user is the perimeter 7/10 Vulnerabilities targeted in exploit kits Cybercrime is $$ $ $$ $Software exploit kits sold in hacking forums hackers take advantage of unpatched flaws install malicious software on vulnerable devices Increased focus on Adobe Flash since security on Java and Internet Explorer improved in 2014. Java Adobe Acrobat Internet Explorer Adobe Flash Firefox Windows Silverlight Others 2013 2014 110 100 90 80 70 60 50 40 30 20 10 0 Changing profile of cybercriminals Organised crime groups with considerable resources and expertise Attacks motivated by: • profit • botnet infrastructure • extortion • fame/notoriety • hacktivism Incident response threat intelligence • Incident response capabilities maturing at a slow pace. • 74% of organisations have no formal incident response plan. Average incident response time Organisations with no vulnerability management programme take nearly 200 days to patch vulnerabilities with CVSS score of 4.0 or more The threat intelligence cycle Our approach to successful threat intelligence helps numerous enterprises stay protected

More Related Content

PPTX
Velocis Presentations
Hitesh Patel
 
PDF
End-User Computing Insights: A study of digital maturity
DImension Data
 
PPTX
Key Trends and Opportunities in Business Mobility and Enterprise Communications
Raúl Castañón Martínez
 
PDF
2015 Global Contact Centre Benchmarking Report key findings
DImension Data
 
PDF
Importance of Enterprise Mobility Solution in Healthcare
ChromeInfo Technologies
 
PPTX
Financial Impact of BYOD Programs
Bitzer Mobile, now part of Oracle
 
PDF
IT Security Trends in 2012
Icomm Technologies
 
PDF
ENGINEERING LIFE CYCLE ENABLES PENETRATION TESTING AND CYBER OPERATIONS
IJMIT JOURNAL
 
Velocis Presentations
Hitesh Patel
 
End-User Computing Insights: A study of digital maturity
DImension Data
 
Key Trends and Opportunities in Business Mobility and Enterprise Communications
Raúl Castañón Martínez
 
2015 Global Contact Centre Benchmarking Report key findings
DImension Data
 
Importance of Enterprise Mobility Solution in Healthcare
ChromeInfo Technologies
 
Financial Impact of BYOD Programs
Bitzer Mobile, now part of Oracle
 
IT Security Trends in 2012
Icomm Technologies
 
ENGINEERING LIFE CYCLE ENABLES PENETRATION TESTING AND CYBER OPERATIONS
IJMIT JOURNAL
 

What's hot (20)

PDF
Mobile Workspaces Go Where You Go [Infographic]
Citrix
 
PDF
7 Best Practices to Protect Critical Business Information [Infographic]
Citrix
 
PDF
IDC: Top Five Considerations for Cloud-Based Security
arms8586
 
PPTX
7 steps to developing a mobile device policy
fudallst
 
PPT
Extending applications securely to wireless health workers.
Wheatstone
 
PPT
Changing Your Enterprise Architecture - Mobile is Not an Add-On
Wheatstone
 
PDF
Embracing BYOD
Envision Technology Advisors
 
PDF
Resilience Engineering as an IT Cultural Discipline
Cognizant
 
PDF
Wireless survey-report-saa-2016
Samir Kotarwar
 
PDF
Top 3 Reasons to Deliver Web Apps with Application Virtualization
Citrix
 
PDF
There's No Such Thing As "Downtime" In a Hospital
NETSCOUT
 
PDF
Choosing the right network management solution: Increase network visibility t...
PacketTrap Msp
 
PPT
Enterprise Mobility Strategy
Freeform Dynamics
 
PDF
Cloud Insights from 110 Projects
None
 
PDF
10 Reasons to Strengthen Security with App & Desktop Virtualization
Citrix
 
PDF
Shadow IT
PriyaPandey162
 
PDF
Windows Apps on Chromebooks: Deliver a Seamless Experience
Citrix
 
PDF
Best practices for mobile enterprise security and the importance of endpoint ...
Chris Pepin
 
PDF
12 Game Changing Ways to Mobilize Teaching and Learning
Citrix
 
PDF
Security Development Life Cycle
Directorate of Information Security | Ditjen Aptika
 
Mobile Workspaces Go Where You Go [Infographic]
Citrix
 
7 Best Practices to Protect Critical Business Information [Infographic]
Citrix
 
IDC: Top Five Considerations for Cloud-Based Security
arms8586
 
7 steps to developing a mobile device policy
fudallst
 
Extending applications securely to wireless health workers.
Wheatstone
 
Changing Your Enterprise Architecture - Mobile is Not an Add-On
Wheatstone
 
Embracing BYOD
Envision Technology Advisors
 
Resilience Engineering as an IT Cultural Discipline
Cognizant
 
Wireless survey-report-saa-2016
Samir Kotarwar
 
Top 3 Reasons to Deliver Web Apps with Application Virtualization
Citrix
 
There's No Such Thing As "Downtime" In a Hospital
NETSCOUT
 
Choosing the right network management solution: Increase network visibility t...
PacketTrap Msp
 
Enterprise Mobility Strategy
Freeform Dynamics
 
Cloud Insights from 110 Projects
None
 
10 Reasons to Strengthen Security with App & Desktop Virtualization
Citrix
 
Shadow IT
PriyaPandey162
 
Windows Apps on Chromebooks: Deliver a Seamless Experience
Citrix
 
Best practices for mobile enterprise security and the importance of endpoint ...
Chris Pepin
 
12 Game Changing Ways to Mobilize Teaching and Learning
Citrix
 
Security Development Life Cycle
Directorate of Information Security | Ditjen Aptika
 
Ad

Similar to 2015 Global Threat Intelligence Report (20)

PDF
2015 Global Threat Intelligence Report - an analysis of global security trends
DImension Data
 
PDF
Before the Breach: Using threat intelligence to stop attackers in their tracks
- Mark - Fullbright
 
PDF
Managed security services for financial services firms
Jake Weaver
 
PDF
IBM Security Services
Rainer Mueller
 
PPTX
The Evolution of Cybercrime
Stephen Cobb
 
PDF
2016 trustwave global security report
Marco Antonio Agnese
 
PDF
The challenges of Retail Security
IBM Software India
 
PDF
Satori Whitepaper: Threat Intelligence - a path to taming digital threats
Dean Evans
 
PDF
The Executive's Guide to the 2016 Global Threat Intelligence Report
Simona Franciosi
 
PDF
IBM 2015 Cyber Security Intelligence Index
Andreanne Clarke
 
PDF
Article 1 - cyber threat.pdf
1445629213
 
PDF
2014 Trustwave Global Security Report
worldwidebranding
 
PPT
Mark Arena - Cyber Threat Intelligence #uisgcon9
UISGCON
 
PPTX
Cyber Crime Threat Landscape - A Focus on the Financial Industry
William McBorrough
 
PDF
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
NishantSisodiya
 
PDF
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
Ernst & Young
 
PDF
Cisco Connect 2018 Malaysia - Risk less, achieve more with proactive security
NetworkCollaborators
 
PDF
Whitepaper 2015 industry_drilldown_finance_en
Bankir_Ru
 
PPTX
Global threat landscape
Jynette Reed
 
PDF
Cyber Security index
sukiennong.vn
 
2015 Global Threat Intelligence Report - an analysis of global security trends
DImension Data
 
Before the Breach: Using threat intelligence to stop attackers in their tracks
- Mark - Fullbright
 
Managed security services for financial services firms
Jake Weaver
 
IBM Security Services
Rainer Mueller
 
The Evolution of Cybercrime
Stephen Cobb
 
2016 trustwave global security report
Marco Antonio Agnese
 
The challenges of Retail Security
IBM Software India
 
Satori Whitepaper: Threat Intelligence - a path to taming digital threats
Dean Evans
 
The Executive's Guide to the 2016 Global Threat Intelligence Report
Simona Franciosi
 
IBM 2015 Cyber Security Intelligence Index
Andreanne Clarke
 
Article 1 - cyber threat.pdf
1445629213
 
2014 Trustwave Global Security Report
worldwidebranding
 
Mark Arena - Cyber Threat Intelligence #uisgcon9
UISGCON
 
Cyber Crime Threat Landscape - A Focus on the Financial Industry
William McBorrough
 
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
NishantSisodiya
 
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
Ernst & Young
 
Cisco Connect 2018 Malaysia - Risk less, achieve more with proactive security
NetworkCollaborators
 
Whitepaper 2015 industry_drilldown_finance_en
Bankir_Ru
 
Global threat landscape
Jynette Reed
 
Cyber Security index
sukiennong.vn
 
Ad

More from DImension Data (20)

PDF
Cisco spark - reinventing collaboration
DImension Data
 
PDF
What's new at the Tour de France
DImension Data
 
PDF
Digital technology revolutionised the viewing experience of the tour de france
DImension Data
 
PDF
Creating workspaces for tomorrow at the greatest cycling event in the world
DImension Data
 
PDF
Cloud: the race to digitisation is on!
DImension Data
 
PDF
6 stages of smart data at the Tour de France
DImension Data
 
PDF
Mobility at the network’s edge
DImension Data
 
PDF
Zurich case study how to move a data centre in 8 days
DImension Data
 
PDF
Zurich case study: Reducing risk for insurance customers
DImension Data
 
PDF
Strengthening Cybersecurity at the tour de france
DImension Data
 
PDF
High-performance solutions for an international university
DImension Data
 
PDF
What's inhibiting your business productivity
DImension Data
 
PDF
Creating powerful connections
DImension Data
 
PDF
Case study: how information saves lives
DImension Data
 
PDF
How we helped Fujifilm keep its customers' special memories safe
DImension Data
 
PDF
World’s first Cloud-enabled G20 Leaders’ Summit
DImension Data
 
PDF
Dimension Data Department Prime Minister and cabinet G20 case study
DImension Data
 
PDF
Cybersecurity, a presidential mandate
DImension Data
 
PDF
Dimension Data has been recognised as one of only 5 Top Global Top Employers
DImension Data
 
PDF
Virtualisation to cloud - are we there yet?
DImension Data
 
Cisco spark - reinventing collaboration
DImension Data
 
What's new at the Tour de France
DImension Data
 
Digital technology revolutionised the viewing experience of the tour de france
DImension Data
 
Creating workspaces for tomorrow at the greatest cycling event in the world
DImension Data
 
Cloud: the race to digitisation is on!
DImension Data
 
6 stages of smart data at the Tour de France
DImension Data
 
Mobility at the network’s edge
DImension Data
 
Zurich case study how to move a data centre in 8 days
DImension Data
 
Zurich case study: Reducing risk for insurance customers
DImension Data
 
Strengthening Cybersecurity at the tour de france
DImension Data
 
High-performance solutions for an international university
DImension Data
 
What's inhibiting your business productivity
DImension Data
 
Creating powerful connections
DImension Data
 
Case study: how information saves lives
DImension Data
 
How we helped Fujifilm keep its customers' special memories safe
DImension Data
 
World’s first Cloud-enabled G20 Leaders’ Summit
DImension Data
 
Dimension Data Department Prime Minister and cabinet G20 case study
DImension Data
 
Cybersecurity, a presidential mandate
DImension Data
 
Dimension Data has been recognised as one of only 5 Top Global Top Employers
DImension Data
 
Virtualisation to cloud - are we there yet?
DImension Data
 

Recently uploaded (20)

PPT
Business Process Analysis and Quality Management (PMgt 771) with 2 Credit Housr
abenezargetachew1
 
PDF
Field Experiments in Experiments: A Basic Introduction
munroali
 
PPTX
business notesxxxxxxxxxxxxxxxxxxxxxxx.pptx
jessicqwh
 
PDF
epic-retirement-criteria-for-funds (1).pdf
Henry Tapper
 
PPTX
₹2 Lakh Personal Loan in India – Complete Guide
fincrifcontent2
 
PPTX
_Cyber-Futuristic AI Technology Thesis Defense.pptx
himanshujain0707200
 
PPT
Joints.ppts qxqwcesceecsxwdsxwcdewd2wsew
d2kjwp2qgd
 
PDF
Private Equity in Action: Sector-Specific Investments for High Growth”
SumitsouravMahapatra
 
PPTX
Premium Ch 36 Six Debates over Macroeconomic Policy.pptx
vinirwnk
 
PPTX
ratio analysis presentation for graduate
NaziaNaeemVisitingTe1
 
PPTX
Leveraging the power of data for sustainable development
KarimGigler
 
PPTX
481696537-Pediatric-pharmacokinetic.pptx
taoufikakabli3
 
PDF
Histpry of Economic thoughts _I_Chapter3.pdf
mahadiilove
 
PDF
Modern Advanced Accounting in Canada, 9th Edition by Darrell Herauf, Murray H...
solutions manual team
 
PPT
Chapter 3-elasacity and its applications
MarcoPaoloAclan2
 
PPT
Managerial Accounting Chap 1. Guide to managerial accounting
HumzaHammad1
 
PDF
Fintech as a Gateway for Rural Investment in Bangladesh
Ehsan Tanim
 
PPTX
Terms, Use and Concept of sociology.pptx
nanda79122
 
DOCX
Tiếng anh 7 Friends Plus_ Unit 3 _Final Test.docx
chumeomay950
 
PDF
Rituals of Grief Across Cultures (www.kiu.ac.ug)
publication11
 
Business Process Analysis and Quality Management (PMgt 771) with 2 Credit Housr
abenezargetachew1
 
Field Experiments in Experiments: A Basic Introduction
munroali
 
business notesxxxxxxxxxxxxxxxxxxxxxxx.pptx
jessicqwh
 
epic-retirement-criteria-for-funds (1).pdf
Henry Tapper
 
₹2 Lakh Personal Loan in India – Complete Guide
fincrifcontent2
 
_Cyber-Futuristic AI Technology Thesis Defense.pptx
himanshujain0707200
 
Joints.ppts qxqwcesceecsxwdsxwcdewd2wsew
d2kjwp2qgd
 
Private Equity in Action: Sector-Specific Investments for High Growth”
SumitsouravMahapatra
 
Premium Ch 36 Six Debates over Macroeconomic Policy.pptx
vinirwnk
 
ratio analysis presentation for graduate
NaziaNaeemVisitingTe1
 
Leveraging the power of data for sustainable development
KarimGigler
 
481696537-Pediatric-pharmacokinetic.pptx
taoufikakabli3
 
Histpry of Economic thoughts _I_Chapter3.pdf
mahadiilove
 
Modern Advanced Accounting in Canada, 9th Edition by Darrell Herauf, Murray H...
solutions manual team
 
Chapter 3-elasacity and its applications
MarcoPaoloAclan2
 
Managerial Accounting Chap 1. Guide to managerial accounting
HumzaHammad1
 
Fintech as a Gateway for Rural Investment in Bangladesh
Ehsan Tanim
 
Terms, Use and Concept of sociology.pptx
nanda79122
 
Tiếng anh 7 Friends Plus_ Unit 3 _Final Test.docx
chumeomay950
 
Rituals of Grief Across Cultures (www.kiu.ac.ug)
publication11
 

2015 Global Threat Intelligence Report

  • 1. 2015 Global Threat Intelligence Report An analysis of security trends in the Financial Services industry • over 6 billion attacks • trillions of logs • over 18,000 clients • 28% Financial Services industry respondents Data gathered from NTT security companies and NTT’s live Global Threat Intelligence Platform 56% of attacks originate from IP addresses within the US but attackers could be anywhere in the world Attack analysis Attack sources US 56% China 9% France 2% India 1.5% Germany 2% Netherlands 2% Denmark 1.1% Russia 2% Ukraine 1.3% Canada 0.9% Australia 9% Rest 9% UK 3% Attacks by sector • Finance sector still #1 target with 18% of all detected attacks Finance 0% 2% 4% 8% 10% 12% 14% 16% 18% 6% Business &professional Manufacturing Retail Healthcare Technology Education Government Pharmaceuticals Insurance Transport& distribution Gaming Media Hospitality,leisure &entertainment Non-profit Other • However, this is a slight decrease of 2% from the previous year Attacks and incident response • Reconnaissance activity from 4% to 10% • Crafted attacks on targeted victims more common Other 5% Known Bad Source 3% Evasion Attempts 3% DoS / DDoS 5% Application Specific Attack 7% Reconaissance 10% Anomalous Activity 20% Network Manipulation 18% Web Application Attack 15% Service Specific Attack 14% Attacks by type 6% 32%of all Malware attacks are in the Financial Services sector Malware attacks have reduced 2% year-on-year in this sector The Financial Services sector has one of the lowest Malware attack rates. of Incident Response Engagements came from the Financial Services industry. The sector’s sensitivity to attacks has driven the prevalence of formal incident response processes and procedures. The sector’s response rate is twice that of the next most active sector, Business Services (16%)
  • 2. dimensiondata.com/globalthreatreport #GlobalThreatReport Threat intelligence defined 2. Raw information collected based on requirements 3. Information processed exploited 4. Intelligence analysis production 1.Consumer needs, planning, requirements direction 5. Dissemination of product to consumer Attacks have shifted from application to user 7 / 10 vulnerabilities relate to end-user systems Users connected to public network using personal, and often more vulnerable devices End-user exploits spike after weekends / holidays when users reconnect End-user systems often have unpatched vulnerabilities • 76% of vulnerabilities + 2 years old • 9% of those +10 years old The user is the perimeter 7/10 Vulnerabilities targeted in exploit kits Cybercrime is $$ $ $$ $Software exploit kits sold in hacking forums hackers take advantage of unpatched flaws install malicious software on vulnerable devices Increased focus on Adobe Flash since security on Java and Internet Explorer improved in 2014. Java Adobe Acrobat Internet Explorer Adobe Flash Firefox Windows Silverlight Others 2013 2014 110 100 90 80 70 60 50 40 30 20 10 0 Changing profile of cybercriminals Organised crime groups with considerable resources and expertise Attacks motivated by: • profit • botnet infrastructure • extortion • fame/notoriety • hacktivism Incident response threat intelligence • Incident response capabilities maturing at a slow pace. • 74% of organisations have no formal incident response plan. Average incident response time Organisations with no vulnerability management programme take nearly 200 days to patch vulnerabilities with CVSS score of 4.0 or more The threat intelligence cycle Our approach to successful threat intelligence helps numerous enterprises stay protected