Monday, 22 October 2012

Security Threats in 2011 – by Month

Symantec released a powerful report called the Internet Security Threat Report (Read here). It gives a comprehensive analysis of internet security threats with several sources. The Symantec Global Intelligence Network is made up of over 64 million attack sensors, recording thousands of events per second. Here is a monthly overview of what happened in 2011.

  • A Scam is created using an Indonesian Facebook app to steal Login information
  • Scammers take advantage of the Serrana Flood in Brazil to take donations
  • Anonymous hacks HBGary Federal (security firm)
  • Android trojan released in unregulated Android Marketplaces
  • 429 scams used to target unrest in Egypt and Libya
  • US law enforcements and Microsoft take down the Rustock botnet
  • The mobile threat Android.Rootcager appears on the official Android Market
  • 419 scams take advantage of the Japanese Earthquake (fake donations sites and malicious attachments
  • Hackers repackage Googles tool for removing the Android.Rootcager with a new Trojan; Anroid.Bgserv
  •, Comodo Registration Authorities and are hacked and fake certifications are created of Hotmail, Google, Yahoo!, Skype and Mozilla
  • Iran discovers new virus dubbed “Stars”. It is believed to be similar to the previous Stuxnet-style attack
  • Malware found registering into Facebook applications
  • Spammers use the British Royal Wedding for campaigns and SEO poisoning
  • Playstation Network was hacked. Sony shuts down the service while restoring security
  • Court order is awarded to the FBI to shut down the Coreflood botnet with ‘delete’ command.
LulzSec logoMay
  • Phishing and malware attacks spiked due to Osama bin Laden’s death
  • The hacking group LulzSec starts up with the slogan “in I for the LULZ”
  • “tagging” spam campaign spreads across Facebook
  • A free version of Blackhole exploit kit is leaked
  • LulzSec hacks the cyber security consulting company Black & Berg and refuses the $10,000 offered as a price
  • LulzSec hacks the US Senate, CIA, FBI affiliates in response to the US Government declaring that cyber-attacks could be perceived as an act of war
  • LulzSec is attacked by TeaMp0isoN/th3j35t3r
  • Operation AntiSec begins
  • The Bitcoin virtual currency is hacked (currency exchange service)
  • The certificate authority is hacked by DigiNotar which leads to end of the company
Source: by  -
Mar 6, 2012
  • Microsoft offers a $250,000 reward  for information which will lead to the arrest of the creators of Rustock
  • Amy Winehouse’s death is used to spread Infostealer.Bancos (Trojan used to gather financial information)
  • Phishing attacks are found with fake trust seals
  • Spammers take advantage of the tenth anniversary of 9/11 in order to harvest email addresses
  • Pharmaceutical spam exploits the Delhi bomb blast
  • Microsoft shuts down the Kelihos botnet
  • W32 is officially discovered. May also be the virus Iran found in April named “Stars”
  • The Libyan leaders death leads to several spam campaigns spreading malware
  • Attackers behind the Blackhole exploit kit start spam campaign based on Steve Jobs death
  • The Microsoft Security Intelligence Report shows that Java is now the most exploited software
  • Relatively Peaceful…
  • The global affairs analysis company Stratfor is hacked
  • Spam falls to the lowest levels in 3 years
To read the whole in depth article, click on the following link: