Cyberdefenders won’t beat cyberattackers without understanding their methods,...
Cyberdefenders won’t beat cyberattackers without understanding their methods, the European Network and Information Security Agency said Tuesday in its first threat landscape report (http://bit.ly/UxZsMS). The document includes an overview of current and emerging threat trends, the latter focused on mobile…
Sign up for a free preview to unlock the rest of this article
Timely, relevant coverage of court proceedings and agency rulings involving tariffs, classification, valuation, origin and antidumping and countervailing duties. Each day, Trade Law Daily subscribers receive a daily headline email, in-depth PDF edition and access to all relevant documents via our trade law source document library and website.
computing, social media technology, critical infrastructure, trust infrastructure, cloud and big data. The top 10 threats are: (1) Drive-by exploits in which malicious code is injected to take advantage of Web browser vulnerabilities. (2) Worms and trojans. (3) Code injection attacks. (4) Exploit kits -- ready-to-use software packages that automate cybercrime. (5) Botnets. (6) Distributed denial of service attacks. (7) Phishing. (8) Compromising confidential information via data breaches. (9) Rogueware. (10) Spam. Of all the threats in the current and emerging trends, only spam is declining, ENISA said. Most others are increasing or remaining stable, it said. The agency recommended that better evidence about attack vectors and the impact achieved by adversaries be collected and analyzed, and that more data be maintained about threat agents. It also called for a common terminology for threat reports. The user’s perspective should be included in dealing with cyberthreats, it said. ENISA also suggested that security intelligence be collected that covers incidents in an end-to-end manner, and that security controls be shifted to accommodate emerging threat trends.