Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

2016: The Year Menaces Multiplied

1,393 views

Published on

IBM X-Force research uncovered some startling facts about the threat landscape in 2016. Globally, it was a year of massive leaks and record vulnerability disclosures.

Get a preview of the key findings from the 2017 IBM X-Force Threat Intelligence Index in this infographic and then read the complete report to learn even more: http://ibm.co/2ngbJdB

Published in: Technology
  • Be the first to comment

2016: The Year Menaces Multiplied

  1. 1. READ THE 2017 IBM X-FORCE THREAT INTELLIGENCE INDEX. 1 2 500% 450% 400% 350% 300% 250% 200% 150% 100% 50% 0% Jan-15 Feb-15 M ar-15 Apr-15 M ay-15 Jun-15 Jul-15 Aug-15 Sep-15 O ct-15 N ov-15 Dec-15 Jan-16 Feb-16 M ar-16 Apr-16 M ay-16 Jun-16 Jul-16 Aug-16 Sep-16 O ct-16 N ov-16 Dec-16 Spam without malicious attachments Spam with malicious attachments 3 2010 2011 2012 2013 2014 2015 2016 10,000 8,000 6,000 4,000 2,000 0 10,197 8,4628,285 8,752 9,368 7,217 8,956 4 Inject unexpected items Manipulate data structures Collect and analyze information Indicator Employ probabilistic techniques Manipulate system resources Subvert access control Abuse existing functionality Engage in deceptive interactions 42% 32% 9% 4% 3% 3% 3% 2% 2% Jan 16 Feb 16 Mar 16 Apr 16 May 16 Jun 16 Jul 16 Aug 16 Sep 16 Oct 16 Nov 16 Dec 16 Jan 17 Attack types Physical access Brute force Misconfig. Malvertising Phishing SQLi DDoS Malware Undisclosed IBM X-Force Threat Intelligence Index 2017 2016: The year menaces multiplied IBM® X-Force® research uncovered some startling facts about the threat landscape in 2016. Globally, it was a year of massive leaks and record vulnerability disclosures. Here are some key findings from the 2017 IBM X-Force Threat Intelligence Index. LEAKED RECORDS MORE THAN DOUBLED FROM PREVIOUS YEARS. Each circle represents a target of a security incident such as a data leak or denial-of-service attack. The size of the circle estimates the relative impact of the incident in terms of cost to the business. 4 billion+ records leaked in 2016 More than the combined total leaked in 2014 and 2015 1.5 billion records in one leak alone This gives new meaning to the term “mega breach.” SPAM WAS FREQUENTLY ON THE ATTACK MENU. The average monthly spam volume of the first quarter of 2015 is shown as 100 percent. Spam volume increased 400% from 2015 to 2016. Among malicious attachments to spam, ransomware accounted for the vast majority—85%. Ransomware continues to be one of the most profitable forms of malware in terms of effort versus earnings. 44% of spam contained malicious attachments. SOFTWARE VULNERABILITIES REACHED RECORD NUMBERS. In 2016, X-Force recorded the highest single-year number for vulnerabilities. 10,000+ vulnerabilities were reported in 2016, up across all software types. INJECTION ATTACKS RULED IN 2016. The types of attacks on IBM-monitored security clients fell into nine principal categories. 40% of all attacks were SQL injection (SQLi) or operating system command injection (OS CMDi). A SQLi attack was used to steal millions of user records1 from gaming forums and other sites in 2016. FOR MORE INFORMATION IBMX-ForceResearchisoneoftheoldestandmostrenowned commercial security research teams in the world, operating since 1996. Ready to learn more about the current threat landscape? © Copyright IBM Corporation 2017. All Rights Reserved. IBM, the IBM logo, ibm.com, and X-Force are trademarks or registered trademarks of International Business Machines Corporation in the United States. Footnotes: 1 Brendan Caldwell, “9.3 Million Accounts Compromised In Epidemic Of Forum Hacks: Funcom, Epic, and More,” Rock Paper Shotgun, 27 August 2016. WG912359-USEN-00

×