Federal Cyber Incidents Rose 39% in 2010
OMB: Nearly One Third of Incidents Involved Malicious Code GovInfoSecurity.com March 24, 2011 <http://www.govinfosecurity.com/articles.php?art_id=3463&rf=2011-03-24-eg> http://www.govinfosecurity.com/articles.php?art_id=3463&rf=2011-03-24-eg Cyber incidents affecting government information systems rose by 39 percent to 41,776 in fiscal year 2010, which ended Sept. 30, according to a new report from the <https://mail.cra-usa.net/owa/UrlBlockedError.aspx> Office of Management and Budget. <http://www.whitehouse.gov/sites/default/files/omb/assets/egov_docs/FY10_FIS MA.pdf> OMB's annual report to Congress also revealed that phishing represented more than half of the 107,439 cyber incidents compiled by the <https://mail.cra-usa.net/owa/UrlBlockedError.aspx> United States Computer Emergency Readiness Team for FY2010 from federal, state and local governments, commercial enterprises, American citizens and foreign CERT teams. Thirty-nine percent of the incidents came from the federal government. "Malicious code through multiple means (e.g., phishing, virus, logic bomb) continues to be the most widely used attack approach," the report said. Among federal agencies, 31 percent of cyber incidents last year involved malicious code. Unauthorized access represented nearly 14 percent of reported incidents; improper usage, 17 percent; scans, probes and attempted access, 27 percent; and denial of service, 0.1 percent. More than 27 percent of federal incidents were categorized as under investigation or other. Here's the breakdown of the 107,439 incidents reported to U.S.-CERT in FY2010: Phishing: 56,579 incidents, 52.7 percent of incidents. Virus/Trojan/worm/logic bomb: 11,001, 10.2 percent Malicious website: 7,971, 7.4 percent Non-cyber: 7,741, 7.2 percent Policy violation: 6,888, 6.4 percent Equipment theft/loss: 5,395, 5 percent Suspicious network activity: 3,121, 2.9 percent Attempted access: 2,712, 2.5 percent Social engineering: 1,571, 1.5 percent An incident, as defined by <https://mail.cra-usa.net/owa/UrlBlockedError.aspx> NIST Special Publication 800-61, is a violation or imminent threat of violation of computer security policies, acceptable use policies or standard computer security practices [Non-text portions of this message have been removed] ------------------------------------ -------------------------- Want to discuss this topic? Head on over to our discussion list, discuss-os...@yahoogroups.com. -------------------------- Brooks Isoldi, editor biso...@intellnet.org http://www.intellnet.org Post message: osint@yahoogroups.com Subscribe: osint-subscr...@yahoogroups.com Unsubscribe: osint-unsubscr...@yahoogroups.com *** FAIR USE NOTICE. This message contains copyrighted material whose use has not been specifically authorized by the copyright owner. OSINT, as a part of The Intelligence Network, is making it available without profit to OSINT YahooGroups members who have expressed a prior interest in receiving the included information in their efforts to advance the understanding of intelligence and law enforcement organizations, their activities, methods, techniques, human rights, civil liberties, social justice and other intelligence related issues, for non-profit research and educational purposes only. We believe that this constitutes a 'fair use' of the copyrighted material as provided for in section 107 of the U.S. Copyright Law. If you wish to use this copyrighted material for purposes of your own that go beyond 'fair use,' you must obtain permission from the copyright owner. For more information go to: http://www.law.cornell.edu/uscode/17/107.shtmlYahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/osint/ <*> Your email settings: Individual Email | Traditional <*> To change settings online go to: http://groups.yahoo.com/group/osint/join (Yahoo! ID required) <*> To change settings via email: osint-dig...@yahoogroups.com osint-fullfeatu...@yahoogroups.com <*> To unsubscribe from this group, send an email to: osint-unsubscr...@yahoogroups.com <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/