HOME >> IT Security >> information
Unauthorized Computer Access Incident Report for 1rd Quarter of 2006 (January - March)
April 28, 2006
IT Security Center
Information-technology Promotion Agency, Japan (IPA)
This is a summary of unauthorized computer access for the 1rd Quarter (January to March) of 2006.
- There are number of nondiscriminatory attacks to every computers including the computers for home use;
- Such damages caused by intruding Web servers being exploited for the attacks to the other servers as steppingstones tend to increase.
Please refer to the following sites for continual security countermeasures by conducting thorough security set ups for your computer and operations management on daily basis.
- “Practical Information for Information Security Countermeasures” for end-users/home-users (in Japanese)
http://www.ipa.go.jp/security/awareness/end-users/end-users.html - “Practical Information for Information Security Countermeasures” for Administrators (in Japanese)
http://www.ipa.go.jp/security/awareness/administrator/administrator.html
1. Reported Number
The reported number for the First Quarter (January to March) 2006 was totaled 114 . The gross reported number was increased about 60% compared with the previous quarter, but the ratio for actually damaged was decreased about 22%.
Note) The numbers in parenthesis in the graph above indicate the numbers actually damaged in the gross reported number.
2. Type of Incidents Reported
Of 114, the total reported number reported to IPA, the reported number for the “Access Probe (Attempt)” or being detected unauthorized access probe was 71 (previous = 17) for which constituted 62.3% against the whole reported number for detection. Reports for actually damaged mean the total of “Intrusion”, “Infection w/Worms”, “Source Address Spoofing”, “Unauthorized Mail Relay”, “DoS” and “the Others (Damaged)”.
| First Qtr. 2005 | Second Qtr. 2005 | Third Qtr. 2005 | Fourth Qtr. 2005 | First Qtr. 2006 | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Intrusion | 18 | 11.8 % | 28 | 16.9 % | 19 | 15.2 % | 33 | 46.5 % | 26 | 22.8 % |
| Unauthorized Mail Relay | 3 | 2.0 % | 2 | 1.2 % | 1 | 0.8 % | 2 | 2.8 % | 0 | 0.0 % |
| Infection w/Worm | 0 | 0.0 % | 3 | 1.8 % | 2 | 1.6 % | 3 | 4.2 % | 0 | 0.0 % |
| DoS | 1 | 0.7 % | 13 | 7.8 % | 6 | 4.8 % | 1 | 1.4 % | 2 | 1.8 % |
| Mailing Address Spoofing | 0 | 0.0 % | 2 | 1.2 % | 3 | 2.4 % | 1 | 1.4 % | 1 | 0.9 % |
| Others (Damaged) | 10 | 6.5 % | 9 | 5.4 % | 7 | 5.6 % | 9 | 12.7 % | 9 | 7.9 % |
| Access Probe (Attempt) | 116 | 75.8 % | 107 | 64.5 % | 85 | 68.0 % | 17 | 23.9 % | 71 | 62.3 % |
| Worm Probe | 0 | 0.0 % | 2 | 1.2 % | 2 | 1.6 % | 3 | 4.2 % | 4 | 3.5 % |
| Others (Not Damaged) | 5 | 3.3 % | 0 | 0.0 % | 0 | 0.0 % | 2 | 2.8 % | 1 | 0.9 % |
| Total | 153 | 166 | 125 | 71 | 114 | |||||
Note:
the shaded parts are the incident types actually damaged .
%s shown above are rounded at the 2 nd place of arithmetic decimal points, the total may not be made 100%,
accordingly.
3. Cause for Damage
Of 38, the reports actually damaged, the causes of breakdown were “ID/Password Insufficient Management” with 13 , “Use of Older Version/Patches Have not yet Applied” with 10 , etc.
Note: The report that has multiple damage causes was aggregated by the major cause of the damages and is counted as 1 case.
4. Classification of Reporters
The breakdown classified by reporters was “Individual Users” constituting about 75% against the whole which remains high ratio.
Note: The ratios are rounded at the first arithmetic points; the total may not make 100% sharp, accordingly.
Contact
IT Security Center, Information-technology Promotion Agency (IPA/ISEC)
Tel:+81-3-5978-7527
Fax:+81-3-5978-7518
E-mail: 