Information-Technology Promotion
Agency (IPA) summarized the report in relation to
unauthorized computer access
for the first half of 2006 (January to June).
As for the current tendency
according to the reports for the first-half of 2006:
- There are
number of attacks to the ports which are used by SSH;
- There are
number of steppingstone servers which allow attackers to intrude
the
server to attack the other servers.
Please refer to the following
sites to maintain continual security measures for your
thorough security configuration
and daily operational management.
- “Practical
Information for Information Security Countermeasures” for
end-
users/home-users (in Japanese)
http://www.ipa.go.jp/security/awareness/end-users/end-users.html
- “Practical
Information for Information Security Countermeasures” for
Administrators (in Japanese)
http://www.ipa.go.jp/security/awareness/administrator/administrator.html
1. Reported Number
The
reported number for the first-half of 2006 (January to June) was
totaled 164.
The gross reported number
was decreased about 16% and the ratio for actually damaged
by infection was also
decreased about 18% from the last-half of 2005.
Note) Numbers
in the parenthesis present number
of actual damage against the
gross reported number.
Gross reported number for
damage filed by IPA was 164. Of 86 (previous half: 102) was
the report for “Access
Probe (Access Attempts)” which referring development of
unauthorized access probe
was reached to 52.4% against the entire reported number
for damage. In addition,
of 71 (previous half: 87) was the report for actually damaged
whichwas reached to 43.3%
against the entire reported number for damage. The reports
for actually damaged
refers the total of “Intrusion”, “Infection w/Worms”,
“Source
Address Spoofing”,
“”Unauthorized Mail Relay”, “DoS” and “Other
Damages”.
|
Cause |
First-half 2004 |
Last-half 2004 |
First-half 2005 |
Last-half 2005 |
First-half 2006 |
| Intrusion
|
18
|
5.5%
|
25
|
9.3%
|
46
|
14.4%
|
52
|
26.5%
|
47
|
28.7%
|
| Unauthorized
Mail Relay |
3
|
0.9%
|
0
|
0.0%
|
5
|
1.6%
|
3
|
1.5%
|
0
|
0.0%
|
| Infection
w/Worm |
0
|
0.0%
|
0
|
0.0%
|
3
|
0.9%
|
5
|
2.6%
|
4
|
2.4%
|
| DoS
|
4
|
1.2%
|
0
|
0.0%
|
14
|
4.4%
|
7
|
3.6%
|
5
|
3.0%
|
| Source
Address Spoofing |
4
|
1.2%
|
7
|
2.6%
|
2
|
0.6%
|
4
|
2.0%
|
2
|
1.2%
|
| Others
(Damaged) |
7
|
2.2%
|
4
|
1.5%
|
19
|
6.0%
|
16
|
8.2%
|
13
|
7.9%
|
| Access
Probe (Attempt) |
284
|
87.4%
|
231
|
85.9%
|
223
|
69.6%
|
102
|
52.0%
|
86
|
52.4%
|
| Worm
Probe |
5
|
1.5%
|
2
|
0.7%
|
2
|
0.6%
|
5
|
2.6%
|
4
|
2.4%
|
| Others
(Not Damaged) |
0
|
0.0%
|
0
|
0.0%
|
5
|
1.6%
|
2
|
1.0%
|
3
|
1.8%
|
| Total
|
325
|
|
269
|
|
319
|
|
196
|
|
164
|
|
Note) Shaded
parts in the chart present reported number for actually
damaged .
The %s are rounded at
the second decimal place so that it may not be 100% sharp.
Reported number for actual
damage was 71. Of 24
was for ID/password insufficient
management and 16
was for use of
older version/non-application of patches , etc.
* Those reports
that have multiple damage cause are aggregated as 1 case/report
under
its main cause.
4. Classified
by Reporter
As for the breakdown by reporters;
the report from individual user
constitutes
104
cases against overall and is dominated in high
ratio of about 63% .
|
Japanese