The new 2005 FBI Computer Crime Survey is the FBI’s largest survey on such issues to date. The survey—developed and analyzed with the help of leading public and private authorities on cyber security—is based on responses from a cross-section of more than 2,000 public and private organizations in four states.
Among the key findings:
• Frequency of attacks. Nearly nine out of 10 organizations experienced computer security incidents in a year’s time; 20% of them indicated they had experienced 20 or more attacks.
• Types of attacks. Viruses (83.7%) and spyware (79.5%) headed the list. More than one in five organizations said they experienced port scans and network or data sabotage.
• Financial impact. Over 64% of the respondents incurred a loss. Viruses and worms cost the most, accounting for $12 million of the $32 million in total losses.
• Sources of the attacks. They came from 36 different countries. The U.S. (26.1%) and China (23.9%) were the source of over half of the intrusion attempts, though masking technologies make it difficult to get an accurate reading.
• Defenses. Most said they installed new security updates and software following incidents, but advanced security techniques such as biometrics (4%) and smart cards (7%) were used infrequently. In addition, 44% reported intrusions from within their own organizations, suggesting the need for strong internal controls.
• Reporting. Just 9% said they reported incidents to law enforcement, believing the infractions were not illegal or that there was little law enforcement could or would do. Of those reporting, however, 91% were satisfied with law enforcement’s response. And 81% said they’d report future incidents to the FBI or other law enforcement agencies. Many also said they were unaware of InfraGard, a joint FBI/private sector initiative that battles computer crimes and other threats through information sharing.
• Bruce Verduyn—a special agent in Houston’s Cyber Squad, which administered the survey-said that this new survey differs from the annual CSI/FBI Computer Crime and Security Survey conducted by the Computer Security Institute and the FBI. “We surveyed about three times as many organizations and focused more on new technologies, where attacks originated, and how organizations responded,” he said.
Agent Verduyn believes the survey is a clear sign of the urgent need for vigilance against both internal and external cyber assaults. Frank Abagnale, security consultant and subject of the movie “Catch Me If You Can,” echoed those comments, saying: “Every company, both large and small, should study this survey and use the data as the basis for making changes. Those who ignore it do so at their peril.”
Source: United States of America Federal Bureau of Investigation.
“When extrapolating the survey results to estimate the national cost, the FBI reduced the estimated number of affected organizations from 64 percent to a more conservative 20 percent,” Joris Evers reports for CNET News. “‘This would be 2.8 million U.S. organizations experiencing at least one computer security incident,’ according to the 2005 FBI Computer Crime Survey. ‘With each of these 2.8 million organizations incurring a $24,000 average loss, this would total $67.2 billion per year.'”
“These figures do not include much of the staff, technology, time and software employed to prevent security incidents, Verduyn said. Also, losses to individuals who are victims of computer crime or victims in other countries are not included, he said,” Evers reports.
Full article here.
By the way, the FBI uses Apple Mac OS X machines whenever possible according to SecurityFocus. More info here.
Apple’s Mac OS X has had zero viruses and no known spyware for over five years and counting. Mac-based businesses have a massive competitive advantage on Windows-based businesses. Apple offers a complete line of award-winning systems, software and support to help your business save on computer downtime and costs, increase business productivity — and turn your goals into reality. Benefit from the enhanced security and stability of the latest Mac operating system, Mac OS X “Tiger.” Did you know that everything you need to run your business works on a Mac, including Microsoft Word, Excel and Powerpoint, Intuit’s Quickbooks, MYOB, HP printers and scanners, and the world’s most widely used database, FileMaker Pro?
And when you need an easy-to-use, secure and powerful server solution, look to Mac OS X Server and the Apple Xserve. With an intuitive interface for quick setup and administration, you can quickly manage shared files or printers, or centralize your storage and backup. And Mac OS X Server is built on standards-based technology, allowing your business to collaborate, share and protect your company’s computing assets across multiple computing environments.
Apple computers are designed to be interoperable and work seamlessly with your Windows-based systems. With Mac OS X, Mac and Windows computers can easily share the same network, files, and peripherals. In managed networks, Mac and Windows systems can connect to the same file, print, mail, web, and directory servers, and Macintosh computers can be used with Active Directory, Exchange mail servers, and Microsoft’s VPN server. In addition, Apple computers support wireless connectivity based on industry-standard 802.11g Wi-Fi, giving you instant connectivity on the road.
From purchase to upgrade to support, Apple offers award-winning service to help your business install and manage it’s sometimes sophisticated technology solutions. Apple provides help from trained business consultants online, over the phone or in-person at Apple Retail stores worldwide. You can also stop in for Business Days at the Apple stores — free workshops for your company to learn about the latest in Apple technology for business. And there are over a thousand certified Apple Consultants across the country, to provide on-site help and advice when and where you need it. Apple’s your perfect business partner.
Are you ready to stop spinning your wheels and wasting time and money? Good. Visit Apple’s Store for Business now.
Related articles:
Defending Windows over Mac a sign of mental illness – December 20, 2003
Windows virus threatens 170-year-old Toldeo newspaper’s perfect record, Apple Macs save the day – January 27, 2006
Microsoft Windows virus spreads rapidly; Apple Macintosh unaffected – November 28, 2005
Computer columnist: anti-virus software purely optional for Apple Macs, not so for Windows – November 01, 2005
Microsoft apologists and why Apple’s Mac OS X has zero viruses – October 24, 2005
$500 bounty offered for proof of first Apple Mac OS X virus – September 27, 2005
Symantec: 10,866 new Microsoft Windows virus and worm variants in first half 2005 – September 19, 2005
Hackers already targeting viruses for Microsoft’s Windows Vista – August 04, 2005
16-percent of computer users are unaffected by viruses, malware because they use Apple Macs – June 15, 2005
ZDNet: How many Mac OS X users affected by the last 100 viruses? None, zero, not one, not ever – August 18, 2005
Intel CEO Otellini: If you want security now, buy a Macintosh instead of a Wintel PC – May 25, 2005
Apple touts Mac OS X security advantages over Windows – April 13, 2005
97,467 Microsoft Windows viruses vs. zero for Apple Mac’s OS X – April 05, 2005
Symantec details flaws in its antivirus software – March 30, 2005
Apple’s Mac OS X is virus-free – March 18, 2005
Cybersecurity advisor Clarke questions why anybody would buy from Microsoft – February 18, 2005
Security test: Windows XP system easily compromised while Apple’s Mac OS X stands safe and secure – November 30, 2004
Apple: ‘Opener’ is not a virus, Trojan horse, or worm – November 02, 2004
Microsoft: The safest way to run Windows is on your Mac – October 08, 2004
Information Security Investigator says switch from Windows to Mac OS X for security – September 24, 2004
Defending Windows over Mac a sign of mental illness – December 21, 2003
Columnist tries the ‘security through obscurity’ myth to defend Windows vs. Macs on virus front – October 1, 2003
New York Times: Mac OS X ‘much more secure than Windows XP’ – September 18, 2003
Fortune columnist: ‘get a Mac’ to thwart viruses; right answer for the wrong reasons – September 02, 2003
Shattering the Mac OS X ‘security through obscurity’ myth – August 28, 2003
Virus and worm problems not just due to market share; Windows inherently insecure vs. Mac OS X – August 24, 2003
Macaday, since you are obviously going for the personal attack here I will reply directly to you.
Yes, I am part of the cost. But security-related problems amount for probably less than 5% of my time. I get paid for much more than that, my friend. You see, what corporations are implementing now is large-scale automation of the desktop life-cycle maintenance. The system I oversee performs automated OS upgrades, desktop re-imaging, software distribution/updating, hardware inventory, software inventory, etc.
All of this without need for a desktop technician to visit the user.
In fact, one of our remote sites has only two desktop technicians overseeing over 1,000 PCs, distributed over 4 geographically-separate locations.
And although I am personally responsible for only 5,000 systems, I have spoken to many others who manage anywhere between 50,000 to 100,000 systems. Of course, in their case they have whole teams doing it.
Whenever I’m asked by someone new to the industry about how to get in, I have to reply that your run-of-the-mill desktop tech is going the way of the dinasour. It’s all about automation now. And I am fortunate to be in the back end of things, developing those systems.
So, you see, I do earn my salary.
Just making a point and nothing personal meant. I’m sure you are extremely good at what you do. You have to accept that were MS products secure you would use a large portion of resources at your disposal differently.
“You have to accept that were MS products secure you would use a large portion of resources at your disposal differently.”
You are right in that I would use a portion of resources at my disposal differently – but believe me when I say that it would not be large.
IT groups are just like any other group of people – some are better than others. The steps that need to be taken to secure a Windows network have been known for years – it’s just more difficult for some groups to implement in their environment.
JadisOne: “Shouldn’t someone send this bill to Microsoft?”
Yes, and it’s past due. Don’t forget to tack on interest. And yet, keep hearing from trolls about how crucial MS is to our economy. Maybe the IT support and antivirus portion.
Every single penny of that $68 billion is because the IT industry is FULL OF MORONS.
Am I right that the US Navy uses Windows on warships in its CIC, or am I wrong? If they do, is it some sort of hardened version?
If so, its scary, very scary.
Off-topic, can anyone tell me whether this guys has any point at all, or whether he’s just spouting smoke out of his rear-end:
http://video.google.com/videoplay?docid=-6553260189868317794
My only experience with OS X so far has been poking around with system settings (network config, modifying the host settings in terminal, etc.) while troubleshooting network problems, so I really wouldn’t know.
That was hysterical. It’s well done but PLEASE don’t believe one word of it. If ANY of it were true this forum would not exist. Full stop.
Macaday – I believe you. And it’s very mature of you not to go ballistic over it. I wish more of the people on forums like these would react in a similar manner.
Cheers…
Macaday
Not to take his side or anything, but the product’s called Altiris. It’s an HP thing.
Good, but painfully slow from my experience. And no, it’s not because my network is slow. It’s never my network, it’s always the crappy machines that the MCSEs connect to it.
Ah shit, you’re talking about whatever’s down that link, aren’t you?
TAXI!!!
“…it’s not because my network is slow. It’s never my network, it’s always the crappy machines that the MCSEs connect to it.”
Ha-ha! Nice one…
” width=”19″ height=”19″ alt=”wink” style=”border:0;” />
Our Cisco guys always say the same thing.
Retailers can easily get a computer/cash register combo for small retail needs. Try to find that in the Mac world. Apple needs to invest some serious cash toward putting together the pieces for a small business the way they do the digital life. Perhaps an iRetail suite?
I was recently in a nightclub, and while waiting for the bartender I was scoping out the computer screen on their cash register. You know, one of those touch screen based systems. Then I took another look – there was a Mac menu bar across the top of the screen! The application name was named “POS” (That’s “Point Of Sale”, not “Pile Of Shyte”, if uou didn’t know.)
So such systems exist for the Mac. Now they just have to get installed
Filemaker Pro the world’s most widely used database software? Can you back that up with stats, please? I would hazard a guess that Microsoft Access is installed on rougly a gazillion plutillion jarjarillion more workstations than FMP.
The key here is USED, not INSTALLED.
Access is shovel-ware. Most Office installations are of the “Install All” variety, even if it will never be used. If you’ve got the empty disk space, you might as well fill it. After all, maybe you really don’t want all that tutorial material.
If someone spends extra for FMP, it’s likely they will then use it. If Access were a separate retail product and not bundled with Office, i wonder how it would sell?
Quote from article:
“More than one in five organizations said they experienced port scans…..”
*** GASP! A port scan? Run for the hills!(*sarcasm intended*) – Do you realize that within minutes if not seconds after connecting to the net, you start getting port scans – AND YOU GET HUNDREDS OF THEM!! Tonight must be a slow night because my last port scan was about an hour ago.
More than 1 in 5? How about 100%. Port scans are so common it’s ridiculous! The only thing I get more than port scans are packets to closed ports…
MDN TAKE: “Apple’s Mac OS X has had zero viruses and no known spyware for over five years and counting.”
No known viruses – TRUE.
No known Spyware – FALSE!
Proof: If any of you are still using Windows Media Player for Mac, you are indeed using a piece of spyware. It’s not malicious (personally, I feel any invasion of my privacy is malicious, but…) – it’s more what I would call “Marketing-Ware”. In other words, it collects statistical info on what you view and passes that info on to MS, Wal Mart, live365.com, passalong.com and quite a few others by direct connection AND cookies (not all cookies are sweet). It will do this EVEN IF THE FILE WAS PREVIOUSLY SAVED TO YOUR HARD DRIVE – as long as you are connected to the Internet.
Some programs can and do “Phone Home” (sometimes for good reasons like program updates) BUT – the Mac OS X firewall is not watching your OUT-GOING traffic. It’s only monitoring incoming traffic.
Like I said, USE COMMON SENSE. AND BY ALL MEANS DON’T GET COMPLACENT – if you do, you’re asking for it.