Global communication infrastructure faces apt, robotics and DDoS; The weakest mobile network

according to Arbor Networks Of The first 8 Annual global infrastructure security report (WISR), High level persistent threat (APT) It's the number one consideration ; Distributed denial of service (DDoS) The scale of the attacks has stabilized , But it becomes more complicated ; Data centers and cloud services are particularly attractive targets ; Mobile operators continue to be passive in terms of network visibility .

The report also found that , Mobility is one of the biggest areas of insecurity in infrastructure ：60% Of mobile operators are not aware of their mobile / Evolution group core （ For advanced 4G Deploy ） Of traffic .

“ Since the last survey , Limited visibility or investment improvements in detection and mitigation solutions for Mobile Networks ,”Arbor say .“ Before something goes wrong , The economics of consumer networks do not encourage providers to implement security measures .”

The company noted that , Overall speaking , The meaning of major threats varies by infrastructure area .“64% Of the survey participants said ,'DDoS Is the most important operational security issue we face today ,'” The company   In its blog writes .“ Most respondents ranked fast-moving worms in second place , Domain name system (DNS) Loophole （ for example DNS poisoning ） In third place .”

It adds ,“DDoS Attacks are the first four problems , The result is the same as last year , Attack on customers is the most concerned issue .”

talk about DDoS,46% Of the respondents reported multi vector attacks ： It's worrisome , Because they are often the most difficult to defend , And layered defense is required to successfully mitigate . However , The attack didn't get any bigger ——2012 The largest attacks reported in were 60 Gbps, And 2011 Same year ;2010 The peak attack in was 100 Gbps.

“ This year's results confirm , Application layer and multi vector attacks are continuing to develop , And the scale of capacity attack is becoming more and more stable ,”Arbor say .“ although 86% Reports on Web Application layer attacks on services , But the most worrying thing is that multi vector attacks are on the rise . Attackers have now turned to complex 、 Long standing 、 Multi vector attack —— A combination of attack vectors designed to break through an organization's existing defenses —— To achieve their goals .”

about 27% Of the respondents in their DNS Customers who have been affected on infrastructure DDoS attack —— And 2011 Annual survey 12% The number of respondents increased significantly .

On the whole DNS In terms of infrastructure ,71% Percent of the respondents said that in the 3 Tier and tier 4 Layers have good visibility , But only 27% Percent of the respondents said that in the 7 Layer visibility . This lack of visibility and the lack of specialized security personnel together constitute a perfect storm of vulnerability exploitation .

meanwhile ,Arbor Find out ,IPv6 Deployment is becoming more common . A full 80% Of CSP It means that they have either deployed IPv6, Or plan for the future 12 Within months .2011 year , The first batch of IPv6 DDoS Reports of attacks on production networks were exposed , but IPv6 Security incidents are still relatively rare .

“ in consideration of 75% Of the survey respondents were service providers ,IPv6 It is not surprising that deployment is accelerating today ,”Arbor say .“ This is for the attacker to pass through IPv4 and IPv6 Switching between networks to bypass network control offers new opportunities .”

Arbor Discovering advanced threats is a recognized problem for enterprise centric network operators . This year's survey found that , Increased focus on botnets on vendor networks , This is due to the pathology of these botnets 、 Evolution speed and intrusion detection system (IDS) And anti-virus (AV) The system is therefore not fully functional . Protect them . Investigation found , Looking forward to the future ,APT、 Industrial espionage 、 Data leaks and malicious insiders are even more serious .

meanwhile , It is as expected , Data centers and cloud services are increasingly suffering ：94% Of data center operators reported attacks , and 90% Of data center operators report operating expenses as business impact .Arbor Warning , As more and more companies move their services to the cloud , They must now be alert to common risks and potential collateral damage .

According to the findings , This is directly related to the type of company targeted by the attacker , E-commerce and online game websites have more and more goals .