Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Click for more information, or
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
GET RECOGNIZED.
Let an ISACA® certification
elevate your career.

Register today and save
Network Security
Tame your scariest paperwork. Find Out How
Average Rating:
Rate this article:  
Hackers Targeting SMBs, Warns Symantec
Hackers Targeting SMBs, Warns Symantec

By Adam Dickter
April 17, 2013 6:59AM

    Bookmark and Share
Attackers are after SMBs' customer data, intellectual property and bank account information. And because small businesses often lack adequate security practices, attackers are increasingly choosing to breach the lesser defenses of a small business that has a business relationship with a larger company -- the ultimate target.
 



It isn't just major corporations who have to worry about rampant malware attacks and the threat of system infiltration. Small to medium businesses (SMBs) are increasingly vulnerable to attacks that can bring their systems down or expose their sensitive data.

That's the warning of security giant Symantec, whose latest Internet Security Threat Report issued Tuesday warns that the number of attacks on small businesses rose threefold in 2012, amid a 42 percent rise in overall targeted attacks. While successful data breaches were down last year, the number of stolen identities rose to nearly 240 million.

Small businesses are often targeted as a way to get to larger companies with whom they connect via "watering hole techniques."

Wake-Up Call

In a "watering hole" attack, hackers infect a legitimate web site used by members of a company with malware in hopes that the user will bring the infection back to the system that is the real target. Such attacks are not only aimed at members of SMBs but also at the information given to them by larger companies. Popularized by a group known as the Elderwood Project, this technique has infected up to 500 companies in a single day, Symantec said in a company blog post.

According to Symantec, 61 percent of Web sites propagating malware are legitimate sites. Using toolkits. hackers can easily locate and exploit poor patch management on legitimate Web sites.

In addition, "consumers remain vulnerable to ransomware and mobile threats, particularly on the Android platform," Symantec warns. Ransomware, as the name suggests, is code that restricts access to a Web site and demands that a price be paid to its creator.

"Gaining a clear picture of cyber threats is an important step in improving security, and this year's report is a wake-up call that small businesses are now being specifically targeted by cybercriminals," Kevin Haley, director, Symantec's Security Response told us.

Haley said the number of attacks aimed at small businesses with less than 250 employees grew to 31 percent of all targeted attacks last year.

"Attackers are after SMBs' customer data, intellectual property and bank account information. And because small businesses often lack adequate security practices, attackers are increasingly choosing to breach the lesser defenses of a small business that has a business relationship with a larger company -- the ultimate target."

And how do they protect themselves and their larger corporate partners?

Mind The Gaps

"SMBs need to assess their current state of readiness to handle these cyber threats and work with solution providers to close any gaps in protection," said Haley.

A large share of cyber threats aimed at corporations has been determined to originate in China. But Haley said hackers come from all countries.

"Regardless of where hackers are located, we recommend that all companies, countries and consumers make sure they are using the full capability of security solutions to protect themselves," he said.
 

Tell Us What You Think
Comment:

Name:



Salesforce.com is the market and technology leader in Software-as-a-Service. Its award-winning CRM solution helps 82,400 customers worldwide manage and share business information over the Internet. Experience CRM success. Click here for a FREE 30-day trial.


 Network Security
1.   Chinese Hackers Hit U.S. Officials
2.   Russian Hacker's Charges Revealed
3.   Another IE-Focused Patch Tuesday
4.   Russian Arrested in Hacking Case
5.   Most Networks Not Ready for IoT


advertisement
Android SMS Worm on the Loose
Malware lets bad actors cash in.
Average Rating:
Another IE-Focused Patch Tuesday
One critical for Internet Explorer.
Average Rating:
Most Networks Not Ready for IoT
But most enterprises are prepared.
Average Rating:


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Report: Chinese Hackers Hit U.S. Personnel Networks
Hackers from China broke into the computer networks of the U.S. Office of Personnel Management earlier this year with the intention of accessing the files of tens of thousands of federal employees.
 
Charges: Russian Stole Data from U.S. Restaurants, Zoo
A Russian man arrested on bank fraud and other charges hacked into computers at restaurants in Washington, hundreds of other retail businesses, and even the Phoenix Zoo, authorities say.
 
Another Month, Another IE-Focused Patch Tuesday
Microsoft rolled out 59 vulnerabilities for Internet Explorer in June. But the IE-patching party is not over yet. Redmond published six new security bulletins on Tuesday; two, critical; three, important.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | Small Business | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.