Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Please click for more information, or scroll down to pass the ad, or Close Ad.
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
Neustar, Inc.
Protect your website & network
using real-time information & analysis

www.neustar.biz
Data Security
Real-time info services with Neustar
Average Rating:
Rate this article:  
Hackers Targeting SMBs, Warns Symantec
Hackers Targeting SMBs, Warns Symantec

By Adam Dickter
April 17, 2013 6:59AM

    Bookmark and Share
Attackers are after SMBs' customer data, intellectual property and bank account information. And because small businesses often lack adequate security practices, attackers are increasingly choosing to breach the lesser defenses of a small business that has a business relationship with a larger company -- the ultimate target.
 


It isn't just major corporations who have to worry about rampant malware attacks and the threat of system infiltration. Small to medium businesses (SMBs) are increasingly vulnerable to attacks that can bring their systems down or expose their sensitive data.

That's the warning of security giant Symantec, whose latest Internet Security Threat Report issued Tuesday warns that the number of attacks on small businesses rose threefold in 2012, amid a 42 percent rise in overall targeted attacks. While successful data breaches were down last year, the number of stolen identities rose to nearly 240 million.

Small businesses are often targeted as a way to get to larger companies with whom they connect via "watering hole techniques."

Wake-Up Call

In a "watering hole" attack, hackers infect a legitimate web site used by members of a company with malware in hopes that the user will bring the infection back to the system that is the real target. Such attacks are not only aimed at members of SMBs but also at the information given to them by larger companies. Popularized by a group known as the Elderwood Project, this technique has infected up to 500 companies in a single day, Symantec said in a company blog post.

According to Symantec, 61 percent of Web sites propagating malware are legitimate sites. Using toolkits. hackers can easily locate and exploit poor patch management on legitimate Web sites.

In addition, "consumers remain vulnerable to ransomware and mobile threats, particularly on the Android platform," Symantec warns. Ransomware, as the name suggests, is code that restricts access to a Web site and demands that a price be paid to its creator.

"Gaining a clear picture of cyber threats is an important step in improving security, and this year's report is a wake-up call that small businesses are now being specifically targeted by cybercriminals," Kevin Haley, director, Symantec's Security Response told us.

Haley said the number of attacks aimed at small businesses with less than 250 employees grew to 31 percent of all targeted attacks last year.

"Attackers are after SMBs' customer data, intellectual property and bank account information. And because small businesses often lack adequate security practices, attackers are increasingly choosing to breach the lesser defenses of a small business that has a business relationship with a larger company -- the ultimate target."

And how do they protect themselves and their larger corporate partners?

Mind The Gaps

"SMBs need to assess their current state of readiness to handle these cyber threats and work with solution providers to close any gaps in protection," said Haley.

A large share of cyber threats aimed at corporations has been determined to originate in China. But Haley said hackers come from all countries.

"Regardless of where hackers are located, we recommend that all companies, countries and consumers make sure they are using the full capability of security solutions to protect themselves," he said.
 

Tell Us What You Think
Comment:

Name:



Your Next Generation Data Center Is Here! Vblock™ Systems: the world's most advanced converged infrastructure are built on the Cisco Unified Computing System with Intel® Xeon® processors. Vblock™ Systems deliver extraordinary time to market, ROI and TCO, and flexibility to meet your continually changing demands with 5X faster deployment, 96% less downtime, and 1/2 the cost. Click here to learn more.


 Data Security
1.   Lessons from Verizon's Threat Report
2.   Verizon Report Exposes Cyberthreats
3.   Heartbleed Exploit Could Cost Millions
4.   Michaels: Nearly 3M Cards Breached
5.   Malware Targets Facebook Users


advertisement
Heartbleed Exploit Could Cost Millions
But it could have been prevented.
Average Rating:
Michaels: Nearly 3M Cards Breached
But the hack has been contained.
Average Rating:
Don't Reset Passwords for Heartbleed?
Added caution needed to ensure security.
Average Rating:


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
What Verizon's Data Breach Report Can Teach Enterprises
It’s probably not a jaw-dropper, but cyberespionage is officially on the rise. And the use of stolen or misused credentials is still the leading way the bad guys gain access to corporate information.
 
Top Cyberthreats Exposed by Verizon Report
Beyond Heartbleed, there are cyberthreats vying to take down enterprise networks, corrupt smartphones, and wreak havoc on businesses. Verizon is exposing these threats in a new report.
 
Where Do Web Sites Stand, Post-Heartbleed?
A security firm says the vast majority of Web sites have patched themselves to protect against the Heartbleed bug, but now there are questions raised on the reliability of open-source programs.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | Small Business | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.