2011 Trends: Hackers Exploit Router Vulnerabilities
Tomorrow (December 7) we will release our MessageLabs Intelligence 2010 Annual Security Report looking back at the changes in the threat landscape during 2010. We also use the opportunity to look ahead at potential trends for next year. In the days leading up to the publication of the report we will share a few of these trends.
Hackers Exploit Router Vulnerabilities
As 2010 has proven there are many systems vulnerable to attack. We often focus on PCs, servers and devices but recently it has become apparent that routers are also open to exploit. Router vulnerabilities, allow attackers to re-route network traffic with malicious intent. As an example a user could be diverted from an online banking site to an identical-looking malicious website and their login credentials could be stolen or a business user could be diverted from a legitimate CRM, ERP or HR service allowing a hacker to access client, business or staff information. When properly structured these attacks can forward the user to the legitimate site with no indication the attack has occurred.
In 2011, we expect to uncover new variants of malware that will include functionality to actively search for and exploit business and home networking hardware with known vulnerabilities. Since networking equipment software and firmware is rarely updated these vulnerabilities can exist for years.
Later today: Cybercriminals Usurp URL Shortening Services
Published earlier:
- Global Spam Trends: http://www.symantec.com/connect/blogs/2011-trends-...
- Distributed Workforce Drives Security Policies: http://www.symantec.com/connect/blogs/2011-trends-distributed-workforce-drives-security-policies
- Security and Services Continue Migrate to the Cloud: http://www.symantec.com/connect/blogs/2011-trends-...
- Making Web Security Work in an Era of Pervasive Threats: http://www.symantec.com/connect/blogs/2011-trends-...
- Stuxnet Strikes Up Malware Specialization: http://www.symantec.com/connect/blogs/2011-trends-...
- Trending Topics Fashioned to Follow the News: http://www.symantec.com/connect/blogs/2011-trends-...
- Automation Advances Targeted Attacks: http://www.symantec.com/connect/blogs/2011-trends-...
- Targeted Attacks Diversify: http://www.symantec.com/connect/blogs/2011-trends-...
- Botnets Evolve with Steganography: http://www.symantec.com/connect/blogs/2011-trends-...
- Rogue Marketplace Vendors Exploit Online Digital Currencies: http://www.symantec.com/connect/blogs/2011-trends-...
About Symantec Intelligence
The Symantec Intelligence Blog published by Symantec.cloud serves as a conduit for communicating Intelligence data, trends and statistics based on analysis of cyber security threats, trends and insights from the Symantec Intelligence team comprised of many world-renowned malware and spam experts. Sitting on the front lines of defense, they have a global view of threats across multiple communication protocols drawn from the billions of web pages, email and IM messages they monitor each day. Filter by:
Recently on Twitter
- Symantec's view on the CFO's role in the cloud question: http://t.co/LwEpuhNk30 Apr 2012
- Protecting against spam and malware – Best practices guidelines for Enterprises, Users & Consumers http://t.co/Hs7ngvHZ02 Mar 2012
- Spammers impersonating the Better Business Bureau in socially engineered attacks. http://t.co/Hs7ngvHZ02 Mar 2012
- Symantec's Tom Powledge makes the case for why you may consider shifting your IT security to the cloud: http://t.co/5eMKbmgT02 Mar 2012
- Themed spam messages continue to rise as 2012 Olympic games draw closer. http://t.co/Hs7ngvHZ01 Mar 2012