Most
of the attacks are carried out from the territory of the United States, and the
victims were gambling sites and pages of Home Appliance Manufacturers.
After
three days of peak activity the number of cyber attacks that exploit
vulnerabilities ShellShock, began to decline. It was reported by researchers Akamai.
According to experts, the number of unique payloads in
the hacker attacks with the operation of ShellShock increased from 43 per day
to detect vulnerabilities 10756 within the first 24 hours. Peak activity
occurred on 27 of September - the number was 20753.
As researches said Akamai Ezra Caltum, Adi Lumer and Ori
Segal, in their work, these figures demonstrate the effectiveness of ShellShock
as a vector of attack. According to them, one of the most disturbing aspects of
this vulnerability is the ease of operation. This is evidenced by a sharp jump
in the payload of the first days of the attack. He also talks about how
effective can be a gap - in most cases, the process of its operation is fully
automated.
Of 22487 unique IP-addresses from which the attacks,
66% were in the United States. Victims of criminals were almost 300,000 gaming
sites, as well as resources for the manufacturer of household appliances and
pages for email-marketing.
In 8% of cases, the attackers simply checking, which
is capable of a new vulnerability. Thus, they were able to open the tray
DVD-drive, and play audio files. Tougher action - for example, kidnapping
kriptovalyuty or databases - lock in less than 1% of all attacks.
Source: securitylab.ru
No comments:
Post a Comment