Critical infrastructure providers (CIPs) have admitted to being consistently pounded by Distributed Denial of Service (DDoS) attacks, a McAfee report has shown.
IT PRO saw some of the headline figures two months ago when we managed to see a preview of the report, showing eight in 10 CIPs surveyed said they had faced a significant DDoS attack in 2010.
The full report now shows the sheer scale of attacks, with 29 per cent of critical infrastucture providers surveyed saying they were being hit by "large scale" DDoS attacks multiple times each month.
Almost two-thirds said such DDoS strikes had hit operations "in some way," indicating the severity of the problem facing CIP firms.
"In the 21st century, everyone is a target," Raj Samani, chief technology officer at McAfee, told IT PRO at the InfoSecurity 2011 conference today in London.
"There is always the potential of an incident do we as UK citizens expect our privately regulated energy industries to be enforced and tied to Government regulation to ensure these things don't happen? That's a big question we need to ask ourselves."
Samani said the industry needs "to get away from the motive and focus on the impact" of DDoS attacks on critical infrastructure.
CIPs themselves need to understand the importance of security by design, he said. The McAfee report showed the majority of those looking to connect to the smart grid had no plans to implement additional security measures to cover that process.
"Many organisations do recognise the fact they are a target, but what our results suggest is they all need to understand the potential impact of not implementing security by design," Samani added.
As for competition in providing CIPs with security solutions, Samani said McAfee was more concerned about beating the cyber criminals than with what other vendors were doing.
"Vendors aren't our competition. The bad guys are," he added.
Stuxnet was listed as the most significant threat affecting CIPs to date - something which has proven doubters wrong about the possibilities of cyber attacks, Samani said.
Read on for the big news and interviews coming out of InfoSecurity 2011 this week.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
UK crime fighters wrangle “several thousand” potential cyber criminals in DDoS-for-hire honeypotNews The sting follows a recent crackdown on DDoS-for-hire services globally
-
US begins seizure of 48 DDoS-for-hire services following global investigationNews Six people have been arrested who allegedly oversaw computer attacks launched using booters
-
Will triple extortion ransomware truly take off?In-depth Operators are now launching attacks with three extortion layers, but there are limitations to this model
-
GoDaddy web hosting reviewReviews GoDaddy web hosting is backed by competitive prices and a beginner-friendly dashboard, and while popular, beware of hidden prices
-
Japan investigates potential Russian Killnet cyber attacksNews The hacker group has said it’s revolting against the country’s militarism and that it’s “kicking the samurai”
-
LockBit hacking group to be 'more aggressive' after falling victim to large-scale DDoS attackNews The ransomware group is currently embroiled in a battle after it leaked data belonging to cyber security company Entrust
-
Record for the largest ever HTTPS DDoS attack smashed once againNews The DDoS attack lasted 69 minutes and surpassed the previous record of 26 million RPS
-
McAfee and Visa offer 50% off antivirus subscriptions for small businessesNews UK Visa Classic Business card holders can access the deal starting today
